On the VMware Cloud on AWS page, select the checkbox to allow the creation of an OAuth app to authorize VMware Live Cyber Recovery to access VMware Cloud on AWS click Next.

On the Activation page, select your AWS region from the drop-down menu and click Next.

In the Summary section, select the confirmation check box and click Finish.

On the Dashboard page, in the Quick setup section, click Deploy the cloud file system.

On the Dashboard page, in the Quick setup section, click Set up a protected site.

In the Set up protected site dialog box, configure the following settings, configure the remaining settings according to the values in your VMware Cloud Foundation Planning and Preparation Workbook, and click Set up.

On the VMware Live Cyber Recovery page, in the left navigation pane, click Protected sites to expand the list of protected sites.

Select the name of your protected site according to your VMware Cloud Foundation Planning and Preparation Workbook.

Deploy a VMware Live Cyber Recovery Connector appliance.

1. On the Protected sites page, under Connectors, click Deploy.

2. In the Deploy connector appliance window, click Copy next to the Appliance OVA URL.

3. Log in to the management domain vCenter Server at https://<management_vcenter_server_fqdn>/ui by using an account with Administrator privileges.
4. In the VMs and templates inventory, expand the management domain vCenter Server tree and expand the management domain data center.

5. Right-click the Cloud-Based Ransomware Recovery folder you created and select Deploy OVF template.

6. On the Select an OVF template page, select URL, paste the OVF link you copied and click Next.

7. In the Source verification dialog box, click Yes.

8. On the Select a name and folder page, in the Virtual machine name text box, enter a virtual machine name according to your VMware Cloud Foundation Planning and Preparation Workbook, and click Next.

9. On the Select a compute resource page, select the compute resource according to your VMware Cloud Foundation Planning and Preparation Workbook, and click Next.

10. On the Review details page, review the settings, acknowledge the certificate is not trusted by clicking Ignore, and click Next.

11. On the License agreements page, accept the license agreement and click Next.

12. On the Select storage page, select the vSAN datastore according to your VMware Cloud Foundation Planning and Preparation Workbook, and click Next.

13. On the Select networks page, from the Destination network drop-down menu, select the management VLAN port group according to your VMware Cloud Foundation Planning and Preparation Workbook, and click Next.

14. On the Ready to complete page, click Finish and wait for the completion of the process.

Power on the VMware Live Cyber Recovery Connector appliance.

1. In the VMs and templates inventory, expand the management domain vCenter Server tree and expand the management domain data center.

2. Expand the Cloud-Based Ransomware Recovery folder.

3. Right-click the connector appliance and, from the Actions menu, select Power > Power on.

1. On the VMware Live Cyber Recovery page, in the left navigation pane, click Protected sites to expand the list of protected sites.

2. Select the name of your protected site according to your VMware Cloud Foundation Planning and Preparation Workbook.

3. On the Protected sites page, under Connectors, click Deploy.

4. Copy the VMware Live Cyber Recovery Orchestrator FQDN into your VMware Cloud Foundation Planning and Preparation Workbook and make a note of the temporary site-specific passcode.

Configure the VMware Live Cyber Recovery Connector on the console.

1. In the VMs and templates inventory, expand the management domain vCenter Server tree and expand the management domain data center.

2. Expand the Cloud-Based Ransomware Recovery folder.

3. Select the connector appliance and, on the Summary page, click Launch web console.

4. Log in to the VMware Live Cyber Recovery Connector appliance by using the admin / vmware#1 user.

5. Follow the instructions and configure the values according to your VMware Cloud Foundation Planning and Preparation Workbook using the latest temporary site-specific passcode.

6. Verify that the console shows a Success message for Adding connector to on-premises site.

Repeat this procedure to deploy the second VMware Live Cyber Recovery Connector appliance.

Obtain the VMware Live Cyber Recovery Connector appliance admin user password.

1. Log in to the VMware Cloud Services console at https://console.cloud.vmware.com/ with a user assigned the VMware Live Cyber Recovery Orchestrator Admin role.
2. On the Services page, locate the VMware Live Recovery tile, and click Launch service.
3. On the VMware Live Recovery page, for the region where the service is enabled, click Manage region.

4. On the VMware Live Cyber Recovery page, in the left navigation pane, click Protected sites to expand the list of protected sites.

5. Select the name of your protected site according to your VMware Cloud Foundation Planning and Preparation Workbook.

6. On the Protected sites page, under Connectors, click the menu next to the connector appliance and click Show password.

