First Published: September 29, 2014 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883
THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS. THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY. The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCB's public domain version of the UNIX operating system. All rights reserved. Copyright 1981, Regents of the University of California. NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED AS IS" WITH ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE. IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. Any Internet Protocol (IP) addresses and phone numbers used in this document are not intended to be actual addresses and phone numbers. Any examples, command display output, network topology diagrams, and other figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses or phone numbers in illustrative content is unintentional and coincidental. Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: http:// www.cisco.com/go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1110R) 2014 Cisco Systems, Inc. All rights reserved.
CONTENTS Preface Preface xv Audience xv Conventions xv Documentation Feedback xvii Obtaining Documentation and Submitting a Service Request xvii CHAPTER 1 New and Changed Information for this Release 1 New and Changed Information for this Release 1 CHAPTER 2 Overview 3 About Cisco UCS Director 3 Features and Benefits 4 Physical and Virtual Management Features 5 Model-Based Orchestration 6 Wizards in Cisco UCS Director 6 Initial Login 7 Recommended Order of System Setup 7 CHAPTER 3 Managing Users and Groups 9 Managing User Roles 9 Adding a User Role 10 Managing User Types 11 Default User Permissions 11 All Policy Admin 11 Billing Admin 13 Computing Admin 15 Group Admin 17 iii
Contents IS Admin 19 Network Admin 21 Operator 22 Service End User 24 Storage Admin 26 User Roles and Permissions 28 Managing Groups 31 Creating a Group or Customer Organization 31 Password Policy 32 Creating a Password Policy 32 Group Budget Policy 33 Viewing and Editing a Group Budget Policy 33 Resource Limits 34 Viewing Resource Limits 34 Editing Resource Limits 34 Configuring the Administration Profile 36 Creating the Admin Profile 36 Changing the Admin Password 37 Adding Users 37 Viewing Current Online Users 39 Managing User Access Profiles 39 Multi-Role Access Profiles 39 Creating a User Access Profile 39 Editing User Access Profile 40 Deleting a User Access Profile 41 Logging in to a Profile 41 Delete Profile 41 Changing Default Profile 41 Authentication and LDAP Integration 42 Configuring Authentication Preferences 42 LDAP Integration 43 LDAP Integration Rules and Limitations 44 Managing LDAP Integration 44 Configuring LDAP Servers 45 Viewing LDAP Server Summary Information 47 iv
Contents Testing LDAP Server Connectivity 48 Adding LDAP Search BaseDN Entries 48 Executing LDAP Synchronization System Task 48 Modifying LDAP Server Details 49 Deleting LDAP Server Information 50 Single Sign On 50 Enabling a Single Sign-On 50 Branding Groups and Customer Organizations 51 Login Page Branding 52 Configuring Custom Domain Logo 52 CHAPTER 4 Managing System Administration Settings 53 Setting Up the Outgoing Mail Server 53 Working with Email Templates 54 Adding an Email Template 55 Previewing an Email Template 56 Setting a Default Email Template 56 Configuring System Parameters (Optional) 56 Configuring System Parameters 56 Configuring Infrastructure System Parameters (Optional) 58 Updating the License 58 Verifying License Utilization 58 Viewing License Utilization History 59 Viewing Resource Usage Data 59 Edit Application Categories 60 Customizing the Portal 61 Customizing the Login Page and Background Images 61 Customizing the Application Logo 61 Customizing Favicons 62 Customizing Application Header 62 Customizing Date Display 63 Customizing the Color Theme 64 Customizing Logout Redirect 64 Customizing Reports 64 Advanced Controls 65 v
Contents Enabling Advanced Controls 65 User Menus 66 Setting User Menus 66 Setting User Permissions 67 Managing System Tasks 67 Creating a de Pool 67 Creating System Task Policy 68 Assigning a de Pool to System Policy Task 68 Creating a Service de 69 Assigning a System Policy to a System Task 70 Executing System Tasks 70 Disabling a System Task 70 Managing Icons 71 Adding an Icon 71 Editing an Icon 72 Deleting an Icon 72 Previewing an Icon 72 Tag Library 73 Creating a Tag 73 Editing a Tag 74 Cloning a Tag 76 Deleting a Tag 77 Support Information 78 Viewing Support Information 78 Viewing System Information 78 Showing Logs 78 Downloading the Logs 78 Starting the Debug Log 78 CHAPTER 5 Managing Integration Settings 81 Configuration Management Database Integration 81 Setting Up CMBD Integration 81 Metering Data Export 82 Setting Up Metering Data Export 82 Change Records 83 vi
Contents Viewing Change Records 83 System Logs 83 Setting Up System Logs 83 Storage and OVF Upload 84 Multiple Language Support 84 CHAPTER 6 Managing a Physical Infrastructure 85 About Managing a Physical Infrastructure 85 Adding a Site 85 Adding a Pod 86 Adding a Physical Account 87 Adding a Multi-Domain Manager Account 89 Adding a Network Element 90 Enabling DHCP Logging 91 Testing Connectivity 92 Testing Connectivity of Managed Network Elements 92 Testing the Connection to a Physical Account 92 Enabling Device Discovery 93 CHAPTER 7 Managing a Virtual Infrastructure 95 About Managing WMware 95 Creating a Cloud 95 Downloading the PowerShell Agent Installer 97 Creating a PowerShell Agent 97 Verifying Cloud Discovery and Connectivity 98 Testing the Connection 98 Viewing vcenter Plug-ins 98 CHAPTER 8 Managing Policies 99 Policies 99 Computing Policies 99 Creating a Computing Policy 100 Data Collection Policy 102 Configuring a Data Collection Policy for a Virtual Account 102 Associating the Data Collection Policy for a Virtual Account 103 vii
Contents About Group Share Policy 103 Creating a Group Share Policy 104 Storage Policies 104 Storage Policies for Multiple VM Disks 105 Adding and Configuring a Storage Policy 105 Virtual Storage Catalogs 107 Configuring a Virtual Storage Catalog 107 Network Policies 108 Adding a Static IP Pool Policy 108 Adding a Network Policy 109 Networking Provisioning Policies 111 Configuring a Network Provisioning Policy 111 VLAN Pool Policies 112 Configuring a VLAN Pool Policy 113 System Policies 113 Configuring a System Policy 113 OS Licenses 116 Adding an OS License 116 About End User Self-Service Policy 117 Creating an End User Policy 118 CHAPTER 9 Managing Virtual Data Centers 119 About Managing Virtual Data Centers 119 VDC Actions 120 Adding a Virtual Data Center 120 Viewing a Virtual Data Center 122 Editing a Virtual Data Center 123 Deleting a Virtual Data Center 125 Cloning a Virtual Data Center 125 Managing Application Categories in a Virtual Data Centers 127 Virtual Data Center Service Profiles 128 Adding a Virtual Data Center Service Profile 128 CHAPTER 10 Managing Catalogs 131 About Managing Catalogs 131 viii
Contents Publishing a Catalog 132 About Publishing Advanced Catalogs 137 Publishing Advanced Catalogs 137 Viewing a Catalog 138 Editing a Catalog 139 Reordering Catalogs Within a Folder 143 Cloning a Catalog 143 Deleting a Catalog 144 Accessing Hosts for Deployment 144 Re-ordering Catalog Folders 145 CHAPTER 11 Using Self-Service Provisioning 147 About Self Service Provisioning 147 About Service Requests 147 Creating a Service Request with Catalog Type Standard 148 Creating a Service Request with Catalog Type Advanced 151 Service Request Workflow and Details 151 Service Request Workflow 152 Service Request Details 152 Viewing the Workflow Status of a Service Request 154 Viewing Log Details for a Service Request 154 About Scheduling a Service Request 154 Scheduling Service Requests 155 About Resubmitting a Service Request 155 Resubmitting a Service Request 155 Other Service Request Functions 156 Canceling a Service Request 156 Rolling Back a Service Request 156 Viewing Service Requests for a Particular Group 157 Searching the Service Requests History for a Group 157 Exporting the Service Requests History for a Group 157 Reinstating an Archived Service Request 158 Service Request Approval Process 158 Approving a Service Request 158 Rejecting a Service Request 159 ix
Contents Viewing the Service Requests Approvals History 159 Searching the Service Request Approvals History 159 Exporting Service Request Approvals History 160 Service Request Budgeting 160 Viewing the Current Month Budget Availability 160 Viewing Budget Entries 160 Adding a Budget Entry 161 Editing a Budget Entry 161 Deleting a Budget Entry 162 CHAPTER 12 Multiple Disk VM Provisioning 163 About Multiple Disk VM Provisioning 163 Workflow for Multiple Disk VM Provisioning 164 About Templates with Multiple Disks 164 Assigning Disk Categories 164 Defining Storage Policies 165 Creating a Storage Policy 165 Creating a Catalog 167 Adding a Catalog 167 Creating a VM Disk 172 CHAPTER 13 Using the Chargeback Module 175 About Chargeback Features 175 Budget Policies 176 Configuring a Budget Policy 176 Cost Models 176 Creating a Cost Model 177 Modifying a VDC to Include a Cost Model 179 Adding a Cost Model to a VDC 179 Editing a VDC to Include a Cost Model 181 Package-Based Cost Models 181 Creating a Package-Based Cost Model 182 Storage Tier Cost Models 183 Assigning a Cost to a Tier 184 About Assigning a Datastore to Tiers 184 x
Contents Assigning a Datastore to a Tier 184 Chargeback Reports 185 Viewing the Current Month Summary 186 Viewing the Previous Month s Summary 186 Viewing Monthly Resource Accounting Information 186 Viewing the VM Level Resource Accounting Details 187 Viewing the VM Level Chargeback Details 187 Exporting the Monthly Resource Accounting Details 187 Exporting VM Level Resource Accounting Details 188 Exporting VM Level Chargeback Details 188 About Change Records 188 Accessing Change Records 189 Chargeback Calculations 189 CHAPTER 14 System Monitoring and Reporting 191 Dashboard 191 Enabling the Dashboard 191 Adding Report Widgets 192 Refreshing Widget Data 192 Summary 192 Viewing Virtual Machine, Cloud and System Summary Information 192 Customizing Summary Report Widgets 193 Inventory Management 193 Accessing System Inventory Details 193 Resource Pools 194 Accessing Resource Details 194 Clusters 194 Accessing Clusters 194 Images 194 Accessing Images 195 Host des 195 Accessing Host des 195 Virtual Machines (VMs) 195 Accessing VMs 195 Accessing Group Level VMs 196 xi
Contents Topology 196 Accessing Topology Types 196 Assessment 197 Accessing Assessments 197 Reports 197 Accessing Reports 198 CHAPTER 15 Managing Lifecycles 199 Managing VM Power Settings 199 Resizing VMs 200 Managing VM Snapshots 201 Creating VM Snapshots 201 Reverting to a Snapshot 202 Marking a Golden Snapshot 203 Deleting a Snapshot 203 Deleting All Snapshots 204 Configuring the Lease Time for a Virtual Machine 204 Managing VM Actions 205 Viewing VM Details 206 Using Stack View 206 Deleting a VM 206 Creating a VM Disk 207 Deleting a VM Disk 208 Adding vnics 208 Replacing a vnic 210 Deleting vnics 211 Launching the VM Client 211 Enabling the VNC Console on a VM 212 Accessing the VNC Console Window for a VM 212 Assigning a VM 213 VM Credentials 215 Viewing VM Credentials 215 Using the Inventory Collection Request for a VM 215 Testing VNC Connectivity 215 Cloning a VM 216 xii
Contents Moving a VM to VDC 220 Resynchronizing a VM 221 CHAPTER 16 Managing CloudSense Analytics 223 About CloudSense Analytics 223 Generating a Report 224 Generating an Assessment 224 APPENDIX A Appendix 225 Configuring the VNC Console on an ESX Server 225 xiii
Contents xiv
Preface This preface contains the following sections: Audience, page xv Conventions, page xv Documentation Feedback, page xvii Obtaining Documentation and Submitting a Service Request, page xvii Audience This guide is intended primarily for data center administrators who use Cisco UCS Director and who have responsibilities and expertise in one or more of the following: Server administration Storage administration Network administration Network security Virtualization and virtual machines Conventions Text Type Indication GUI elements GUI elements such as tab titles, area names, and field labels appear in this font. Main titles such as window, dialog box, and wizard titles appear in this font. Document titles Document titles appear in this font. TUI elements In a Text-based User Interface, text the system displays appears in this font. xv
