This reference lists all the steps involved when deploying an HCX Connector, or HCX Cloud system. The steps are listed here as a quick reference. Requirements are not listed here. Use the checklists in this publication to prepare for the installation.
Install (or Enable) HCX Cloud at the Destination
Enable the HCX Service (in a public cloud), or Install HCX Cloud Manager at the destination:
If the destination is a Public Cloud instance, the provider may deploy HCX Cloud automatically when the service is enabled. If not, continue to step b.
If the destination environment is a Private Cloud:
Use the HCX-Cloud-Manager-########.OVA to deploy the HCX Manager in the vSphere Client.
Browse to the HCX Appliance Management (9443) interface and activate or license HCX and set the Location.
Register the vCenter Server & NSX Manager.
Define Role Mapping (this setting defines the groups can perform HCX operations).
Restart the HCX Services
In the destination environment HCX Cloud Manager, create a Compute Profile:
If the destination is VMware Cloud Foundation or a private SDDC installation:
Browse to the HCX UI (443) or use the HCX Plug-in in vSphere to create a Compute Profile. The compute profile defines how HCX Services Mesh components is deployed in the destination environment.
If the destination is a Public Cloud instance, review the existing Compute Profile and Uplink Network Profile configurations.
Configure firewalls to allow the inbound HCX traffic:
Allow TCP-443 inbound from the planned source HCX Manager to the HCX Cloud Manager at the destination (this may be a NAT Public IP if the environments are separated by Internet).
Allow UDP-4500 inbound from the source HCX IX and NE planned IP addresses (this may be a NAT IP if the environments are separated by Internet).
Configure any other firewalls as needed. Reference ports.vmware.com for the complete list of HCX network ports.
Install HCX at the source environment:
Install the HCX Connector Source
Use the HCX-Connector-Manager-########.OVA to deploy the HCX Manager system in the vSphere Client. After the OVA is deployed and the system is initialized:
Browse to the HCX Appliance Management interface (:9443), authenticate with the Admin user.
Register the vCenter Server, SSO, and optionally the NSX Manager.
Configure Role Mapping (this defines the SSO user groups can perform HCX operations).
Create a Compute Profile:
Browse to the the HCX Connector service UI (:443), authenticate with a user that is part of the role-mapping group. Or use the HCX plug-in to create a Compute Profile.
Create a Site Pairing:
The HCX Connector service UI (:443) registers the remote HCX Cloud system using the SSO group from the destination environment (or Cloud admin if the target is a VMC SDDC)
Create a Service Mesh:
The HCX Connector service UI (:443) uses the Service Mesh wizard to instantiate services.
In the service mesh interface you select a Compute Profile for the HCX Connector environment, and a Compute Profile for the destination environments.
Service mesh creation deploys HCX components in parallel at the source and the destination environments.
The source HCX service components are Initiators, and will automatically attempt to establish HCX tunneling connections to the destination side.
The destination HCX service components are Receivers that will only accept tunneling request from the Initiators.