By using the VMware Cloud Director Service Provider Admin Portal, you can create user-defined security groups.
Procedure
- From the top navigation bar, select Resources and click Cloud Resources.
- In the left panel, click Organization VDCs.
- Click the radio button next to the target organization virtual data center, and click Manage Firewall.
- Click the tab.
- Click the Create (
) button.
- Enter a name and, optionally, a description for the security group.
The description displays in the list of security groups, so adding a meaningful description can make it easy to identify the security group at a glance.
- (Optional) Add a dynamic member set.
- Click the Add () button under Dynamic Member Sets.
- Select whether to match Any or All of the criteria in your statement.
- Enter the first object to match.
The options are
Security Tag,
VM Guest OS Name,
VM Name, and
VM Guest Host Name.
- Select an operator, such as Contains, Starts with, or Ends with.
- Enter a value.
- (Optional) To add another statement, use a Boolean operator And or Or.
- (Optional) Include Members.
- From the Browse objects of type drop-down menu, select the type of objects, such as Virtual Machines, Org VDC networks, IP sets, MAC sets, or Security tags.
- To include an object in the Include Members list, select the object from the left panel, and move it to the right panel by clicking the right arrow.
- (Optional) Exclude members.
- From the Browse objects of type drop-down menu, select the type of objects, such as Virtual Machines, Org VDC networks, IP sets, MAC sets, or Security tags.
- To include an object in the Exclude Members list, select the object from the left panel, and move it to the right panel by clicking the right arrow.
- To preserve your changes, click Keep.
Results
The security group can now be used in rules, such as firewall rules.