Conventions Preface Text Type System output CLI commands [ ] {x y z} [x y z] string < > [ ]!, # Indication Terminal sessions and information that the system displays appear in this font. CLI command keywords appear in this font. Variables in a CLI command appear in this font. Elements in square brackets are optional. Required alternative keywords are grouped in braces and separated by vertical bars. Optional alternative keywords are grouped in brackets and separated by vertical bars. A nonquoted set of characters. Do not use quotation marks around the string or the string will include the quotation marks. nprinting characters such as passwords are in angle brackets. Default responses to system prompts are in square brackets. An exclamation point (!) or a pound sign (#) at the beginning of a line of code indicates a comment line. te Means reader take note. tes contain helpful suggestions or references to material not covered in the document. Tip Means the following information will help you solve a problem. The tips information might not be troubleshooting or even an action, but could be useful information, similar to a Timesaver. Caution Means reader be careful. In this situation, you might perform an action that could result in equipment damage or loss of data. Timesaver Means the described action saves time. You can save time by performing the action described in the paragraph. xvi
Preface Documentation Feedback Warning IMPORTANT SAFETY INSTRUCTIONS This warning symbol means danger. You are in a situation that could cause bodily injury. Before you work on any equipment, be aware of the hazards involved with electrical circuitry and be familiar with standard practices for preventing accidents. Use the statement number provided at the end of each warning to locate its translation in the translated safety warnings that accompanied this device. SAVE THESE INSTRUCTIONS Documentation Feedback To provide technical feedback on this document, or to report an error or omission, please send your comments to ucs-director-docfeedback@cisco.com. We appreciate your feedback. Obtaining Documentation and Submitting a Service Request For information on obtaining documentation, submitting a service request, and gathering additional information, see the monthly What's New in Cisco Product Documentation, which also lists all new and revised Cisco technical documentation. Subscribe to the What's New in Cisco Product Documentation as a Really Simple Syndication (RSS) feed and set content to be delivered directly to your desktop using a reader application. The RSS feeds are a free service and Cisco currently supports RSS version 2.0. xvii
Obtaining Documentation and Submitting a Service Request Preface xviii
CHAPTER 1 New and Changed Information for this Release This chapter contains the following section: New and Changed Information for this Release, page 1 New and Changed Information for this Release The following table provides an overview of the significant changes to this guide for this current release. The table does not provide an exhaustive list of all changes made to this guide or of all new features in this release. Table 1: New Features and Changed Behavior in Cisco UCS Director, Release 5.1 Feature Where Documented Introduction of wizards A set of wizards are available that guide Wizards in Cisco UCS you through configuring a few features Director, on page 6 1
New and Changed Information for this Release New and Changed Information for this Release 2
CHAPTER 2 Overview This chapter contains the following sections: About Cisco UCS Director, page 3 Initial Login, page 7 Recommended Order of System Setup, page 7 About Cisco UCS Director Cisco UCS Director (formerly Cisco Cloupia Unified Infrastructure Controller) is a 64-bit appliance that uses the following standard templates: Open Virtualization Format (OVF) for VMware vsphere Virtual Hard Disk (VHD) for Microsoft Hyper-V Cisco UCS Director delivers unified, highly secure management for the industry's leading converged infrastructure solutions, which are based on the Cisco UCS and Cisco Nexus platforms. Cisco UCS Director extends the unification of computing and network layers through Cisco UCS to provide data center administrators with a comprehensive visibility and management capability. It supports NetApp FlexPod and ExpressPod, EMC Isilon, EMC VSPEX, EMC VPLEX, and VCE Vblock systems, based on the Cisco UCS and Cisco Nexus platforms. Cisco UCS Director automates the provisioning of resource pools across physical, virtual, and baremetal environments. It delivers native, automated monitoring for health, status, and resource utilization. You can do the following using Cisco UCS Director: Create, clone, and deploy service profiles and templates for all servers and applications Monitor organizational usage, trends, and capacity across a converged infrastructure on a continuous basis, such as by viewing heat maps that show virtual machine (VM) utilization across all your data centers Deploy and add capacity to ExpressPod and FlexPod infrastructures in a consistent, repeatable manner Manage, monitor, and report on Cisco UCS domains and their components Extend virtual service catalogs to include physical infrastructures services 3
Features and Benefits Overview Manage secure multitenant environments to accommodate virtualized workloads that run with nonvirtualized workloads Features and Benefits The features and benefits of Cisco UCS Director are as follows: Feature Central management Benefit Provides a single interface for administrators to monitor, provision, and manage the system across physical, virtual, and baremetal environments Provides unified dashboards, reports, and heat maps, which reduce troubleshooting and performance bottlenecks Self-service catalog Allows end users to order and deploy new infrastructure instances following IT-prescribed policies and governance Adaptive provisioning Provides a real-time available capability, internal policies, and application workload requirements to optimize the availability of your resources Dynamic capacity management Provides continuous monitoring that indicates real-time infrastructure consumption to improve capacity planning and management Identifies underutilized and overutilized resources Multiple hypervisor support Supports VMware ESX, ESXi, Microsoft Hyper-V, and Red Hat hypervisors Computing management Monitors, manages, and provisions physical, virtual, and baremetal servers, as well as blades Allows end users to implement virtual machine life-cycle management and business continuance through snapshots Allows administrators to access server utilization trending analysis Network management Provides policy-based provisioning of physical and virtual switches and dynamic network topologies Allows administrators to configure VLANs, virtual network interface cards (vnics), port groups and port profiles, IP and Dynamic Host Control Protocol (DHCP) allocation, and access control lists (ACLs) across network devices 4
Overview Physical and Virtual Management Features Feature Storage management Benefit Provides policy-based provisioning and management of filers, virtual filers (vfilers), logical unit numbers (LUNs), and volumes Provides unified dashboards that allow administrators comprehensive visibility into organizational usage, trends, and capacity analysis details. Cisco CloudGenie Provides mobile management from Apple ipad and iphone and Android devices Supports mobile self-service provisioning, virtual machine management, and viewing of administrative dashboards Physical and Virtual Management Features Physical Server Management Discover and collect configurations and changes Monitor and manage physical servers Perform policy-based server provisioning Manage blade power Manage the server life cycle Perform server use trending and capacity analysis Perform baremetal provisioning using preboot execution environment (PXE) boot management Virtual Computing Management Discover, collect, and monitor virtual computing environments Perform policy-based provisioning and dynamic resource allocation Manage the host server load and power Manage the VM life cycle and snapshots Perform analytics to assess VM capacity, sprawl, and host utilization Physical Storage Management Discover, collect, and monitor storage filers Perform policy-based provisioning of vfilers Provision and map volumes Create and map Logical Unit Number (LUN) and igroup instances Perform SAN zone management Monitor and manage network-attached storage (NAS) and SAN-based storage Implement storage best practices and recommendation Virtual Storage Management Discover, collect, and monitor storage of vfilers and storage pools Perform policy-based storage provisioning for thick and thin clients Create new datastores and map them to virtual device contexts (VDCs) Add and resize disks to VMs Monitor and manage organizational storage use Perform virtual storage trend and capacity analysis 5
Model-Based Orchestration Overview Physical Network Management Discover, collect, and monitor physical network elements Provision VLANs across multiple switches Configure Access Control Lists (ACLs) on network devices Configure the storage network Implement dynamic network topologies Virtual Network Management Add networks to VMs Perform policy-based provisioning with IP and DHCP allocation Configure and connect Virtual Network Interface Cards ( vnics) to VLANs and private VLANs Create port groups and port profiles for VMs Monitor organizational use of virtual networks Model-Based Orchestration Cisco UCS Director includes a task library containing over 1000 tasks, and out-of-the-box workflows. The model-based orchestration and a workflow designer enable you to customize and automate the infrastructure administrative and operational tasks. You can extend and customize the system to meet individual needs. The following table shows the maintenance and update activities of the task library from day1 through day 3: Day-1 Add tenants Migrate or add applicants Integrate with enterprise systems Use self-service portal Day-2 Monitor performance Start meeting and billing Manage tenant change Self-service Infrastructure as a Service (IaaS) Day-3 Add/upgrade hardware Repurpose Wizards in Cisco UCS Director Cisco UCS Director includes a set of wizards that guide you through configuring a few features. Following are the available wizards: Device Discovery This wizard enables you to discover devices and assign them to a pod. Initial System Configuration This wizard helps you complete initial tasks to set up Cisco UCS Director, such as uploading license, setting up SMPT, NTP and DNS servers. vdc Creation 6
Overview Initial Login This wizard helps you to configure the policies required to successfully provision a VM in a vcenter cloud. FlexPod Configuration This wizard helps you set up a FlexPod account. When you first log in to Cisco UCS Director, a Wizard Explorer window is displayed. From this window, you can view the details of the available wizards and choose to launch any of them. If you do not want this Wizard Explorer to appear every time you log in, you can check the Do not show this page again checkbox. To launch these wizards later on, click Administration > Guided Setup. Initial Login Log into Cisco UCS Director by hostname or IP address with the following credentials: Username: admin Password: admin te We recommend that you delete the startup admin account after you create the first admin account or, at least, change the default password. To access the self-service portal, you must have a valid email address. Recommended Order of System Setup The following table shows the recommended order of system setup: Initial set up Physical Infrastructure Virtual Infrastructure Policies Virtual Data Centers Chapter 2, 3, 4 and 5 6 7 8 9 Describes how to apply a license, set up the Admin profile, create groups, and create users. You will learn how to access language support, apply portal customization, and system settings Describes how to optionally add a pod and physical account, add network elements, test the connections, and verify account discovery. te You can create the virtual infrastructure before the physical infrastructure if you want. Describes how to create a cloud, verify cloud discovery and connectivity, test the connections, and view vcenter plug ins. Describes how to create and manage computing policies, storage policies, network policies, and system policies. You will learn how to add OS licenses for Microsoft Windows catalogs. Describes how to set up VDCs to manage specific environments for groups. policies, and cost models, and how resource limits are configured and managed at the VDC level. 7
