vCloud Director must be configured to support environments that can securely support multiple tenants.
The vCloud Director environment must be fully configured to support workloads before you can continue with the vCloud Availability for vCloud Director installation. You must create the Resource vSphere, Provider VDCs, Organizations, and Organization VDCs before installing the vCloud Availability for vCloud Director solution. For more information, see the vCloud Director 8.10 Administrator's Guide.
vCloud Director is configured to use the following settings:
Port 5671 is used for AMQP messaging over SSL. SSL connections are recommended, but if there is a requirement to use non-SSL connections for vCloud Director, you can add the
--amqp-port=port-numberargument to the
vcav hcs configurecommand. For more information, see Configure vSphere Replication Cloud Service. You can configure RabbitMQ to listen on both SSL and non-SSL ports. For more information, see RabbitMQ Installation and Configuration. For more information about configuring an AMQP broker, see Configure an AMQP Broker in vCloud Director Administrator's Guide.
To configure vCloud Director to use the RabbitMQ Servers, do the following:
Create a trusted connection between the RabbitMQ host and the vCloud Availability Installer Appliance.
# vcav trust add --address=$AMQP_ADDRESS --port=5671 --accept-all
Register the RabbitMQ host with vCloud Director by running the follwoing command on the vCloud Availability Installer Appliance:
Command Using Registry
# vcav vcd configure-amqp \ --vcd-address=$VCD_ADDRESS \ --vcd-user=$VCD_USER \ --vcd-password-file=~/.ssh/.vcd \ --amqp-address=$AMQP_ADDRESS \ --amqp-port=5671 \ --amqp-user=vcd \ --amqp-password-file=~/.ssh/.amqp \ --amqp-vhost=/ \ --amqp-exchange=systemExchange
# vcav vcd configure-amqp \ --vcd=vcd-01-name \ --amqp-address=$AMQP_ADDRESS \ --amqp-port=5671 \ --amqp-user=vcd \ --amqp-password-file=~/.ssh/.amqp \ --amqp-vhost=/ \ --amqp-exchange=systemExchange
Restart vCloud Director and Cloud Proxy hosts after configuring AMQP settings, by creating an SSH connection to the hosts and restarting the
Enabled Public URL and certificates. For more information, see Configuring Public Addresses in vCloud Director Administrator's Guide.
Shared single sign-on. For more information, see Configure vCloud Director to use vCenter Single Sign On in vCloud Director Administrator's Guide.
By default, vCloud Availability for vCloud Director 1.0.1 supports the use of TLS 1.2 during the SLL handshake process. To build a pure TLS 1.2 environment for vCloud Availability for vCloud Director operations, the vSphere Replication and vCenter Server instances that are deployed on-premise must also support TLS 1.2. For more information, select the Transport Layer Security category from the drop-down in the Interoperability Pages for vCloud Availability for vCloud Director 1.0.1.
Configure the timeout settings for the vCloud Director extensions.
Use a text editor to open /opt/vmware/vcloud-director/etc/global.properties file. Set the extensibility.timeout value to 60.
Use a wildcard certificate for all public interfaces of vCloud Director to enable certificate sharing between multiple hosts and subdomains. For example:
Copies of the following files are required to create and configure a Cloud Proxy: