After generating the API keys from the Carbon Black Cloud console, configure the Carbon Black Cloud Workload appliance to establish connection between Carbon Black Cloud Workload appliance and Carbon Black Cloud.

Prerequisites

Procedure

  1. Log in to the vSphere Client.
  2. Verify the Carbon Black Cloud Workload appliance VM is powered-on. Open the VM console and note down the IP address of the appliance.
  3. From your browser, log in to the Carbon Black Cloud Workload appliance at https://<appliance IP address> using the admin credentials.
  4. Go to the Appliance > Registration page.
  5. In the Carbon Black Cloud section, click Edit.
  6. Configure the following values.
    1. CBC URL: Enter URL of the Carbon Black Cloud console as per your hosted Carbon Black Cloud location. For example, https://dashboard.confer.net/.
    2. Appliance name: Enter a unique name for the appliance in your Carbon Black Cloud organization.
      Important: The appliance name must be UNIQUE for your Carbon Black Cloud organization. One Appliance name is associated with one Carbon Black Cloud organization. You cannot use the same appliance name with a different set of API keys or use a different appliance name for the same set of API keys.
    3. Org key: Enter the organization key for your Carbon Black Cloud organization.
      CBC appliance name and Org key values
      To find the org key, log in to the Carbon Black Cloud console and navigate to the Settings > API Access > API Keys page. You can find your Org Key value in the upper left.
    4. API ID: Paste the 10 digit API ID copied from the Carbon Black Cloud console.
    5. API secret key: Paste the API secret key copied from the Carbon Black Cloud console.

  7. Click Save.
    When you see a green check mark, the connection between the vCenter Server, Carbon Black Cloud Workload appliance, and the Carbon Black Cloud is established.
  8. Verify if the connection between the Carbon Black Cloud Workload appliance and the Carbon Black Cloud is established successfully.
    1. Log in to the Carbon Black Cloud console.
    2. From the left navigation pane, click the Settings > API Access > API Keys page.
    3. Go to the appliance API. You can see the appliance name with a link next to the appliance API name.
    4. Click the appliance name with a link. You can view appliance health and connection status.
      CBC Appliance details dialog box
    5. Go to the Inventory > Workloads > Not Enabled page. You can view the virtual machine (VM) data.
    6. You can also verify connectivity using the following curl commands.
      curl -v telnet://<carbonblack_prod_url>:443
      * Rebuilt URL to: <carbonblack_prod_url>:443/
      * Trying xx.00.xx.x...
      * TCP_NODELAY set
      * Connected to carbonblack_prod_url (xx.00.xx.x) port 443 (#0)
      curl -v telnet://<vcsa_on_vc>:443
      * Rebuilt URL to: telnet://<vcsa_on_vc>:443/
      * Trying xx.0.0.xx...
      * TCP_NODELAY set
      * Connected to vcsa_on_vc (xx.0.0.xx) port 443 (#0)
    After the connection is established, the troubleshooting logs are shared with VMware. To opt-out, go to the Troubleshooting > Logs page and toggle off the log export feature. For more details, see Appliance Logs.

Results

After the connection is successfully established, you can view data in the Carbon Black Cloud Workload Plug-in from the vCenter Server. When you click the Carbon Black icon in the left navigation pane, the Summary tab displays appliance health and inventory status.

What to do next

To view your inventory in the Carbon Black Cloud Workload Plug-in:

  1. Go to the Carbon Black Cloud Workload Plug-in in the vCenter Server.
  2. Go to the Inventory > Not Enabled tab.
  3. To secure your workloads, enable Carbon Black in the vCenter Server.

To view your inventory in the Carbon Black Cloud console:

  1. Navigate to your Carbon Black Cloud console.
  2. Go to the Inventory > Workloads > Not Enabled tab.
  3. Refresh the Not Enabled tab. The virtual inventory appears within a few minutes after your appliance is connected.