vRealize Operations Manager Design for Intelligent Operations Management for VMware Cloud Foundation

You use vRealize Operations Manager to monitor the state of the management components in the SDDC. You review collected metrics by using vRealize Operations Manager dashboards. You can use the self-monitoring capability of vRealize Operations Manager to receive alerts about issues that are related to its operational state. You connect vRealize Operations Manager with the management components in the SDDC by using cloud accounts, management pack adapters, and direct integrations.

In this validated solution, vRealize Operations Manager monitors the following components:

SDDC Manager
vCenter Server
vSphere
vSAN
NSX-T Data Center
Clustered Workspace ONE Access

Note:

This validated solution also supports monitoring of vRealize Log Insight, vRealize Automation, and standalone Workspace ONE Access. For information on solution interoperability with these components, see VMware Cloud Foundation Validated Solutions.

vRealize Operations Manager Cloud Accounts

You use cloud accounts to add cloud endpoints as adapter instances, providing vRealize Operations Manager with the ability to communicate with them. vRealize Operations Manager can collect data from the following private cloud accounts:

Table 1. Private Cloud Accounts in vRealize Operations Manager
Cloud Account	Additional Option	Description
vCenter Server	-	Provides vRealize Operations Manager with the ability to communicate with vCenter Server.
	vSAN	Provides vRealize Operations Manager with the ability to gather vSAN metrics from vCenter Server.
	Application Discovery	Provides vRealize Operations Manager with the ability to discover applications, running on virtual machines in vCenter Server

Table 2. Design Decision on Cloud Accounts in vRealize Operations Manager
Design Decision ID	Design Decision	Design Justification	Design Implication
IOM-VROPS-CFG-019	Configure a vCenter Server cloud account for each vCenter Server instance in the SDDC.	Provides the vRealize Operations Manager integration with and data collection from all vCenter Server instances in the SDDC.	The vCenter Server cloud account uses the administrator@vsphere.local user account for application-to-application communication from vRealize Operations Manager to vSphere. While you can update the cloud account to use a custom user, the password rotation feature in SDDC Manager for administrator@vsphere.local reverts the configuration.
IOM-VROPS-CFG-020	Connect each VI workload domain to vRealize Operations Manager by using SDDC Manager.	SDDC Manager provides a workflow to add the VI workload domain vCenter Server cloud account in vRealize Operations Manager .	None.
IOM-VROPS-CFG-021	Configure each vCenter Server cloud account to use the remote collector group for its VMware Cloud Foundation instance.	Local-instance components are configured to use the remote collector group. This configuration offloads data collection for local management components from the analytics cluster.	None.
IOM-VROPS-CFG-022	Activate the vSAN integration in the vCenter Server cloud accounts.	Provides the vRealize Operations Manager integration with and data collection from all vSAN instances in the SDDC.	The vSAN adapter uses the administrator@vsphere.local user account for application-to-application communication from vRealize Operations Manager to vSphere. While you can update the adapter to use a custom user, the password rotation feature in SDDC Manager for administrator@vsphere.local reverts the configuration.

vRealize Operations Manager Cloud Accounts for Multiple VMware Cloud Foundation Instances

In an environment with multiple VMware Cloud Foundation instances, you add a cloud account for each vCenter Server in each VMware Cloud Foundation instance.

Table 3. Design Decisions on Cloud Accounts in vRealize Operations Manager for Multiple VMware Cloud Foundation Instances
Design Decision ID	Design Decision	Design Justification	Design Implication
IOM-VROPS-CFG-023	In an environment with multiple VMware Cloud Foundation instances, configure a vCenter Server cloud account for each vCenter Server instance in each VMware Cloud Foundation instance.	Provides the vRealize Operations Manager integration with and data collection from all vCenter Server instances in the SDDC.	None.
IOM-VROPS-CFG-024	In an environment with multiple VMware Cloud Foundation instances, manually connect each VI workload domain in each additional VMware Cloud Foundation instance to vRealize Operations Manager .	vRealize Operations Manager is integrated with SDDC Manager only in the first VMware Cloud Foundation instance.	You must configure the cloud account manually.
IOM-VROPS-CFG-025	In an environment with multiple VMware Cloud Foundation instances, configure each vCenter Server cloud account to use the remote collector group for its VMware Cloud Foundation instance.	Local-instance components are configured to use the remote collector group. This configuration offloads data collection for local management components from the analytics cluster.	None.
IOM-VROPS-CFG-026	In an environment with multiple VMware Cloud Foundation instances, activate the vSAN integration in the vCenter Server cloud accounts.	Provides the vRealize Operations Manager integration with and data collection from all vSAN instances in the SDDC.	None.

vRealize Operations Manager Management Packs for VMware Cloud Foundation

You install and activate additional non-native management packs for vRealize Operations Manager to facilitate collecting data from each VMware Cloud Foundation instance.

