Using cloud proxies in VMware Aria Operations, you can collect and monitor data from your remote data centers. Typically, you need only one cloud proxy per physical data center. You can deploy one or more cloud proxies in VMware Aria Operations to create a one-way communication between your remote environment and VMware Aria Operations. The cloud proxies work as one-way remote collectors and upload data from the remote environment to VMware Aria Operations. Cloud proxies can support multiple vCenter Server accounts. For more information on cloud proxies, see the topic called Cloud Proxy FAQ in the Getting Started with VMware Aria Operations Guide.

Prerequisites

  • Verify that you have an IP address, a DNS entry, and permissions to deploy OVF templates in vSphere.
  • Log in to vSphere and verify that you are connected to a vCenter Server system.
  • Allow outgoing HTTPS traffic for cloud proxy over port 443. For more information on firewall requirements in VMware Aria Operations see KB article 93210.
  • For telegraf-based application monitoring, allow outgoing traffic from the endpoints to cloud proxy over 443, 4505, and 4506.
  • Add a vCenter cloud account and provide an account with the following read and write privileges:
    • vCenter IP address or FQDN
    • Permissions required to install a cloud proxy on the vCenter Server.

    For more information on privileges, see the topic called "Privileges Required for Configuring a vCenter Adapter Instance" in the VMware Aria Operations Configuration Guide.

  • Cloud proxies must have a proper DNS resolution to the VMware Aria Operations nodes when using short/long FQDN names. This is applicable to on-prem cloud proxy.
  • Using a firewall to restrict traffic by IP is not recommended since IPs can change without notice. Restricting traffic must be performed via FQDNs only.

Procedure

  1. Log in to VMware Aria Operations.
  2. From the left menu, click Data Sources > Cloud Proxies, and then click Add.
  3. Save the OVA path. Optionally, click Download Cloud Proxy OVA to download and save the OVA file locally.
    • To copy the link for the VMware Aria Operations Cloud Appliance, click the Copy Path icon for the Cloud Proxy OVA.
    • To download and save the OVA file locally, click Download Cloud Proxy OVA.
  4. Navigate to your vSphere, select the name of your vCenter Server cluster, and select Deploy OVF Template from the Actions menu.
  5. Insert the ova link and then click Next.
    • Paste the cloud proxy ova link in the URL field.
    • Click the Local File option, browse, and select the downloaded OVA file.
  6. Follow the prompts to install the OVA on your vCenter Server.
    For the most current information about sizing and scaling, see Knowledge Base article 78491.
  7. When prompted to enter the Unique Registration Key in the Customize template screen, return to the Install Cloud Proxy page in VMware Aria Operations.
  8. (Optional) Activate Data Persistence to store data in the cloud proxy in case of connectivity issues. For more information, see Activating Data Persistence in Cloud Proxy.
    Note: The Unique Registration Key is refreshed and a new key is generated if you activate data persistence.
  9. Click the Copy Key icon.
    The Unique Registration Key expires 24 hours after generation. To avoid using an expired key, click Regenerate Key before proceeding. The unique registration key is used by the cloud proxy to authenticate to VMware Aria Operations.
  10. Return to vSphere and paste the key in the Unique Registration Key text box to install the VMware Aria Operations Cloud Appliance.
  11. Select Use IPv6 to use IPv6 for internal communications. For more information, see #GUID-D29F8368-2002-4370-B0A0-E13B92A1E58C.
  12. (Optional) Set up a proxy server in the Customize template screen.
    1. Enter details in the Network Proxy IP Address and Network Proxy Password properties.
    2. To activate SSL, select the Use SSL connection to proxy check box.
    3. If you are using SSL, you can verify the certificate of the proxy server. Public certificate authorities are used to verify the proxy server certificate. To activate this, select the Verify proxy's SSL cert check box in the Verify SSL cert property.
    4. You can specify the IP /FQDN URL that is used to access the system when a load balancer is used.
    5. If you have a custom certificate authority, paste the root certificate authority in the Custom CA property to verify the certificate of the proxy server. The root certificate authority is passed on to the cloud proxy. Include the following lines when you copy the root certificate authority:
      "-----BEGIN CERTIFICATE-----" 
      "-----END CERTIFICATE-----"
  13. Click Finish.
    The deployment takes a few minutes to finish.
  14. Locate the cloud proxy you just installed, select the VMware Aria Operations Cloud Appliance, and click Power on.
    Note: You must power on the VMware Aria Operations Cloud Appliance within 24 hours of registering it. After 24 hours, the Unique Registration Key expires, and you must delete the VMware Aria Operations Cloud Appliance and deploy another cloud proxy.
  15. Return to the Cloud Proxy page in VMware Aria Operations to view the status of the cloud proxy you just installed. For more information, see Monitoring the Health of Cloud Proxies.
  16. To view the accounts that are using this connection, click the Cloud Proxy.
    The communication from the cloud proxy to cloud is one way. The cloud proxy initiates this connection and if necessary, it also pulls data from cloud (like the adapters configuration or upgrade pak). The cloud proxy requires a regular Internet access over the https protocol but it does not need any special firewall configuration. The cloud proxy verifies the certificate of the cloud service it connects to and if there are transparent proxy servers which do stop SSL, it might cause connectivity problems for the cloud proxy.

    The cloud proxy also supports connection through the corporate proxy server. The proxy settings are given during OVF deployment.

  17. (Optional) To remove a cloud proxy, click the vertical ellipsis and then click Remove. For more information, see Removing Cloud Proxies.

What to do next

Upgrade your cloud proxy. For more information, see the topic called Upgrading Cloud Proxy in the VMware Aria Operations Getting Started Guide.

The VMware vSphere solution connects VMware Aria Operations to one or more vCenter Server instances. For more information see the topic called Configure a vCenter Server Cloud Account in VMware Aria Operations in the Connecting to Data Sources section in the VMware Aria Operations Configuration Guide.