Recommended Order of System Setup Overview Catalogs Self-Service Provisioning Multi-Disk Provisioning Chargeback Cloud Management Life Cycles CloudSense Chapter 10 11 12 13 14 15 16 Describes how to set up catalog items, attach groups with access to a catalog, and publish catalog items. Describes how you can create and manage provisioning service requests. Describes how to configure VM disk provisioning on a preferred single datastore or multiple datastores. It also provides instructions on how to configure individual disk policies for each additional disk in a template. Describes how to create chargeback summary reports, detailed reports, and resource accounting reports. It shows how cost models are defined and assigned to policies within departments and organizations. Describes how you can get complete cloud visibility, monitor resource usage, and manage the cloud stack clouds, clusters, host servers, and virtual machines. Describes how to perform post provisioning life cycle management actions on VMs such as VM power management, VM resizing, VM snapshot management, and other VM actions. Describes the analytical reports about the underlying physical and virtual infrastructure that Cisco UCS Director can generate. 8
CHAPTER 3 Managing Users and Groups This chapter contains the following sections: Managing User Roles, page 9 Adding a User Role, page 10 Managing User Types, page 11 Default User Permissions, page 11 Managing Groups, page 31 Configuring the Administration Profile, page 36 Managing User Access Profiles, page 39 Branding Groups and Customer Organizations, page 51 Login Page Branding, page 52 Managing User Roles Cisco UCS Director supports the following user roles: All Policy Admin Billing Admin Computing Admin Group Admin An end user with the privilege of adding users. This user can use the Self-Service portal. IS Admin MSP Admin Network Admin Operator Service End User This user can only view and use the Self-Service portal. Storage Admin 9
Adding a User Role Managing Users and Groups System Admin These user roles are system-defined and available by default. You can determine if a role is available in the system by default, if the Default Role column in the User Roles page is marked with. As an administrator in the system, you can perform the following tasks with user roles: Create a new user role in the system, and create users with this role. While creating a new user role, you can specify if the role is that of an administrator or an end user. For more information on creating a user role, see Adding a User Role, on page 10. For information on creating users for a role, see Adding Users, on page 37. Modify existing user roles, including default roles, to change menu settings and read/write permissions for users associated with that role. The procedure to modify menu settings and permissions for a role is the same as the procedure followed while adding a user role. Adding a User Role You can create any number of user roles in Cisco UCS Director and define their menu settings for the users of this role. On the menu bar, choose Administration > System. Click the User Roles tab. Click Add (+). In the Add User Role dialog box, complete the following fields: User Role field Role Type drop-down list of the user role. Choose the type of role that you are adding. It can be one of the following: Admin End user field The description of the role being added. 10
Managing Users and Groups Managing User Types Step 6 Step 7 Step 8 Step 9 Click Next. In the Menu Settings pane, choose the menu options that will be visible to users that are defined this role. Click Next. In the User Permissions pane, choose the read or write permissions for various tasks for users that are created with this role. Click Submit. What to Do Next Create a user with this role type. Managing User Types As the system administrator, you have full privileges to manage Cisco UCS Director, including adding users, viewing users and user permissions, and modifying individual user read/write permissions for different system components. Most users view and use the Administrative portal when they log in. Default User Permissions Each admin user has a set of permissions to access Cisco UCS Director. The types of user permissions are as follows: An admin user with permission has the ability to only read a file. Write An admin user with Write permission has the ability to read, write and modify a file. This permission grants the ability to modify, delete or rename files. /Write An admin with /Write permission has the ability to read and write a file. All Policy Admin The following table shows a list of operations that an All Policy admin can perform: Operations Permissions Virtual Computing VM Label Assign VM to vdc Virtual Storage Write 11
All Policy Admin Managing Users and Groups Operations Virtual Network Physical Computing Physical Storage Physical Network Group Service Request Approver Service Request Budgeting Resource Accounting Chargeback System Admin Users and Groups Virtual Accounts Catalogs vdc Computing Policy Storage Policy Network Policy Deployment Policy SLA Policy Resource Limit Report Group Users Cloudsense Reports Cloudsense Assessment Reports Orchestration Permissions 12
Managing Users and Groups Billing Admin Operations Discovery MSP Open Automation Modules Group Users CS Shared Reports CS Shared Assessments Remote VM Access Mobile Access Settings End User Chargeback Write Resource Accounting Write Chargeback UCSD Cluster Permissions Billing Admin The following table show a list of operations that a Billing admin can perform: Operation Permission Write Virtual Computing VM Label Assign VM to vdc Virtual Storage Virtual Network Physical Computing Physical Storage Physical Network 13
Billing Admin Managing Users and Groups Operation Group Service Request Permission Approver Service Request Budgeting Resource Accounting Chargeback System Admin Users and Groups Virtual Accounts Catalogs vdc Computing Policy Storage Policy Network Policy Deployment Policy SLA Policy Resource Limit Report Group Users Cloudsense Reports Cloudsense Assessment Reports Orchestration Discovery MSP Open Automation Modules Group Users 14
Managing Users and Groups Computing Admin Operation CS Shared Reports Permission CS Shared Assessments Remote VM Access Mobile Access Settings End User Chargeback Write Resource Accounting Write Chargeback UCSD Cluster Computing Admin The following table shows a list of operation that a Computing admin can perform: Operation Permission Write Virtual Computing VM Label Assign VM to vdc Virtual Storage Virtual Network Physical Computing Physical Storage Physical Network Group Service Request Approver Service Request Budgeting 15
Computing Admin Managing Users and Groups Operation Resource Accouting Chargeback System Admin Users and Groups Virtual Accounts Catalogs vdc Computing Policy Storage Policy Network Policy Deployment Policy SLA Policy Resource Limit Report Group Users Cloudsense Reports Cloudsense Assessment Reports Orchestration Discovery MSP Open Automation Modules Group Users CS Shared Reports CS Shared Assessments Permission 16
Managing Users and Groups Group Admin Operation Remote VM Access Mobile Access Settings End User Chargeback Write Resource Accounting Write Chargeback UCSD Cluster Permission Group Admin Task Virtual Computing VM Label Assign VM to vdc Virtual Storage Virtual Network Physical Computing Physical Storage Physical Network Group Service Request Approver Service Request Budgeting Resource Accouting Chargeback Permission Write 17
Group Admin Managing Users and Groups Task System Admin Permission Users and Groups Virtual Accounts Catalogs vdc Computing Policy Storage Policy Network Policy Deployment Policy SLA Policy Resource Limit Report Group Users Cloudsense Reports Cloudsense Assessment Reports Orchestration Discovery MSP Open Automation Modules Group Users CS Shared Reports CS Shared Assessments Remote VM Access Mobile Access Settings End User Chargeback 18
Managing Users and Groups IS Admin Task Write Resource Accounting Permission Write Chargeback UCSD Cluster IS Admin Task Virtual Computing VM Label Assign VM to vdc Virtual Storage Virtual Network Physical Computing Physical Storage Physical Network Group Service Request Approver Service Request Budgeting Resource Accouting Chargeback System Admin Users and Groups Virtual Accounts Catalogs Permission Write 19
IS Admin Managing Users and Groups Task vdc Computing Policy Storage Policy Network Policy Deployment Policy SLA Policy Resource Limit Report Group Users Cloudsense Reports Cloudsense Assessment Reports Orchestration Discovery MSP Open Automation Modules Group Users CS Shared Reports CS Shared Assessments Remote VM Access Mobile Access Settings End User Chargeback Write Resource Accounting Write Chargeback UCSD Cluster Permission 20
Managing Users and Groups Network Admin Network Admin Task Virtual Computing VM Label Assign VM to vdc Virtual Storage Virtual Network Physical Computing Physical Storage Physical Network Group Service Request Approver Service Request Budgeting Resource Accounting Chargeback System Admin Users and Groups Virtual Accounts Catalogs vdc Computing Policy Storage Policy Network Policy Deployment Policy SLA Policy Permission 21
Operator Managing Users and Groups Task Resource Limit Report Group Users Cloudsense Reports Cloudsense Assessment Reports Orchestration Discovery MSP Open Automation Modules Group Users CS Shared Reports CS Shared Assessments Remote VM Access Mobile Access Settings End User Chargeback Write Resource Accounting Write Chargeback UCSD Cluster Permission Operator Task Virtual Computing VM Label Assign VM to vdc Permission Write 22
Managing Users and Groups Operator Task Virtual Storage Virtual Network Physical Computing Physical Storage Physical Network Group Service Request Approver Service Request Budgeting Resource Accounting Chargeback System Admin Users and Groups Virtual Accounts Catalogs vdc Computing Policy Storage Policy Network Policy Deployment Policy SLA Policy Resource Limit Report Group Users Cloudsense Reports Cloudsense Assessment Reports Permission 23
Service End User Managing Users and Groups Task Orchestration Discovery MSP Open Automation Modules Group Users CS Shared Reports CS Shared Assessments Remote VM Access Mobile Access Settings End User Chargeback Write Resource Accounting Write Chargeback UCSD Cluster Permission Service End User Task Virtual Computing VM Label Assign VM to vdc Virtual Storage Virtual Network Physical Computing Physical Storage Permission Write 24
Managing Users and Groups Service End User Task Physical Network Group Service Request Approver Service Request Budgeting Resource Accounting Chargeback System Admin Users and Groups Virtual Accounts Catalogs vdc Computing Policy Storage Policy Network Policy Deployment Policy SLA Policy Resource Limit Report Group Users Cloudsense Reports Cloudsense Assessment Reports Orchestration Discovery MSP Open Automation Modules Permission Write 25
Storage Admin Managing Users and Groups Task Group Users Permission CS Shared Reports CS Shared Assessments Remote VM Access Mobile Access Settings End User Chargeback Write Resource Accounting Write Chargeback UCSD Cluster Storage Admin Task Virtual Computing VM Label Assign VM to vdc Virtual Storage Virtual Network Physical Computing Physical Storage Physical Network Group Service Request Approver Service Request Budgeting Permission Write 26
Managing Users and Groups Storage Admin Task Resource Accounting Chargeback System Admin Users and Groups Virtual Accounts Catalogs vdc Computing Policy Storage Policy Network Policy Deployment Policy SLA Policy Resource Limit Report Group Users Cloudsense Reports Cloudsense Assessment Reports Orchestration Discovery MSP Open Automation Modules Group Users CS Shared Reports CS Shared Assessments Remote VM Access Permission 27
User Roles and Permissions Managing Users and Groups Task Mobile Access Settings End User Chargeback Write Resource Accounting Write Chargeback UCSD Cluster Permission User Roles and Permissions The following tables shows a list of permissions that are mapped to each admin user type: Permission Virtual Computing All Policy Admin Billing Admin Computing Admin Group Admin IS Admin MSP Admin Write Network Admin Write Operator Service End User Storage Admin VM Label Write Write Write Write Write Write Assign VM to vdc Write Write Write Virtual Storage Virtual Network Physical Computing / Write /Write Physical Storage / Write / Write Physical Network / Write /Write /Write Group Service Request /Write /Write /Write 28
Storage Admin Service End User Operator Network Admin MSP Admin IS Admin Group Admin Computing Admin Billing Admin All Policy Admin Permission /Write /Write /Write /Write Approver Service Request /Write /Write /Write Budgeting /Write Resource Accouting /Write Chargeback System Admin Users and Groups Virtual Accounts /Write Catalogs /Write vdc /Write /Write /Write Computing Policy /Write Storage Policy /Write Network Policy /Write /Write Deployment Policy /Write /Write SLA Policy /Write /Write Resource Limit Report Write Group Users 29 Managing Users and Groups User Roles and Permissions
