The Intelligent Logging and Analytics for VMware Cloud Foundation validated solution has objectives to deliver prescriptive content about the solution so that it is fast to deploy and is suitable for use in production environments.

VMware Validated Solution Objective

Description

Main objective

Provide logging, analytics and reporting for VMware Cloud Foundation infrastructure components.

VMware Cloud Foundation architecture support

  • vSAN ReadyNodes

    • Consolidated

    • Standard

      • Single VMware Cloud Foundation instance

      • Multiple VMware Cloud Foundation instances with NSX Federation

      • Single or multiple VMware Cloud Foundation instances with multiple availability zones

  • Dell VxRail Nodes

    • Standard

      • Single VMware Cloud Foundation instance

      • Multiple VMware Cloud Foundation instances with NSX Federation

      • Single or multiple VMware Cloud Foundation instances with multiple availability zones

Workload domain type support

  • Management Workload domain

  • VI Workload domain

Scope of guidance

  • Detailed design for solution components.

  • Deployment and initial configuration of intelligent logging and analytics components for management and VI workload domains.

  • Operational guidance for solution components, such as operational verification, password management, and certificate management.

  • Solution interoperability with solution components, such as monitoring and life cycle.

Scope of implementation

  • Deployment and configuration of solution components:

    • VMware Aria Operations for Logs

    • Content Packs

  • Configuration of logging of VMware Cloud Foundation components:

    • ESXi

    • vCenter Server

    • NSX

    • SDDC Manager

    • VMware Aria Suite Lifecycle

    • Workspace ONE Access

Cloud type

Private Cloud

Number of syslog connections

200

Retention period for the medium-size appliance

7 days

Archive policy for the medium-size appliance

90 days

Shared storage space for log archival

400 GB

Load Balancing

VMware Aria Operations for Logs Integrated Load Balancer

Overall availability

99%

Authentication, authorization, and access control

  • Use of Active Directory over LDAP for authentication.

  • Use of security groups and roles for least-privilege access control.

  • Use of service accounts and least-privilege access control for solution integration.

Certificate signing

Certificates are signed by a certificate authority (CA) that consists of a root and intermediate certificate authority layers.