Some VMware Cloud Provider Lifecycle Manager configuration files and variables contain settings that can affect the security of your environment. Improper settings can also impact the proper functioning of your VMware Cloud Provider Lifecycle Manager environment.

VMware Cloud Provider Lifecycle Manager Configuration Files

The json configuration files contain information about the products, such as supported versions, checksums, interop compatibility.

File Location Description
/opt/vmware/cplcm/config/application.properties Contains configuration properties for the VMware Cloud Provider Lifecycle Manager REST API application
/opt/vmware/cplcm/config/bom Contains the product definitions for the supported products VMware Cloud Director, vCloud Usage Meter, vRealize Operations Manager Tenant App, and RabbitMQ.
/opt/vmware/cplcm/config/log4j2.xml Definition of VMware Cloud Provider Lifecycle Manager logging configuration

VMware Cloud Provider Lifecycle Manager Configuration Variables

When starting the VMware Cloud Provider Lifecycle Manager docker container, you can define the following variables.

Variable Description
RESTAPI_USERNAME The VMware Cloud Provider Lifecycle Manager local user account.
RESTAPI_PASSWORD The password for the VMware Cloud Provider Lifecycle Manager local user account.
CPLCM_CONTENT_REPO The path to the repository directory containing the product binaries. The default directory is /cplcmrepo.
EULA-ACCEPT Defines if EULA is accepted or not.
TASKS_RESULT_DIR The path to the directory containing the files with the REST API task results. These files are used to create the task response in the REST API. The default location is /tmp/vcplcm/tasks_result.
CPLCM_SCRIPTS_BASE_DIR_ANSIBLE The path to the directory containing the ansible playbooks. The default location is /opt/vmware/cplcm/scripts/ansible/playbooks.

If you update the location to the directory containing the ansible playbooks, you must store all playbooks in the new directory.

CPLCM_SCRIPTS_BASE_DIR_PYTHON The path to the directory containing the python scripts. The default location is /opt/vmware/cplcm/scripts/python/vcplcm/plugin.

You must store all python scripts in this directory using the required python file structure.

<product-name>/{deploy/discover/upgrade/validation}

CPLCM_BOM_PATH The path to the directory containing the product definitions for the deployed products. The default location is /opt/vmware/cplcm/config/bom.
VCPLCM_USER_ALLOWED_RETRIES The number of authentication attempts before the VMware Cloud Provider Lifecycle Managerlocal user account is locked for a specified amount of time. The default number of attempts is five.
VCPLCM_USER_LOCK_TIME In case of authentication failures, the time to keep a local user account locked. The default time is 15 minutes.
CPLCM_PYTHON_LOG_LEVEL The log level used for logging events in python scripts. The default is DEBUG.
CPLCM_PORT The TCP port on which the VMware Cloud Provider Lifecycle Manager REST API listens. The default port is 9443.
CPLCM_CERT_DIR The path to the directory containing the TLS certificate for the REST API. The default location is /opt/vmware/cplcm/security/certs.
CPLCM_KEYSTORE_PW The keystore password for accessing a custom keystore for the TLS certificate for the REST API. Only necessary if a custom keystore is created.