Each VMware Cloud Foundation validated solution has design objectives to deliver a target outcome.

VMware Validated Solution Objective

Description

Main objective

A modern cloud automation services platform which provides private and multi-cloud environments on VMware Cloud Foundation and extension to public cloud infrastructure.

VMware Cloud Foundation architecture support
  • vSAN ReadyNodes
    • Standard
      • Single VMware Cloud Foundation instance
      • Multiple VMware Cloud Foundation instances with NSX Federation
      • Single or multiple VMware Cloud Foundation instances with multiple availability zones
  • VxRail Nodes
    • Standard
      • Single VMware Cloud Foundation instance
      • Multiple VMware Cloud Foundation instances with NSX Federation
      • Single or multiple VMware Cloud Foundation instances with multiple availability zones
Important:

This solution does not cover the integration of vRealize Automation with NSX Federation.

The vRealize Automation version in this solution supports the consumption of existing global segments through the addition and association of NSX Global Manager cloud accounts, but provisioning of on-demand global objects is not available. See the vRealize Automation 8.8.2 Release Notes document.

Workload domain type support
  • Management workload domain
  • Virtual infrastructure (VI) workload domain

Scope of guidance
  • Detailed design for solution components.
  • Implementation guidance for solution components
  • Operational guidance for the solution components, such as operational verification, password management, certificate management, and scale management.
  • Solution interoperability with other solution components, such as monitoring and alerting, logging, and life cycle.

Scope of implementation
Deployment and initial configuration of solution components:
  • VMware vRealize® Automation™ Cloud Assembly™
  • VMware vRealize® Automation™ Service Broker™
  • VMware vRealize Orchestrator
Note:
The following product components are out of scope for this solution design:
  • VMware vRealize® Automation™ Code Stream™
  • VMware vRealize® Automation™ SaltStack Config™

Cloud type

 Private cloud
  • Support for private cloud automation on VMware Cloud Foundation
  • Support for public cloud automation extension

Tenancy

 Single-tenant
Note: The use of vRealize Automation multi-tenancy is not included in this solution design.

Load balancing

Provided by NSX-T Data Center

Availability

99%

Authentication, authorization, and access control
  • Use of VMware Workspace ONE® Access™ for authentication.
  • Use of Microsoft Active Directory over LDAP with SSL as the identity provider.
  • Use of security groups and roles for least-privilege access control.
  • Use of service accounts and least-privilege access control for solution integration.

Certificate signing

Certificates are signed by a certificate authority (CA) that consists of a root and intermediate certificate authority layers.