Host Profiles ensure that all hosts in the cluster have the same configuration.

Procedure

  1. Log in to the Compute vCenter Server by using the vSphere Web Client.
    1. Open a Web browser and go to https://sfo01w01vc01.sfo01.rainpole.local/vsphere-client .
    2. Log in using the following credentials.

      Setting

      Value

      User name

      administrator@vsphere.local

      Password

      vsphere_admin_password

  2. Create a Host Profile from sfo01w01esx01.sfo01.rainpole.local.
    1. In the Navigator, select Hosts and Clusters and expand the sfo01w01vc01.sfo01.rainpole.local tree.
    2. Right-click the ESXi host sfo01w01esx01.sfo01.rainpole.local and choose Host Profiles > Extract Host Profile.
    3. In the Extract Host Profile page, enter sfo01-w01hp-comp01 for the Name and click Next.
    4. In the Ready to complete page, click Finish.
  3. Attach the Host Profile to the shared edge and compute cluster.
    1. In the Navigator, select Hosts and Clusters and expand the sfo01w01vc01.sfo01.rainpole.local tree.
    2. Right-click the sfo01-w01-comp01 cluster and choose Host Profiles > Attach Host Profile.
    3. In the Attach Host Profile dialog, select the sfo01-w01hp-comp01 Host Profile, select the Skip Host Customization check box, and click Finish.
  4. Create Host Customizations for the hosts in the shared edge and compute cluster.
    1. In the Navigator, select Policies and Profiles.
    2. Click Host Profiles, right-click sfo01-w01hp-comp01, and select Export Host Customizations.
    3. In the dialog, click Save.
    4. Choose a file location to save the sfo01-w01hp-comp01_host_customizations.csv file.
    5. Open the sfo01-w01hp-comp01_host_customizations.csv in Excel.
    6. Edit the file using the following configuration value.

      ESXi Host

      Active Directory Configuration Password

      Active Directory Configuration Username

      NetStack Instance defaultTcpipStack->DNS configuration Name for this host

      sfo01w01esx01.sfo01.rainpole.local

      svc-domain-join_password

      svc-domain-join@rainpole.local

      sfo01w01esx01

      sfo01w01esx02.sfo01.rainpole.local

      svc-domain-join_password

      svc-domain-join@rainpole.local

      sfo01w01esx02

      sfo01w01esx03.sfo01.rainpole.local

      svc-domain-join_password

      svc-domain-join@rainpole.local

      sfo01w01esx03

      sfo01w01esx04.sfo01.rainpole.local

      svc-domain-join_password

      svc-domain-join@rainpole.local

      sfo01w01esx04

      ESXi Host

      Host virtual NIC sfo01-w01-vds01:sfo01-w01-vds01-management:management->IP address settings IPv4 address

      Host virtual NIC sfo01-w01-vds01:sfo01-w01-vds01-management:management->IP address settings SubnetMask

      sfo01w01esx01.sfo01.rainpole.local

      172.16.31.101

      255.255.255.0

      sfo01w01esx02.sfo01.rainpole.local

      172.16.31.102

      255.255.255.0

      sfo01w01esx03.sfo01.rainpole.local

      172.16.31.103

      255.255.255.0

      sfo01w01esx04.sfo01.rainpole.local

      172.16.31.104

      255.255.255.0

      ESXi Host

      Host virtual NIC sfo01-w01-vds01:sfo01-w01-vds01-nfs:<UNRESOLVED>->IP address settings IPv4 address

      Host virtual NIC sfo01-w01-vds01:sfo01-w01-vds01-nfs:<UNRESOLVED>->IP address settings SubnetMask

      sfo01w01esx01.sfo01.rainpole.local

      172.16.25.101

      255.255.255.0

      sfo01w01esx02.sfo01.rainpole.local

      172.16.25.102

      255.255.255.0

      sfo01w01esx03.sfo01.rainpole.local

      172.16.25.103

      255.255.255.0

      sfo01w01esx04.sfo01.rainpole.local

      172.16.25.104

      255.255.255.0

      ESXi Host

      Host virtual NIC sfo01-w01-vds01:sfo01-w01-vds01-vmotion:vmotion->IP address settings IPv4 address

      Host virtual NICsfo01-w01-vds01:sfo01-w01-vds01-vmotion:vmotion->IP address settings SubnetMask

      sfo01w01esx01.sfo01.rainpole.local

      172.16.32.101

      255.255.255.0

      sfo01w01esx02.sfo01.rainpole.local

      172.16.32.102

      255.255.255.0

      sfo01w01esx03.sfo01.rainpole.local

      172.16.32.103

      255.255.255.0

      sfo01w01esx04.sfo01.rainpole.local

      172.16.32.104

      255.255.255.0

    7. After the file has been updated, save it and close Excel.
    8. Click the sfo01-w01hp-comp01 host profile and then click the Configure tab.
    9. Click the Edit Host Customizations button.
    10. In the Edit Host Customizations window, select all hosts and click Next.
    11. Click the Browse button to use a customization file. Locate the sfo01-w01hp-comp01_host_customizations.csv file saved earlier, select it, click Open, and then click Finish.
  5. Remediate the hosts in the shared edge and compute cluster.
    1. On the Policies and Profiles page, click sfo01-w01hp-comp01, click the Monitor tab, and then click the Compliance tab.
    2. In the Host/Cluster column, click sfo01-w01-comp01 and click Check Host Profile Compliance icon.

      The compliance test shows the first host is Compliant. The remaining hosts are Not Compliant.

    3. For each of the non-compliant hosts, click Remediate host based on its host profile icon and click Finish.

      All hosts now have Compliant status in the Host Compliance column.

  6. Schedule nightly compliance checks.
    1. On the Policies and Profiles page, click sfo01-w01hp-comp01, click the Monitor tab, and then click the Scheduled Tasks subtab.
    2. Click Schedule a New Task then click Check Host Profile Compliance.
    3. In the Check Host Profile Compliance (scheduled) window, click Scheduling options.
    4. Enter sfo01-w01hp-comp01 Compliance Check in the Task Name field.
    5. Click the Change button on the Configured Scheduler line.
    6. In the Configure Scheduler window, select Setup a recurring schedule for this action,change the Start time to 10:00 PM, and click OK.
    7. In the Check Host Profile Compliance (scheduled) window, click OK.