User Roles and Permissions Managing Users and Groups Permission All Policy Admin Billing Admin Computing Admin Group Admin IS Admin MSP Admin Network Admin Operator Service End User Storage Admin Cloudsense Reports /Write Cloudsense Assessment Reports Orchestration /Write /Write Discovery /Write /Write /Write MSP /Write /Write /Write /Write /Write /Write /Write Open Automation Modules Write Group Users CS Shared Reports /Write CS Shared Assessments /Write Remote VM Access Mobile Access Settings End User Chargeback Write Resource Accounting Write Chargeback UCSD Cluster Write Write Write 30
Managing Users and Groups Managing Groups Managing Groups Creating a Group or Customer Organization On the menu bar, choose Administration > Users and Groups. Click the User Groups tab. Click Add. In the Add Group dialog box, complete the following fields: Field field field Code field Cost Center field Contact Email field First field Last field Phone field Address field Group Share Policy drop-down list The name of the group or the customer organization. The description of the group or the customer organization, if required. A shorter name or code name for the group. This name is used in VM and hostname templates. (Optional) The cost center name or number if required. This name or number represents a cost center that a group is associated with. This name can be used in a VMware System policy for the VM naming convention. For more information about using a cost center for naming conventions, see Managing Policies, on page 99. The email used to notify the group owner about the status of service requests and request approvals if necessary. The contact s first name. The contact s last name. The contact s phone number. The contact s address. Choose the group share policy for the users in this group. This drop-down list is populated only when you have created group share policies. For more information on creating this policy, see Creating a Group Share Policy, on page 104. 31
Password Policy Managing Users and Groups Field Allow Resource Assignment To Users check box If checked, the users of this group can have resources assigned to them and can own these resources. Also, these users can view resources belonging to the group. However, the resources among these users cannot be shared. Click Add. What to Do Next Repeat this procedure if you want to add more groups. Password Policy The password policy applies to all the users and is enforced when you add a user or change the password for all user types. This policy enables the following password constraints: Password length Whether the password can be the same as the username Whether a user can reset the current password as a new password Regular expressions that are disallowed in a password Creating a Password Policy On the menu bar, choose Administration > Users and Groups. In the Password Policy pane, complete the following fields: Minimum Password Length drop-down list Maximum Password Length drop-down list Minimum Character Classes drop-down list Disallow Login in Password check box Choose the minimum number of characters for the password. Choose the maximum number of characters for the password. Choose the minimum number of character classes such as upper case, lower case, numbers, and special characters. Check the check box to disallow passwords, which are the same as the login ID. 32
Managing Users and Groups Group Budget Policy Disallow Previous Password check box Disallow Passwords that match regular expression field Check the check box to disallow the previous password from being used and the new password being the same as the old password. The regular expressions (one per line) that are not allowed for passwords. For example,.*abc.* specifies that a given password cannot contain the string abc. Click Submit. Group Budget Policy Resources are accounted for by using the Chargeback feature. For resource usage by a group or customer organization, you associate the entity with a budget policy. You can configure a group or customer organization with a budget watch, and configure a group or customer organization to stay within or exceed the provisioned budget. Viewing and Editing a Group Budget Policy On the menu bar, choose Administration > Users and Groups. Choose the User Group tab Choose a group from the list. Click Budget Policy. In the Budget Policy dialog box, complete the following fields: Enable Budget Watch check box Allow Over Budget check box Check the check box to monitor the group's budget usage. Uncheck the check box to ignore all budget entries for this group. Check if the group members are allowed over the provisioned budget. Uncheck the check box to reject the requests, once the budget is exhausted, until a new budget is added. Step 6 Click Save. 33
Resource Limits Managing Users and Groups Resource Limits You can configure resource limits for a group or customer organization to manage resource utilization. You can specify limits for the following: te Configuration of operating system resource and physical resource limits are not supported for public clouds. Virtual resources Operating system resources Physical resources Viewing Resource Limits On the menu bar, choose Organizations > Summary. Click a group to view Choose the Resource Limits to view the current limit, usage, pending SR usage, and status of the resources for the selected group. Editing Resource Limits On the menu bar, choose Administration > Users and Groups. Choose the User Groups tab Choose a group and click Edit Resources Limits. The Resource Limit dialog box appears. In the Resource Limit dialog box, check the Enable Resource Limits check box and complete the following fields: Field Group display-only The group name 34
Managing Users and Groups Resource Limits Field Enable Resource Limits check box Maximum Active VM Count Maximum Total VM Count Provisioned vcpus Limit Provisioned Memory (GB) Limit Provisioned CPU (GHz) Limit Provisioned Disk (GB) Limit Reserved CPU (GHz) Limit Reserved Memory (GB) Limit Maximum Snapshot (GB) Limit Count CPU and Memory for Inactive VMs check box Check the check box to enable the resource limits or uncheck the check box to disable the resource limits. If checked, the user is provided with the option to set resource limits for a group and all nonzero resource limits are applied. The maximum number of active VMs. The total number of VMs. The maximum number of provisioned vcpus. The provisioned memory limit, in gigabytes. Provisioned CPU (GHz) Limit The provisioned limit for disks, in gigabytes. The reserved limit of CPUs, in gigahertz. The reserved memory limit, in gigabytes The maximum limit for snapshots, in gigabytes. Count CPU and Memory for Inactive Check the check box to include the group's inactive VM CPU or memory data in the computation of resource limits. Uncheck the check box to exclude inactive VM CPU or memory data from the computation of resource limits.vms check box. OS Resource Limits te The configuration of OS resource limits and physical resource limits are not supported for public clouds. CentOS The maximum number of CentOS (Community Enterprise Operating System) servers. Windows Server 2008 Windows 7 Windows XP Red Hat Ubuntu FreeBSD The maximum number of Windows 2008 servers. The maximum number of Windows 7 machines. The maximum number of Windows XP machines. The maximum number of Red Hat machines. The maximum number of Ubuntu machines. The maximum number of FreeBSD machines. 35
Configuring the Administration Profile Managing Users and Groups Field Other Linux Other The maximum number of other Linux OS. The maximum number of other OS. Physical Resource Limits Maximum Physical Server Count Maximum Physical Server Memory (GB) Maximum Physical Server CPU Count Maximum vfiler Count Maximum Physical Storage Space (GB) The maximum number of servers The maximum amount of server memory. The maximum number of server CPUs. The maximum number of vfilers The maximum amount of storage space Click Save. Configuring the Administration Profile Creating the Admin Profile On the menu bar, choose Administration > Users and Groups. Choose Login User tab Click Add. In the Add User dialog box, complete the following fields: Field User Type drop-down list Login Password Confirm Password Choose the user type option as System Admin. The system administrator has full privileges. The login name. The default is admin. The admin password. The admin password that is entered again for confirmation. 36
Managing Users and Groups Changing the Admin Password Field User Contact Email First Last Phone Address The administrator s email address. The administrator s first name. The administrator s last name. The administrator s phone number. The administrator s address. Click Add. Changing the Admin Password On the menu bar, choose Administration > Users and Groups. In the Login column, choose admin Click Change Password. In the Change Password dialog box, enter a new password for the admin user and confirm it. Click Save. Adding Users Before You Begin Ensure you have created a group before you add a user to it. On the menu bar, choose Administration > Users and Groups. Click the Login Users tab. Click Add (+). In the Add User dialog box, complete the following fields: 37
Adding Users Managing Users and Groups Field User Role drop-down list Login field Password field Confirm Password field User Contact Email field First field Last field Phone field Address field Choose the role type for the user. te The login name. The password. te This drop-down list displays all the available user roles in Cisco UCS Director. In addition to the user roles available by default, you can create additional user roles. For more information on creating users roles, see Adding a User Role, on page 10. If the Lightweight Directory Access Protocol (LDAP) authentication is configured to the user, the password is validated only at the LDAP server, and not at the local server. The password is entered again for confirmation. The email address. te The first name. The last name. The email address is required to notify the group owner about the service request status and request approval. The phone number of the user. The postal address of the user. Click Add. What to Do Next After choosing a user from the main window and then clicking Manage Profiles, you can optionally assign multiple roles for that user. 38
Managing Users and Groups Viewing Current Online Users Viewing Current Online Users On the menu bar, choose Administration > Users and Groups. Choose the Current Online Users tab to view a list of online users. You can view the username, IP address, session start time, last data access, and client. Managing User Access Profiles Multi-Role Access Profiles A user can be assigned to more than one role, which is reflected in the system as a user access profile. For example, a user might log into Cisco UCS Director as a group administrator and an all-policy administrator, if both types of access are appropriate. Access profiles also define the resources that can be viewed by a user. By default, one access profile is created when a user is created. By default, user can see their own resources, and resources of the group. Users can create profiles to view their own resources, or view only resources shared by group. te One of the profiles can be set as the default user access profile. te The Manage Profiles feature enables you to add, log into, edit or delete a user access profile. Creating a User Access Profile On the menu bar, choose Administration > Users and Groups. Choose the Login User tab Choose a user from the list. Click Manage Profiles. In the Manage Profile window, click Add + Step 6 In the Add Entry to Access Profiles dialog box, complete the following fields: 39
Editing User Access Profile Managing Users and Groups Field field field Type drop-down list Show Own Resources checkbox Show Resources From All Other Groups the user has access checkbox Group drop-down list Default Profile checkbox The profile name. The description of the profile. Choose the user role type. Select this checkbox to specify that users can view all resources assigned to them. Select this checkbox to specify that users can view resources from all other groups that the user has access to or is a part of. Choose the user's group. Check the check box if this is the default user access profile. Uncheck the check box if it is not the default. Step 7 Click Submit. What to Do Next Create additional user access profiles as needed. Editing User Access Profile Step 6 Step 7 Step 8 On the menu bar, choose Administration > Users and Groups. Choose the Login User tab. Choose a user from the list. Click Manage Profiles. In the Manage Profiles window, choose a user from the list. Click Edit. In the Edit Access Profiles Entry dialog box, edit the,, Type, Group, or the Default Profile fields as needed. Click Submit. 40
Managing Users and Groups Deleting a User Access Profile Deleting a User Access Profile Step 6 On the menu bar, choose Administration > Users and Groups. Choose the Login Users tab. Choose a user from the list. Click Manage Profiles. In the Manage Profiles window, choose a user from the list. In the Manage Profiles dialog box, click Delete. Logging in to a Profile In the Cisco UCS Director login dialog box, enter your username in the Username field, in the format Username: Access Profile. te For example, Alex: GrpAdmin In the Password field, enter your password. Click Login. Delete Profile The default profile is the first profile that you created in the system. You can change the default to another profile. Using the new default profile, you log in by entering the username and password. Changing Default Profile At the upper right of the window (to the left of logout), click the username. In the User Information window, choose the Access Profiles tab. Choose a user profile, and click Set as Default Profile. te A profile can also be set as default while adding or editing a profile. 41
Authentication and LDAP Integration Managing Users and Groups Authentication and LDAP Integration You can configure a preference with or without a fallback choice for local authentication and a preference with a fallback for the LDAP. You can also configure a preference with no fallback for Verisign Identity Protection (VIP) authentication. Local Authentication Local First, fallback to LDAP LDAP First, fallback to Local Verisign Identity Protection Authentication is local only (Cisco UCS Director), and not through the LDAP server. Authentication is done first at the local server (Cisco UCS Director). If the user is unavailable at the local server, the LDAP server is checked. Authentication is done first at the LDAP server. If the user is unavailable at the LDAP server, the local server is checked (Cisco UCS Director). VIP Authentication Service (two-factor authentication) is enabled. Configuring Authentication Preferences On the menu bar, choose Administration > Users and Groups. Choose the Authentication Preferences tab. In the Authentication Preferences pane, complete the following fields: 42
Managing Users and Groups Authentication and LDAP Integration Authentication Preferences drop-down list Choose the Authentication Preference. You can select one of the following: Local Authentication If you select this option, continue to. Local First, fallback to LDAP LDAP First, fallback to Local If you select either of these LDAP-related options, then you must configure the LDAP servers. For more information, see Configuring LDAP Servers, on page 45. Verisign Identity Protection If you select this option, continue to. Step 6 For local authentication, click Save. With this authentication preference, LDAP users cannot login to Cisco UCS Director. If you selected Verisign Identity Protection, complete the following steps: a) Click Browse to upload a VIP certificate. Locate and select the certificate, and click Upload. b) Enter the Password. Click Save. LDAP Integration You can use LDAP integration to synchronize the LDAP server s groups and users with Cisco UCS Director. LDAP authentication enables synchronized users to authenticate with the LDAP server. You can synchronize LDAP users and groups automatically or manually. In addition, LDAP synchronization is also available as a system task. When new organizational units (OU) are added in the LDAP directory, and a synchronization process is run, either manually or automatically, the recently added LDAP users and groups are displayed in Cisco UCS Director. te Users that do not belong to a group or a domain user s group display in LDAP as Users with Group. These users are added under the domain user s group in Cisco UCS Director. You cannot choose users and groups that exist locally or are synchronized externally in Cisco UCS Director. 43
Authentication and LDAP Integration Managing Users and Groups LDAP Integration Rules and Limitations Group Synchronization Rules If a chosen LDAP group already exists in Cisco UCS Director and the source is type Local, the group is ignored during synchronization. If a chosen LDAP group already exists in Cisco UCS Director and the group source is type External, the group s description and email attributes are updated in the Cisco UCS Director. A maximum of 1000 users (subject to availability) are displayed for selection in manual search when you use the advanced search option. This option is available by clicking Request Manual LDAP Sync. User Synchronization Rules If a chosen LDAP user already exists in Cisco UCS Director and the source is type Local, the user is ignored during synchronization. If a chosen LDAP user already exists in Cisco UCS Director and the source type is External, the user s name, description, email, and other attributes are updated for use. If a user account is created in two different LDAP directories, then the user details of the LDAP directory that was synchronized first is displayed. The user details from the other LDAP directory is not displayed. After LDAP directories are synchronized, the LDAP external users must login to Cisco UCS Director by specifying the complete domain name along with the user name. For example, vxedomain.cisco.com\username. User Synchronization Limitations If a user has multiple group membership, that user has single group membership in Cisco UCS Director. te Be sure that the user is assigned to the correct group after the LDAP synchronization process. Managing LDAP Integration On the menu bar, choose Administration > Users and Groups. Click the LDAP Integration tab to view the status of LDAP server synchronization. (Optional) Choose a server and click the following buttons, as needed, to manage LDAP integration. 44
Managing Users and Groups Authentication and LDAP Integration Search BaseDN button Request Manual LDAP Sync Enables you to choose a distinguished domain name to search. All users and groups from the chosen organization units are fetched into Cisco UCS Director when the LDAP synchronization process is completed. This action is also considered to be an automatic synchronization process. te You can initiate LDAP server synchronization as a system task. For more information, see Executing LDAP Synchronization System Task, on page 48. Displays a dialog box that enables you to specify either basic or advanced search criteria to fetch LDAP users and groups. (Optional) If you chose Request LDAP Manual Server Sync, complete the following fields: Basic Search check box Advanced Search check box Enables basic search by organization unit. Enables advanced search. For basic search, click Select to specify the search base. Step 6 Choose the search base DN, and click Select. and continue to Step 9. Step 7 Step 8 Step 9 For advanced search, in the Advanced Filtering Options pane, add or edit attribute names for User Filters and Group Filters. Click Next. In the Select Users and Groups pane, complete the following fields: LDAP Groups field LDAP Users field The LDAP groups from which the users must be synchronized. The LDAP users that must be synchronized. 0 Click Submit to synchronize the LDAP server. Configuring LDAP Servers You can configure multiple LDAP servers and accounts in Cisco UCS Director. 45
Authentication and LDAP Integration Managing Users and Groups Soon after an LDAP server account is added, a system task for this account is created automatically, and it immediately begins to synchronize the data. Before You Begin You should have set the authentication preferences to one of the following: Local First, fallback to LDAP LDAP First, fallback to Local On the menu bar, choose Administration > Users and Groups. Choose the LDAP Integration tab. Click Add. In the LDAP Server Configuration dialog box, complete the following fields: Account field Server Type field The name of the account. This name must be unique. The type of LDAP server. It can be one of the following: OpenLDAP MSAD - Microsoft Active Directory Server field Enable SSL check box Port field Certificate for Authentication field Domain field The IP address or the host name of the LDAP server. Enables a secure connection to the LDAP server. The port number. It is automatically set to 636 for SSL, and 389 for non-secure mode. To upload a server certificate for authentication. Click Browse to locate and select the certificate. Click Upload to upload the server certificate. te This field is available only if you have selected the Enable SSL check box. The domain name. If you selected OpenLDAP as the LDAP Directory Type, then this domain name must match the domain specified with the user name. 46
Managing Users and Groups Authentication and LDAP Integration User field Password field Modify Existing Users and Groups check box The user name. If you selected OpenLDAP as the LDAP Directory Type, then specify the user names in the following format: uid=users,ou=people,dc=ucsd,dc=com where ou specified is the one all the other users are placed in the directory hierarchy. The user password. Check the check box if you want to enable modification of existing users and groups. Step 6 Step 7 Click Next. In the LDAP Search Base pane, click Select to specify LDAP search base entries and click Select. All organization units (OU) that are available in Cisco UCS Director are displayed in this list. Click Submit. What to Do Next If you have not set the authentication preference to LDAP, then you are prompted to modify the authentication preference. For more information on changing the authentication preference, see Configuring Authentication Preferences, on page 42. Viewing LDAP Server Summary Information On the menu bar, choose Administration > Users and Groups. Choose the LDAP Integration tab. Choose an LDAP account name from the table. Click View. The View LDAP Account Information dialog box displays summary information of the LDAP account. Click Close. 47
Authentication and LDAP Integration Managing Users and Groups Testing LDAP Server Connectivity On the menu bar, choose Administration > Users and Groups. Choose the LDAP Integration tab. Choose an LDAP account name from the table. Click Test Connection. In the Test LDAP Connectivity dialog box, click Close. Adding LDAP Search BaseDN Entries Step 6 Step 7 Step 8 On the menu bar, choose Administration > Users and Groups. Choose the LDAP Integration tab. Choose an LDAP account name from the table. Click Search BaseDN. In the LDAP Search Base dialog box, click Select to select the search entries. Click Select. Click Submit. Click OK. Executing LDAP Synchronization System Task Step 6 On the menu bar, choose Administration > System. Choose System Tasks. Enter LDAP in the Filter field. Select LDAPSyncTask from the System Tasks table. Click Run w. (Optional) Click Manage Task to enable or disable the synchronization process. 48
Managing Users and Groups Authentication and LDAP Integration What to Do Next The results of the synchronization process are displayed in Cisco UCS Director. Select an LDAP account on the LDAP Integration pane, and click Results to view the summary of the synchronization process. Modifying LDAP Server Details You can only modify the following details for a configured LDAP server: Port numbers and SSL configuration User name and password Search BaseDN selections On the menu bar, choose Administration > Users and Groups. Click the LDAP Integration tab and select an LDAP account. Click Modify. In the Modify LDAP Server Configuration pane, edit the following fields: Enable SSL check box Port field User field Password field Modify Existing Users and Groups check box Enables a secure connection to the LDAP server. The port number. It is automatically set to 636 for SSL, and 389 for non-secure mode. The user name. If you selected OpenLDAP as the LDAP Directory Type, then specify the user names in the following format: uid=users,ou=people,dc=ucsd,dc=com where ou specified is the one all the other users are placed in the directory hierarchy. The user password. Check the check box if you want to enable modification of existing users and groups. Step 6 Step 7 Click Next. In the LDAP Search Base pane, click Select to specify LDAP search base entries and click Select. Click Submit. 49
Authentication and LDAP Integration Managing Users and Groups Deleting LDAP Server Information Deleting an LDAP server account only results in deleting the search criteria, BaseDNs, and system entries related to this LDAP server. Users and groups attached to the LDAP server are not deleted. Step 6 On the menu bar, choose Administration > Users and Groups. Choose the LDAP Integration tab. Choose an LDAP account name from the table. Click Delete. In the confirmation dialog box, click Delete. Click OK. This initiates the deletion of the LDAP account in Cisco UCS Director. Based on the number of users and groups in the LDAP account, this deletion process could take a few minutes to complete. During such time, the LDAP account may still be visible in Cisco UCS Director. Click Refresh to ensure that the account has been deleted. Single Sign On Cisco UCS Director provides a single sign-on using One Login. Single sign-on prevents a user from having to enter a password multiple times to access the application. When Single Login is enabled, a user can log into that portal to access Cisco UCS Director. te A single sign-on is available for Cisco UCS Director after you register a One Login certificate. Enabling a Single Sign-On Step 6 On the menu bar, choose Administration > Users and Groups. Choose the Single Sign-On tab. In the Single Sign-On pane, click the Enable Single Sign-On check box. In the Select a File for Upload field, browse to the One Login certificate file and choose it. Click Upload. When the upload is complete, click Submit. 50
Managing Users and Groups Branding Groups and Customer Organizations Branding Groups and Customer Organizations On the menu bar, choose Administration > Users and Groups. Choose the User Group tab. Choose the group to brand. Click Branding. In the Group Branding dialog box, complete the following fields: Field s Logo image check box Check the check box to upload a logo image. Continue to Step 6. Application Labels check box URL Forwarding on Logout check box Custom Links check box Check the check box to customize an application label to appear in the application header. Continue to Step 8. Check the check box to forward to a specific URL upon logout. Continue to Step 9. Check the check box to brand custom links. Continue to 0. Step 6 Step 7 Step 8 Step 9 0 In the Select a File for Upload field, browse to the logo image file and choose it. te Make sure that the logo image is in PNG, JPG, or GIF format. The optimal image size is 200 pixels in width and 100 pixels in height. We recommend that you use a small file size to enable faster download. Click Upload. (Optional) For application labels, enter atleast one application label in the Label 1 and Label 2 fields. (Optional) In the URL field, enter the URL to direct the user to upon logout. (Optional) Complete at least the first two fields. Custom Link 1 Label field The label for custom link 1. Custom Link 1 URL field Custom Link 2 Label field Custom Link 2 URL field The URL for custom link 1. The label for custom link 2. The URL for custom link 2. 51
Login Page Branding Managing Users and Groups 1 Click Submit. Login Page Branding A login page can be configured to display a logo that is associated with a domain name. When the end user logs in from that domain, the user sees the custom logo on the login page. The optimal image size for a logo is 890 pixels wide and 470 pixels high, with 255 pixels allowed for white space. Cisco recommends that you keep the image size small to enable faster downloads. te The group or customer organization login page must first be configured (enabled) for branding. Configuring Custom Domain Logo On the menu bar, choose Administration > Users and Groups. Choose the Login Page Branding tab. Click Add. In the Domain Branding dialog box, complete the following fields: Domain field Select a file for upload field Custom Domain Logo check box The domain name to brand. The logo file to upload. te The optimal image size for a logo is 890 pixels wide by 470 pixels high, with 255 pixels for white space. We recommend that you keep the image size small to enable faster downloads. Check the check box to enable login page branding from a specified domain name. Click Submit. 52
CHAPTER 4 Managing System Administration Settings This chapter contains the following sections: Setting Up the Outgoing Mail Server, page 53 Working with Email Templates, page 54 Configuring System Parameters (Optional), page 56 Updating the License, page 58 Verifying License Utilization, page 58 Viewing License Utilization History, page 59 Viewing Resource Usage Data, page 59 Edit Application Categories, page 60 Customizing the Portal, page 61 Customizing Reports, page 64 Advanced Controls, page 65 User Menus, page 66 Setting User Permissions, page 67 Managing System Tasks, page 67 Managing Icons, page 71 Tag Library, page 73 Support Information, page 78 Setting Up the Outgoing Mail Server All outgoing emails from Cisco UCS Director require an SMTP server. 53
Working with Email Templates Managing System Administration Settings On the menu bar, choose Administration > System. Choose the Mail Setup tab. In the Mail Setup pane, complete the following fields: Outgoing Email Server (SMTP) field Outgoing SMTP Port field Outgoing SMTP User field Outgoing SMTP Password field Address field Cloupia Server IP address field The outgoing SMTP server address. The outgoing SMTP server port number. The user ID. The user password. The sender s email address The IP address or DNS name of the Cisco UCS Director virtual appliance. This field is used to create proper links in emails for user workflow actions. Send Test Email check box Check this check box to test the current email settings. Click Save. Working with Email Templates Cisco UCS Director has a notification mechanism that enables you to configure emails to be sent to an administrator when specific events occur, such as when a VM is provisioned. In addition, if approvals are required for any task, an email notification can be sent to an administrator or to the group administrator. te You can specify multiple recipients for an email notification. Use a comma as a separator for multiple email addresses. Cisco UCS Director provides a set of email templates in the HTML format that cover different scenarios. The following are some of the tasks that you can perform with email templates: Add a new email template Edit an existing email template You can edit the message details, or the formatting and presentation fields of an email template. Do not modify any Java-related information in the template. Preview an email template You can preview the email content and determine if the email template needs further modification. 54
Managing System Administration Settings Adding an Email Template Set an email template as default You can set email notifications to be sent based on the default email template. Delete an email template You can delete the templates that you have added. However, you cannot delete a template if it meets one of the following criteria: You added a template and set it as a default template. It is a system-provided template. Adding an Email Template On the menu bar, choose Administration > System. Click the Email Templates tab. Click Add (+). In the Add Template dialog box, complete the following fields: Email Template field Template field Template Type drop-down list Script field Reset to Default check box The name of the email template. The description of the email template. Select the type of email template that you are adding. This drop-down list is populated with the system generated templates. The HTML code that defines the email template, such as the email content, font size and color, the notification triggers, and so on. If you check this check box, the HTML code used in the system-provided email template is populated in the Script field. After the HTML code is populated, to retain the changes you make to the code, you must uncheck this check box. Click Submit. What to Do Next Preview the email template to determine if you need to make additional changes. 55
Previewing an Email Template Managing System Administration Settings Previewing an Email Template After you create a new email template in Cisco UCS Director, you can preview the email content to determine if you need to make any additional changes. On the menu bar, choose Administration > System. Click the Email Templates tab. Choose an email template from the table. Click Preview Template. In the Launch Report dialog box, click Submit. te The preview mode of an email template displays only static information. Dynamic information such as the customer name, or resources, are not displayed. What to Do Next If required, you can return to the email template to make additional changes. Setting a Default Email Template Usually, a system template is set as the default email template. If you have added multiple templates for a specific scenario, you can choose to select one of these templates as a default template. Setting a template as default implies that the selected template is used for notification. On the menu bar, choose Administration > System. Click the Email Templates tab. Choose an email template from the table. Click Set As Default Email Template. Configuring System Parameters (Optional) Configuring System Parameters You should edit the system parameters only if you need to change the default values. 56
Managing System Administration Settings Configuring System Parameters On the menu bar, choose Administration > System. Choose the System Parameters tab. In the System pane, complete the following fields: Number of Days to Keep Deleted VMs Data field Number of Days to Keep Events field Number of Days to Keep Trend Data field Number of Days to Keep Metering Data drop-down list Download VM Locking Controls from URL field Currency drop-down list Currency field Currency Precision drop-down list Funds Availability Check Interval (mins) drop-down list The user-defined number of days that the system retains VM data. The user-defined number of days that the system retains all events. te Events older than the mentioned time period are deleted. The user-defined number of days that the system retains trend data or historical data of the inventory (such as CPU, storage, and memory usage). te This data is used for reporting. Choose the number of days that the system retains VM metering records. te This data is specific to VMs and their resources. VM locking controls from the specified URL. te This file must be in XML format. Choose the type of currency to use. Available currencies are US, EURO, GBP, KRW, CAD, CHF, CLP, NR, JPY, AUD, NZD, SGD, HKD, MYR, MXN, BRL, AED, DKK, SEK, KWD, CYN, RUB, ZAR, and Other. Enter the currency name (one only). te This field appears when Other is chosen as the currency. Choose the currency precision in decimal points. Available precision is from 0 to 5 decimal points. Choose a time interval to check the availability of funds. 57
Configuring Infrastructure System Parameters (Optional) Managing System Administration Settings Click Save. Configuring Infrastructure System Parameters (Optional) You can set parameters for polling the virtual and physical system infrastructure resources. On the menu bar, choose Administration > System. Choose the Infrastructure System Parameters tab. In the entry box, enter the number of days to keep trend data for the system infrastructure. The default is 30 days. Click Save. Updating the License You can update the license using Product Authorization Key (PAK). Step 6 On the menu bar, choose Administration > License. Choose the License Keys tab. Click the Update License option. The Update PAK dialog box is displayed. Click Browse to navigate and choose the PAK license file. Click Upload to upload the PAK license file. te If the license file does not upload, check the check box and copy and paste the license text into the license text field. Click Submit. The license is updated. Verifying License Utilization The License Utilization page shows the licenses in use and details about each license, including license limit, available quantity, status, and remarks. License audits can also be run from this page. 58
Managing System Administration Settings Viewing License Utilization History On the menu bar, choose Administration > License. Choose the License Utilization tab. Choose a Cisco UCS Director appliance. (Optional) To run a license audit, click Run License Audit. In the Run License Audit dialog box, click Submit. This process takes several minutes to run. Viewing License Utilization History The number of licensed network and storage controllers, servers, server and desktop VMs, and small and medium pods can be tracked over time to see how network resources are being utilized. On the menu bar, choose Administration > License. Choose the License Utilization History tab. The license utilization history is displayed for the following resource categories with timestamp: Network Controllers Storage Controllers Servers Server VMs Desktop VMs Small pods Medium pods Viewing Resource Usage Data You can view how resources are being utilized in your environment. On the menu bar, choose Administration > License. Choose the Resource Usage Data tab. Following are the available report categories: 59