7. In the Connector password dialog box, copy the admin password.

Log in to the VMware Live Cyber Recovery Connector appliance at <vlcr_connector_fqdn>:22 as admin by using the password from Step 1.

drc create-vcenter-user --vcenter <workload_domain_vcenter_server_IP_address>  --admin-username [email protected] --admin-password VMw@re1!  --new-username [email protected] --new-password VMw@re1!  --vcenter-role "VMware Live Cyber Recovery to vSphere Integration" --snapshot-privs --failback-privs

Start PowerShell.

Replace the values in the sample code with values from your VMware Cloud Foundation Planning and Preparation Workbook and run the commands in the PowerShell console.

$sddcManagerFqdn = "sfo-vcf01.sfo.rainpole.io"
$sddcManagerUser = "[email protected]"
$sddcManagerPass = "VMw@re1!"

$sddcDomainName = "sfo-w01"

$vlcrRole = "VMware Live Cyber Recovery to vSphere Integration"

$domainFqdn = "vsphere.local"
$vlcrServiceAccount = "svc-vlcr-vsphere"
$vlcrServiceAccountPass = "VMw@re1!"

Create a custom role for VMware Live Cyber Recovery.

1. Perform the configuration by running the command in the PowerShell console.

   Add-vSphereRole -server $sddcManagerFqdn -user $sddcManagerUser -pass $sddcManagerPass -sddcDomain $sddcDomainName -roleName $vlcrRole

2. In the dialog box that opens, navigate to the vSphereRoles folder and open the vlcr-vsphere-integration.role file.

   The default path for the vSphereRoles folder is C:\Program\Files\WindowsPowerShell\Modules\PowerValidatedSolutions\<powervalidatedsolutions_version>\vSphereRoles.

Create an integration service account in the vSphere.local domain for VMware Live Cyber Recovery by running the following command.

Add-SsoUser -server $sddcManagerFqdn -user $sddcManagerUser -pass $sddcManagerPass -ssoUser $vlcrServiceAccount -ssoPass $vlcrServiceAccountPass

Assign the custom role to the integration service account for VMware Live Cyber Recovery by running the following command.

Add-vCenterGlobalPermission -server $sddcManagerFqdn -user $sddcManagerUser -pass $sddcManagerPass -sddcDomain $sddcDomainName -domain $domainFqdn -principal $vlcrServiceAccount -role $vlcrRole -propagate true -type user -localdomain

Repeat the procedure for any isolated VI workload domains in the VMware Cloud Foundation instance.

Select the default management vSphere cluster and click the Configure tab.

In the left pane, select Configuration > VM/Host rules, and click Add VM/Host rule.

Configure the following settings, configure the remaining settings according to your VMware Cloud Foundation Planning and Preparation Workbook, and click OK.

Select the default management vSphere cluster, and click the Configure tab.

In the left pane, select Configuration > VM/Host groups.

Select the VM group for the first availability zone, and click Add.

In the Add group member dialog box, configure the settings according to your values in your VMware Cloud Foundation Planning and Preparation Workbook, and click OK.

On the VMware Live Cyber Recovery page, in the left navigation pane, click Protected sites to expand the list of protected sites.

Select the name of your protected site according to your VMware Cloud Foundation Planning and Preparation Workbook.

Register the VI workload domain vCenter Server.

1. On the Protected sites page, under vCenters, click Register vCenter.

2. In the Register vCenter dialog box, configure the following settings, enter your values from the VMware Cloud Foundation Planning and Preparation Workbook, and click Register.

   Setting	Value
   Authenticate with restricted vCenter user	Selected

On the VMware Live Cyber Recovery page, in the left navigation pane, click Protected sites to expand the list of protected sites.

Select the name of your protected site according to your VMware Cloud Foundation Planning and Preparation Workbook.

Add a recovery SDDC.

1. In the top right, click Add recovery SDDC.

2. In the Add recovery SDDC dialog box, select Attach existing SDDC and click Next.

3. Under Attach existing SDDC, select the recovery SDDC and click Next.

4. In the Confirm section, enter ATTACH SDDC in the text box and click Attach.

On the VMware Live Cyber Recovery page, in the left navigation pane, click Settings.

On the Settings page, click Email alerts.

In the Configure email alerts dialog box, select the Send SLA change email alerts check box, configure the remaining settings according to your VMware Cloud Foundation Planning and Preparation Workbook, and click OK.