Table 4. Management Packs
Management Pack	Description
NSX-T	Provides metrics and dashboards for NSX-T Data Center.
SDDC Health	Includes dashboards for VMware Cloud Foundation.
VMware Identity Manager	Provides metrics for Workspace ONE Access.
Ping	Provides metrics on the availability of endpoints.

Table 5. Design Decisions on Management Packs for vRealize Operations Manager
Design Decision ID	Design Decision	Design Justification	Design Implication
IOM-VROPS-CFG-027	Install the VMware Identity Manager management pack for vRealize Operations Manager .	Provides the ability of vRealize Operations Manager to communicate with Workspace ONE Access endpoints. The management pack is installed by SDDC Manager.	None.
IOM-VROPS-CFG-028	Configure a VMware Identity Manager adapter instance for the clustered Workspace ONE Access instance.	Provides the vRealize Operations Manager integration and data collection from the clustered Workspace ONE Access instance. The adapter is configured by SDDC Manager.	None.
IOM-VROPS-CFG-029	Configure the clustered Workspace ONE Access adapter to use the default collector group.	Cross-instance components are configured to use the default collector group.	The load on the analytics cluster, though minimal, increases.
IOM-VROPS-CFG-030	Configure an NSX-T adapter instance for each NSX Manager instance.	Provides the vRealize Operations Manager integration and data collection from NSX-T Data Center.	In an environment with NSX-T Federation, only NSX-T Local Managers are supported at this time.
IOM-VROPS-CFG-031	Configure each NSX-T adapter to use the remote collector group.	Local-instance components are configured to use the remote collector group. This offloads data collection for local management components from the analytics cluster.	None.
IOM-VROPS-CFG-032	Install the SDDC Health management pack for vRealize Operations Manager .	Provides aggregated dashboards for VMware Cloud Foundation.	You must install the management pack manually.
IOM-VROPS-CFG-033	Activate the native Ping management pack in vRealize Operations Manager .	Provides metrics on the availability of endpoints.	You must activate the management pack manually.
IOM-VROPS-CFG-034	Add Ping adapters for the vRealize Operations Manager nodes.	Provides metrics on the availability of vRealize Operations Manager nodes.	You must add the adapter instances manually.
IOM-VROPS-CFG-035	Configure each Ping adapter for the vRealize Operations Manager nodes to use the default collector group.	Cross-instance components are configured to use the default collector group.	The load on the analytics cluster, though minimal, increases.
IOM-VROPS-CFG-036	Add a Ping adapter for the clustered Workspace ONE Access nodes.	Provides metrics on the availability of the clustered Workspace ONE Access nodes.	You must add the adapter instances manually.
IOM-VROPS-CFG-037	Configure the Ping adapter for the clustered Workspace ONE Access nodes to use the default collector group.	Local-instance components are configured to use the remote collector group.	This configuration offloads data collection for local management components from the vRealize Operations Manager analytics cluster.

For information about the design decisions on service accounts for the vRealize Operations Manager management packs, see Service Accounts for the Management Packs.

vRealize Operations Manager Metrics

vRealize Operations Manager collects data from objects in your environment. Each piece of collected data is called a metric observation or value. vRealize Operations Manager uses adapters and management packs to collect raw metrics. In addition to the metrics it collects, vRealize Operations Manager calculates capacity metrics, badge metrics, and metrics to monitor the health of your system.

Table 6. VMware Cloud Foundation Metrics
Type	Description
Self-monitoring metrics for vRealize Operations Manager	Collects metrics that monitor its own performance that are useful for diagnosing problems with vRealize Operations Manager.
vCenter Server	Collects metrics for vCenter Server components that are useful to troubleshoot issues in your environment.
vSAN	Collects metrics for vSAN objects, such as disk I/O and space utilization.
NSX-T Data Center	Collects metrics for NSX-T Data Center objects, such as logical switches, edge nodes, and controller clusters.
VMware Identity Manager	Collects metrics for Workspace ONE Access, such as certificates, storage space, database connections.
SDDC Health Monitoring Solution	Aggregates metrics from installed adapters and provides out of the box dashboards for VMware Cloud Foundation, including SDDC Manager and workload domain inventory and capacity metrics.
Ping	Verifies the availability of end points that exist in your virtual environment by using ICMP.

vRealize Operations Manager Alerts

Alert definitions are a combination of symptoms and recommendations that identify problem areas in vRealize Operations Manager and generate alerts on which you act for those areas.

Alert definitions are provided for various objects in your environment by the corresponding management packs. You can also create your own alert definitions.