After you create the security policies for your scenario, you can apply them to a multi-tier Web application. You copy an existing blueprint and add the security groups to the blueprint.

About this task

You copy a blueprint that is created in Creating Multi-Tier Applications in Region A. You can instead create a blueprint from scratch, and apply security policies to that blueprint.

Procedure

  1. Log in to the vRealize Automation Rainpole portal.
    1. Open a Web browser and go to https://vra01svr01.rainpole.local/vcac/org/rainpole.
    2. Log in using the following credentials.

      Setting

      Value

      User name

      vra-admin-rainpole

      Password

      vra-admin-rainpole_password

      Domain

      rainpole.local

  2. Navigate to the Design tab and select the Multi-Tier Web App blueprint that is created in Creating Multi-Tier Applications in Region A.
  3. Click Copy and enter the following information.

    Setting

    Value

    Name

    Multi-Tier Web App - DFW

    Description

    Multi-tier Web application deployment protected by VMware NSX Micro-Segmentation

  4. Click OK and click Save to save the blueprint
  5. Add security groups to the Wordpress blueprint.
    1. Select Network & Security under Categories.
    2. Drag the On-Demand security group to the design canvas.
    3. Repeat this step two more times for a total of three On-Demand groups.
  6. Configure the Web_Tier_Group security group
    1. Click the first On-Demand security group
    2. Under General, enter Web_Tier_Group in the ID text field
    3. Under Security Policies, click Add.
    4. Select Web Server Policy and Default Web Application Policy and click OK.
  7. Configure the DB_Tier_Group security group
    1. Click the second On-Demand security group.
    2. Under General, enter DB_Tier_Group in the ID text field
    3. Under Security Policies, click Add.
    4. Select Database Server Policy and Default Web Application Policy and click OK.
  8. Configure the App_Tier_Group security group
    1. Click the third On-Demand security group
    2. Under General, enter App_Tier_Group in the ID text field.
    3. Under Security Policies, click Add.
    4. Select Application Server Policy and click OK.
  9. Assign virtual machines to security groups
    1. Click the Web vSphere Machine type in the design canvas.
    2. Click the Security tab.
    3. Select Web_Tier_Group and App_Tier_Group because both the Web tier and the app tier are installed in the same virtual machines and click Save.
    4. Click the Database vSphere Machine type in the design canvas.
    5. Click the Security tab
    6. Select DB_Tier_Group, click Save, and click Finish.
  10. Publish the multi-tier blueprint.
    1. Select Multi-Tier Web App - DFW and click Publish.
    2. Navigate to Administration > Catalog Management > Catalog Items.
    3. In the Catalog Items list, click the Multi-Tier Web App - DFW blueprint.
    4. In the Configure Catalog Items dialog box, set Service to Converged Blueprint Catalog, and click OK.