Before you can use NSX security policies in your multi-tier application, you have to create the policies. This scenario uses a Web Server policy, Database Server policy, Application Server policy, and Default Web Application policy.

Procedure

  1. Log in to the Compute vCenter Server by using the vSphere Web Client.
    1. Open a Web browser and go to https://sfo01w01vc01.sfo01.rainpole.local/vsphere-client .
    2. Log in using the following credentials.

      Option

      Description

      User name

      administrator@vsphere.local

      Password

      vsphere_admin_password

  2. From the vCenter Home page, select Networking & Security.
  3. On the left panel, select Service Composer.
  4. In the main panel, select the Security Policies tab.
  5. From the NSX Manager drop-down menu, select 172.16.11.66.
  6. Configure the security policy for the Web server.
    1. Select the Create Security Policy icon.
    2. Enter the name Web Server Policy and click Finish.
  7. Configure the security policy for the database server.
    1. Select the Create Security Policy icon.
    2. Enter the name Database Server Policy and click Finish.
  8. Configure the security policy for the application server.
    1. Select the Create Security Policy icon.
    2. Enter the name Application Server Policy and click Finish.
  9. Configure the security policy for all servers in the Web application.
    1. Select the Create Security Policy icon.
    2. Enter the name Default Web Application Policy and click Finish.
  10. Log in to the vRealize Automation Rainpole portal.
    1. Open a Web browser and go to https://vra01svr01.rainpole.local/vcac/org/rainpole.
    2. Log in using the following credentials.

      Setting

      Value

      User name

      vra-admin-rainpole

      Password

      vra-admin-rainpole_password

      Domain

      rainpole.local

  11. Navigate to Infrastructure > Compute Resources > Compute Resources.
  12. Place your mouse over sfo01-w01-comp01, select Data Collection, and scroll to the bottom of the Data Collection page.
  13. Under Network and Security Inventory, click Request now to be able to assign the policies in vRealize Automation.
  14. Click Refresh at the bottom of the screen until the inventory status shows Succeeded and click OK.