Edit Application Categories Managing System Administration Settings Resource of the available resources associated with Cisco UCS Director. Resource Count Number of each available resource. Edit Application Categories Any VM provisioned using Cisco UCS Director is categorized based on its type. The VM type can be a web server, database, application server, or other. Cisco UCS Director also has a separate category for discovered VMs. Following are the application categories available for you to use or edit: Discovered VM Generic VM Web Server Application Server Database App CPU Intensive App Memory Intensive App Disk Intensive App Network Intensive Other App 1 Other App 2 Other App 3 On the menu bar, choose Administration > System. Choose the Application Categories tab. Choose an application category. Click Edit. In the Edit Category dialog box, complete the following fields: Category ID display-only field Category Label field The numerical value given to the category by the system. The category type. 60
Managing System Administration Settings Customizing the Portal Category Code field display-only field Category Enabled display-only check box Default Smart Allocation Algorithm drop-down list The VM and host naming. A description of the category. The check box default is checked. Choose an algorithm. Step 6 Click Submit. Customizing the Portal Organizations can customize self-service portals. The logo, login page, home page, and so on can be customized for branding and user interface-related changes. Customizing the Login Page and Background Images You can change the login page and background images by uploading custom images. On the menu bar, choose Administration > User Interface Settings. Click Login Page. Check the Use customizable Login page check box. In the Logo Images and Background Images pane, choose an item or click Add to add a logo image or background image. Click Submit. Customizing the Application Logo You can customize the application logo on the home page by uploading a custom image. 61
Customizing Favicons Managing System Administration Settings On the menu bar, choose Administration > User Interface Settings. Choose the Application Logo tab. In the Images pane, choose the image, or click Add to add a new image that is not listed. Click Submit. Customizing Favicons You can customize a favorites icon (Favicon) that is displayed in the browser s address bar or next to the page name, if it is bookmarked. On the menu bar, choose Administration > User Interface Settings. Choose the Favicon tab. In the Image Label column, choose the image, or click Add to add a new image not listed. Click Submit. Customizing Application Header You can customize the self-service portal labels, next to the customer logo, by modifying existing labels. On the menu bar, choose Administration > User Interface Settings. Choose the Application Header tab. In the Application Header pane, complete the following fields: Hide Entire Header check box Product field Product 2nd Line field Check the check box to hide the header section. If checked, the header that contains the logo image, application name, and links, such as Logout, are hidden. Continuation of the product name. Continuation of the product name. 62
Managing System Administration Settings Customizing Date Display Enable About Dialog check box Check the check box to enable the About link in the header. Uncheck the check box to disable the About link in the header. Administrator Portal Custom Link 1 Label field Custom Link 1 URL field Custom Link 2 Label field Custom Link 2 URL field The custom link label 1 for the administrator portal. The custom link URL 1 for the administrator portal. The custom link label 2 for the administrator portal. The custom link URL 2 for the administrator portal.end-user Portal End-user Portal Custom Link 1 Label field Custom Link 1 URL field Custom Link 2 Label field Custom Link 2 URL field The custom link label 1 for the end-user portal. The custom link URL 1 for the end-user portal. The custom link label 2 for the end-user portal. The custom link URL 2 for the end-user portal. Click Save. Customizing Date Display Numerous data display formats are supported. On the menu bar, choose Administration > User Interface Settings. Choose the Date Display tab. Edit the date format. If required, click Hide Timezone to hide the time zone display from the user interface. Click Save. 63
Customizing the Color Theme Managing System Administration Settings Customizing the Color Theme On the menu bar, choose Administration > User Interface Settings. Choose the Color Theme tab. From the drop-down list, choose from the available theme styles. Click Save. Customizing Logout Redirect On the menu bar, choose Administration > User Interface Settings. Choose the Login Redirect tab. Enter the URL. Click Save. Customizing Reports Report customization enables you to make a custom label or hide the available reports. On the menu bar, choose Administration > User Interface Settings. Choose the Reports Customization tab. Choose a report. Click Edit. In the dialog box, complete the following fields: Hide Report check box New Label field Check the check box to hide the report. Uncheck the check box to show the report. A new label for the report if required. 64
Managing System Administration Settings Advanced Controls Step 6 Click Save. Advanced Controls You can use advanced controls to enable or disable certain properties of Cisco UCS Director. Enabling Advanced Controls On the menu bar, choose Administration > System. Choose the Advanced Controls tab. Complete the following steps: Monitoring check box Resource Metering check box Event Monitoring check box Heat Map Report Computing check box Automatic Assessment check box Adaptive Provisioning Indexing check box Check the check box to enable virtual infrastructure monitoring, physical infrastructure monitoring, and external cloud monitoring. Check all additional check boxes under this category, as needed. Check the check box to enable monitoring of VM metering functions. te If the VM metering function is disabled, chargeback does not work. Check the check box to enable virtual and physical infrastructure events. Check the check box to enable generation of heat map reports for the virtual infrastructure. Check the check box to generate reports on virtual assessment. Check the check box to enable and compute the load indices for hosts for various host parameters every 4 hours. These indices are used in adaptive provisioning of the catalogs. A lower index indicates a better chance for the host being chosen for provisioning. This process works according to the computing policy of a specific VDC. 65
User Menus Managing System Administration Settings Delete Inactive VM s Based on VDC Policy check box System Task Remoting check box Enable Service Provider Feature (Requires System Restart) check box Check the check box to enable and delete the inactive (powered off) VMs under a VDC after a time that is specified by the administrator. This property is associated with the Delete after inactive VM days field in a VDC. te By default, the property box is not checked. Check the check box to administratively enable the remote execution. Check the check box to enable service providers in Cisco UCS Director. Click Submit. User Menus Apart from the default menu operations available for the typical user roles, you can allow customized menu operations for individual user roles. te The menu settings that you can use depends upon your user permissions. For example, you can view or perform the operations on menus, only if you are given read and write permission. Setting User Menus On the menu bar, choose Administration > System. Choose the Menu Settings tab. From the drop-down list, choose a user role. Check or uncheck the menu check boxes to allow menus for that role or check the Reset to Defaults check box. Click Submit. 66
Managing System Administration Settings Setting User Permissions Setting User Permissions Step 6 On the menu bar, choose Administration > System. Choose the User Permissions tab. From the drop-down list, choose a user role. In the Allowed Operations dialog box, you can view the read and write operations for the chosen user role. Check or uncheck the check boxes to allow read and write operations for an individual role, or check the Reset to Defaults check box. Click Submit. Managing System Tasks A multinode setup defines which system tasks are performed by what service node. The processing of system tasks such as data collection can be delegated to VM service nodes. The number of nodes depends on how processing tasks are scaled. te Ensure that Cisco UCS Director is installed on all remote VM nodes and that these VM nodes are configured for the multinode setup. See the Cisco UCS Director Installation and Upgrade guides for more information. Creating a de Pool Step 6 Step 7 On the menu bar, choose Administration > System. Choose the Service des tab. Click the Service de Pools icon. The Service de Pool dialog box displays. Click the + (plus) icon. The Add Entry to Service de Pools dialog box displays. In the field, enter the node pool name. (Optional) In the field, enter a description of the node pool name. Click Submit. The node pool is created. 67
Creating System Task Policy Managing System Administration Settings Creating System Task Policy You can group system tasks into a system task policy to later determine which system tasks are running on which node. te A new system task policy is created when an administrator decides when one or more policies are needed in addition to the default system task policy. Step 6 Step 7 On the menu bar, choose Administration > System. Choose the System Task Policy tab. Click the Add icon. The Add dialog box displays. In the field, enter the name that you gave the system task policy. (Optional) In the field, enter a description of the system task policy. From the de Pool drop-down list, choose the node pool to which this system task policy belongs. Click Submit. The selected node pool now belongs to the newly created system task policy. Assigning a de Pool to System Policy Task On the menu bar, choose Administration > System. Choose the System Task Policy tab. Select an existing system task policy from the column and click the Edit icon. The Edit dialog box displays. te If the default system task policy is used, you can assign service nodes to this policy. See the Creating System Task Policy, on page 68 section, if you want to configure a policy that is different from the default. Select a node pool to which this System Task Policy belongs from the de Pool drop-down list, choose the node pool to which this system task policy belongs. Click Submit. The selected node pool now belongs to the system task policy. 68
Managing System Administration Settings Creating a Service de Creating a Service de On the menu bar, choose Administration > System. Choose the Service des tab. Click the Add (+) In the Service de dialog box, complete the following fields: de field Enter the name of the service node. Role field Service de Pool drop-down list DNS field field Protocol drop-down list Port field User field Service is described as the role of this node. The default-service-node-pool is chosen. Enter either the DNS name or IP address of the service node. te This field cannot use the Primary de s IP address. Ensure that a valid Service de DNS name or IP address is entered. The description of the of the service node. Choose either http (default) or https. The default TCP port for the Hypertext Transfer Protocol (HTTP) 80 is entered by default. Enter a different TCP port if necessary. The infrauser user name is entered by default. The infrauser is a user account created by default. To find this user account on the menu bar, choose Administration> Users and Groups. Choose the Login Users tab to find the infrauser user account in the Login column. te The InfraUser user name is not the default administrator user to login to the UCS Director system itself. Another user name can be added to this field. This user s API key is used to authenticate with the Service de. Click Submit. 69
