After configuring the VMware Tunnel in the Workspace ONE UEM console and downloading the VMware Unified Access Gateway OVA file, use VMware vSphere to install the Unified Access Gateway onto your server. The Unified Access Gateway simplifies installation of the VMware Tunnel.

Important:

VMware Tunnel Unified Access Gateway deployment does not support the VMware vSphere desktop client. You must use the VMware vSphere web client or the PowerShell deployment method.

Requirements

  • Windows administrator privileges
  • Dedicated vSphere Admin Account with full privileges to deploy OVF

  • VMware-ClientIntegrationPlugin (available on my.vmware.com)
  • Communication between the Windows machine used to deploy the OVA and your vSphere instance
  • vSphere v6.0+
  • vSphere ESX host with a vCenter Server is needed.

    You must select the vSphere datastore and the network to use. You must associate a vSphere Network Protocol Profile with every referenced network name. This Network Protocol Profile specifies network settings such as IPv4 subnet mask, gateway etc. The deployment of Unified Access Gateway uses these values so ensure the values are correct.

  • Determine the number of network interfaces and static IP addresses to configure for the Unified Access Gateway appliance.

Procedure

  1. Log in to the vSphere Web client.
  2. Navigate to VMs and Templates.
  3. Select the folder where you want to deploy the Unified Access Gateway OVA file. Right-click the file and select Deploy OVF Template.
  4. Select the OVA file on your local machine or enter the URL for the OVA file. Click Next.
  5. Review the template details and select Next.
  6. Enter a unique Name for the deployment then select the folder or data center to hold the OVA file and select Next.
  7. Select the number of Network Interface Controllers (NICs) you want to associate with the appliance for your deployment configuration. Click Next.

    For best results, consult your network admins. Using three NICs provides the most security.

    For more information, see the Unified Access Gateway Documentation Center: https://docs.vmware.com/en/Unified-Access-Gateway/.

  8. On the Select a Resource screen, select a location to run the template.
  9. Select the storage and disk format options:

    Settings Descriptions
    Virtual Disk Format

    For evaluation and testing, select the Thin Provision format.

    For production environments, select one of the Thick Provision formats

    VM Storage Policy The values in this text box are defined by your vSphere administrator.

    When finished, select Next.

  10. Configure the Network Mapping settings.

    Enter the vSphere network names. A vSphere Network Protocol Profile must be associated with every referenced network name.

    The network profiles determine the IP protocol, DNS servers, gateway, and IPv4 subnet mask. If these are values are empty, you must enter the values.

    When finished, select Next.

  11. Configure the Properties settings. These settings include the Network Properties and the Password Options.

    • Customize the Network Properties as they relate to your VMware Tunnel network configuration.
    • Customize the Password Options.

      • Configure the password for the root user of the VM.
      • Configure the password for the REST API access.

        The REST API password is the password for the admin UI. You must follow the password requirements:

        • The password must be 8 characters long.
        • The password must contain at least one special character which includes: !@#$*()
        • The password must contain at least one lowercase character.
        • The password must contain at least one uppercase character.
        Caution:

        You must follow the password requirements. If you do not properly follow the instructions, installation fails without explanation. There is no validation at the end of this deployment. If you mistakenly enter in the wrong password, there is no warning informing you of an incorrect password.

    When finished, select Next.

  12. Review the OVA settings and select the Power on after deployment.
  13. Select Finish to deploy the Unified Access Gateway.

To complete the configuration of the VMware Tunnel, you must log into the Unified Access Gateway admin UI to customize your settings.