VMware Cloud Foundation Administration Guide

1. Download an Install Bundle from SDDC Manager

• In a connected environment, download the VMware Aria Suite Lifecycle 8.16.0-23377566 bundle using SDDC Manager.

• In a disconnected environment, download the VMware Aria Suite Lifecycle 8.16.0-23377566 bundle using the Bundle Transfer Utility.

2. Deploy VMware Aria Suite Lifecycle

Deploy VMware Aria Suite Lifecycle using SDDC Manager.

3. Replace the Certificate of the VMware Aria Suite Lifecycle Instance

Replace the VMware Aria Suite Lifecycle certificate with a Certificate Authority signed version.

Private Cloud Automation for VMware Cloud Foundation

4. Apply a Product Support Pack to VMware Aria Suite Lifecycle for Private Cloud Automation for VMware Cloud Foundation

Update the Product Support Pack to PSPACK6 in VMware Aria Suite Lifecycle.

5. Create a vSphere Content Library for Operational Management for Private Cloud Automation for VMware Cloud Foundation

Create a vSphere Content Library to host the VMware Aria Suite Lifecycle Upgrade ISO file.

6. Obtain and Upload VMware Aria Suite Lifecycle Upgrade ISO to vSphere Content Library for Private Cloud Automation for VMware Cloud Foundation

Download the VMware Aria Suite Lifecycle 8.18.0 upgrade ISO from VMware Downloads and upload it to the vSphere Content Library.

7. Upgrade VMware Aria Suite Lifecycle for Private Cloud Automation for VMware Cloud Foundation

Attach the Upgrade ISO and perform an upgrade of VMware Aria Suite Lifecycle to 8.18.0.

8. Apply a Product Support Pack to VMware Aria Suite Lifecycle for Private Cloud Automation for VMware Cloud Foundation

Update the Product Support Pack to PSPACK3 in VMware Aria Suite Lifecycle.

9. Delete Snapshots of VMware Aria Suite Lifecycle for Private Cloud Automation for VMware Cloud Foundation

Remove all VMware Aria Suite Lifecycle snapshots created during the update process.

VMware Cloud Foundation Administration Guide

10. Configure Data Center and vCenter Server in VMware Aria Suite Lifecycle

Add a cross-instance data center and the associated management domain vCenter Server to VMware Aria Suite Lifecycle.

11. Import the Workspace ONE Access Certificate to VMware Aria Suite Lifecycle

Import the Workspace ONE Access certificate that you generated with the CertGenVVS utility.

12. Add Workspace ONE Access Passwords to VMware Aria Suite Lifecycle

To enable life cycle management and configuration management, you set the passwords for the VMware Aria Suite Lifecycle cross-instance environment administrator account and for the Workspace ONE Access administrator and configuration administrator accounts.

13. Deploy Clustered Workspace ONE Access Instance Using VMware Aria Suite Lifecycle

To provide identity and access management services to the cross-instance SDDC components, you create a global environment in VMware Aria Suite Lifecycle in which you deploy a 3-node clustered Workspace ONE Access instance.

14. Configure an Anti-Affinity Rule and a Virtual Machine Group for a Clustered Workspace ONE Access Instance

Configure an anti-affinity rule to run the virtual machines on different hosts in the default management vSphere cluster.

15. Configure NTP on Workspace ONE Access

Configure NTP using the Workspace ONE Access appliance configuration interface.

16. Configure the Domain and Domain Search Parameters on Workspace ONE Access

Configure the domain name and domain search parameters on Workspace ONE Access.

17. Configure an Identity Source for Workspace ONE Access

To enable identity and access management in the SDDC, you integrate your Active Directory with Workspace ONE Access and configure attributes to synchronize users and groups.

18. Add the Clustered Workspace ONE Access Cluster Nodes as Identity Provider Connectors

To provide high availability for the identity and access management services of a clustered Workspace ONE Access instance, you add the cluster nodes as directory connectors.

19. Assign Roles to Active Directory Groups for Workspace ONE Access

Workspace ONE Access uses role-based access control to manage delegation of roles. You assign the Super Admin, Directory Admin, and ReadOnly roles to Active Directory groups to manage access to Workspace ONE Access.

20. Assign Roles to Active Directory Groups for VMware Aria Suite Lifecycle

To enable identity and access management for VMware Aria Suite Lifecycle, you integrate the component with the clustered Workspace ONE Access instance.

• In a connected environment, download the VMware Aria Suite Lifecycle 8.14.0-22630472 bundle using SDDC Manager.
• In a disconnected environment, download the VMware Aria Suite Lifecycle 8.14.0-22630472 bundle using the Bundle Transfer Utility.

Private Cloud Automation for VMware Cloud Foundation

4. Apply a Product Support Pack to VMware Aria Suite Lifecycle for Private Cloud Automation for VMware Cloud Foundation

Update the Product Support Pack to PSPACK10 in VMware Aria Suite Lifecycle.

5. Create a vSphere Content Library for Operational Management for Private Cloud Automation for VMware Cloud Foundation

Create a vSphere Content Library to host the VMware Aria Suite Lifecycle Upgrade ISO file.

6. Obtain and Upload VMware Aria Suite Lifecycle Upgrade ISO to vSphere Content Library for Private Cloud Automation for VMware Cloud Foundation

Download the VMware Aria Suite Lifecycle 8.18.0 upgrade ISO from VMware Downloads and upload it to the vSphere Content Library.

7. Upgrade VMware Aria Suite Lifecycle for Private Cloud Automation for VMware Cloud Foundation

Attach the Upgrade ISO and perform an upgrade of VMware Aria Suite Lifecycle to 8.18.0.

8. Apply a Product Support Pack to VMware Aria Suite Lifecycle for Private Cloud Automation for VMware Cloud Foundation

Update the Product Support Pack to PSPACK3 in VMware Aria Suite Lifecycle.

9. Delete Snapshots of VMware Aria Suite Lifecycle for Private Cloud Automation for VMware Cloud Foundation

Remove all VMware Aria Suite Lifecycle snapshots created during the update process.

VMware Cloud Foundation Administration Guide

Add a cross-instance data center and the associated management domain vCenter Server to VMware Aria Suite Lifecycle.

Import the Workspace ONE Access certificate that you generated with the CertGenVVS utility.

To enable life cycle management and configuration management, you set the passwords for the VMware Aria Suite Lifecycle cross-instance environment administrator account and for the Workspace ONE Access administrator and configuration administrator accounts.

To provide identity and access management services to the cross-instance SDDC components, you create a global environment in VMware Aria Suite Lifecycle in which you deploy a 3-node clustered Workspace ONE Access instance.

Configure an anti-affinity rule to run the virtual machines on different hosts in the default management vSphere cluster.

Configure NTP using the Workspace ONE Access appliance configuration interface.

Configure the domain name and domain search parameters on Workspace ONE Access.

To enable identity and access management in the SDDC, you integrate your Active Directory with Workspace ONE Access and configure attributes to synchronize users and groups.

To provide high availability for the identity and access management services of a clustered Workspace ONE Access instance, you add the cluster nodes as directory connectors.

Workspace ONE Access uses role-based access control to manage delegation of roles. You assign the Super Admin, Directory Admin, and ReadOnly roles to Active Directory groups to manage access to Workspace ONE Access.

To enable identity and access management for VMware Aria Suite Lifecycle, you integrate the component with the clustered Workspace ONE Access instance.