Assigning a System Policy to a System Task Managing System Administration Settings Assigning a System Policy to a System Task Step 6 Step 7 On the menu bar, choose Administration > System. Choose the System Task tab. Choose a folder that contains system task(s). Click the folder arrow to expand its tasks. te 128 system tasks are available. Choose the task and click the Manage Task icon. The Manage Task dialog box displays. From the Task Execution drop-down list, choose Enable. From the System Task Policy drop-down list, choose a system policy. Click Submit. The system task is assigned to the selected system policy. Executing System Tasks On the menu bar, choose Administration > System. Choose the System Tasks tab Choose a task from the list. Click Run w. The selected task updates its information. Disabling a System Task Step 6 On the menu bar, choose Administration > System. Choose the System Task tab. Choose a folder that contains system task(s). Click the folder arrow to expand its tasks. te 128 system tasks are available. Choose the task and click the Manage Task icon. The Manage Task dialog box displays. From the Task Execution drop-down list, choose Disable. Click Submit. 70
Managing System Administration Settings Managing Icons Managing Icons Cisco UCS Director supports customization and management of catalog icons. Each icon set contains many images. The images in each icon set correspond to the icons that are available in the catalog creation form. The four prepopulated icon sets are as follows: Container Catalog Icon Set Advanced Catalog Icon Set Standard Catalog Icon Set VDI Catalog Icon Set Adding an Icon On the menu bar, choose Administration > User Interface Settings. Choose the Icon Management tab. Choose an icon set category. Click Icon Images. In the Manage Icon Images window, click Add (+). Step 6 In the Add entry to Icon Images dialog box, complete the following fields: Image Label field field Select a file for Upload field The new label for the image. The label is used to populate the drop-down list for the icon during catalog creation. The description of the image. The file that you browse to and upload. 71
Editing an Icon Managing System Administration Settings Editing an Icon On the menu bar, choose Administration > User Interface Settings. Choose the Icon Management tab. Choose an icon category. Click Icon Images. In the Manage Icon Images window, choose an icon image to edit. Step 6 Click Edit (pencil) Step 7 In the Edit Icon Images Entry dialog box, edit the. Step 8 Choose a replacement file to upload by clicking Browse and browsing to an image. Step 9 Click Upload. 0 Once upload is finished, click Submit. Deleting an Icon On the menu bar, choose Administration > User Interface Settings. Choose the Icon Management tab. In the Manage Icon Images window, choose an icon image and click Delete icon. Click Delete (X). Previewing an Icon On the menu bar, choose Administration > User Interface Settings. Choose the Icon Management tab Click Icon Images. In the Manage Icon Images window, choose an icon image to preview. Click Informationicon to preview the image. 72
Managing System Administration Settings Tag Library Tag Library Tagging is when you assign a label to an object. As an administrator, you can decide to tag objects such as resource groups and user groups, in Cisco UCS Director. You can assign tags to a category such as Compute, Storage, Network, and Virtual. You can also apply a tag to a specific type of account in the selected category. For information on how to apply and remove tags on resource groups, see the Managing Tags of a Resource Group section in the Cisco UCS Director APIC Management Guide, Release 5.1. Once the tag is created, based on the defined applicability rules, the tags are filtered and displayed in an object report. You can associate the tag to an object such as resource group. To view the resource entities that are associated with a tag, choose the tag and click View Details. Alternatively, you can double click the tag. te If resource entity is not associated with the tag, the table is empty. Creating a Tag You can use the Create icon in the Tag Library tab to create a tag that can be assigned to one or more objects in report page. On the menu bar, choose Policies > Tag Library. In the Tag Library tab, click Create. In the Create Tag dialog box, complete the following fields: field field Type drop-down list Possible Tag Values field The name for the tag. The description of the tag. Choose INTEGER or STRING as the type of the tag. The possible values for the tag. Click Next. In the Applicability Rules screen, complete the following fields: Visible to End User field Check this check box to make the tag visible to end user. 73
Editing a Tag Managing System Administration Settings Taggable Entities field Choose the entities on which the tag need to be applied. To add an entity, do the following: 1 Click the + icon. 2 From the Category drop-down list, choose the category. It can be one of the following: Virtual_Compute Virtual_Storage Virtual_Network Physical_Compute Physical_Storage Physical_Network Administration 3 Choose the taggable entities. 4 Click Submit. te The tags are displayed under the respective category according to the set taggable entities. Step 6 Click Submit. Editing a Tag On the menu bar, choose Policies > Tag Library. In the Tag Library tab, choose a tag that needs to be edited. Click Edit. In the Edit Tag dialog box, complete the following fields: field Display Only. The name of the tag. Once added, the name cannot be modified. 74
Managing System Administration Settings Editing a Tag field Type drop-down list Possible Tag Values field The description of the tag. Display Only. The type of the tag. Display Only. The possible values for the tag. Step 6 Click Next. In the Applicability Rules screen, complete the following fields: Visible to End User field Taggable Entities field Check this check box to make the tag visible to end user. Choose the entities on which the tag need to be applied. You can modify the existing entities using the edit icon To add an entity, do the following: 1 Click the + icon. 2 From the Category drop-down list, choose the category. It can be one of the following: Virtual_Compute Virtual_Storage Virtual_Network Physical_Compute Physical_Storage Physical_Network Administration 3 Choose the taggable entities. 4 Click Submit. Step 7 Click Submit. 75
Cloning a Tag Managing System Administration Settings Cloning a Tag On the menu bar, choose Policies > Tag Library. In the Tag Library tab, choose a tag that needs to be cloned. Click Clone. In the Clone Tag dialog box, complete the following fields: field field Type drop-down list Possible Tag Values field The name of the tag. The description of the tag. Choose INTEGER or STRING as the type of the tag. The possible values for the tag. Step 6 Click Next. In the Applicability Rules screen, complete the following fields: Visible to End User field Check this check box to make the tag visible to end user. 76
Managing System Administration Settings Deleting a Tag Taggable Entities field Choose the entities on which the tag need to be applied. To add an entity, do the following: 1 Click the + icon. 2 From the Category drop-down list, choose the category. It can be one of the following: Virtual_Compute Virtual_Storage Virtual_Network Physical_Compute Physical_Storage Physical_Network Administration 3 Choose the taggable entities. 4 Click Submit. Step 7 Click Submit. Deleting a Tag te You cannot delete a tag that is associated with a resource or entity. On the menu bar, choose Policies > Tag Library. In the Tag Library tab, choose a tag that needs to be deleted. Click Delete. In the Tag dialog box, click Delete to confirm deletion of the tag. 77
Support Information Managing System Administration Settings Support Information Cisco UCS Director support provides basic and advanced system information, including the license status, database tables, version, resource usage, logs, and debugging processes for troubleshooting. Viewing Support Information On the menu bar, choose Administration > Support Information. Choose the System Information tab. Click the System Information and Logs Link Page link. The Cisco UCS Director Product System Information window displays. Viewing System Information Basic system information includes the version, uptimes, service status, system license status, usage, compute accounts status, compute server status, storage account status, system catalogs, network device status, and cloud status. The advanced system information includes basic system information, and database tables summary, product configuration, top process information, and information on processors, memory, disks, log files, network, and login. You can also view the system task status, cloud inventory, and monitoring status. Showing Logs You can choose one of the log files from the drop-down list. Clicking Show Log allows you to view the last few lines of the log. Downloading the Logs You can click Download All Logs to download all of the log files in a Zip format. Starting the Debug Log Debug logging enables you to record a maximum of 30 minutes debug logging to a log file. 78
Managing System Administration Settings Viewing Support Information Click Start Debug Logging.. After the debug is finished, click Stop Debug Logging.. From HH.MM.SS (time) to download the files, click Download Debug Logs.. 79
Viewing Support Information Managing System Administration Settings 80
CHAPTER 5 Managing Integration Settings This chapter contains the following sections: Configuration Management Database Integration, page 81 Metering Data Export, page 82 Change Records, page 83 System Logs, page 83 Storage and OVF Upload, page 84 Multiple Language Support, page 84 Configuration Management Database Integration The Configuration Management Database (CMDB) is used to track and manage changes in the system. CMDB typically displays ADD, DELETE, or MODIFY event types on resources such as virtual machines (VMs), service requests, groups, and so on. Setting Up CMBD Integration On the menu bar, choose Administration > Integration. Choose the CMDB Integration Setup tab and complete the following fields: Export to FTP Server check box Check the check box to export change records to an FTP server. Export Format drop-down list Choose the type of export format: CSV or XML. FTP Server field The FTP server address. 81
Metering Data Export Managing Integration Settings FTP Port field FTP User field FTP Password field FTP Export Frequency drop-down list FTP File field Test FTP check box The FTP server port number. The FTP user ID. The FTP user password. Choose the frequency that the change records are exported to the FTP server. The filename for the exported change records. The following variables can be used to create new filenames each time that a file is exported to the target FTP server: MONTH, WEEK, DAY, YEAR, HOUR, MIN, SEC, MLLIS. Example: XYZ-$DAY-$HOUR-$MIN-$SEC Check the check box to test FTP settings. Click Save. Metering Data Export You can export trend data such as VM resource usage and resource accounting details to a server by setting up a metering data export. Setting Up Metering Data Export On the menu bar, choose Administration > Integration. Choose the Metering Data Export Setup tab, and complete the fields that are used in setting up the CMDB. Click Save. 82
Managing Integration Settings Change Records Change Records Viewing Change Records On the menu bar, choose Administration > System. Choose the Change Records tab. te You can display a maximum of 1000 records. System Logs Setting Up System Logs You can forward system log (syslog) information to configured servers. Each system message is associated with a severity and a minimum severity level. On the menu bar, choose Administration > Integration. Choose the Syslogs tab. Check the Enable Syslog Forward check box and complete the following server fields: Field Enable Syslog Forward check box Check the check box to enable the syslog. Minimum Severity drop-down list Choose the minimum severity level to filter any less severe system messages from being forwarded to the syslog server. Primary Syslog Server Server Address field Protocol drop-down list Port field Syslog Message Format drop-down list The primary server address. Choose the protocol: UDP or TCP. The port number. Choose the message format: XML or plain text. 83
Storage and OVF Upload Managing Integration Settings Field Secondary Syslog Server Server Address field Protocol drop-down list Port field Syslog Message Format drop-down list The secondary server address. Choose the protocol: UDP or TCP. The port number. Choose the message format: XML or plain text. Click Save. Storage and OVF Upload You can configure the storage location for files that are uploaded by the administrator, group administrator, or the end user. The uploaded files can either be stored locally or configured to an external NFS share mount point. The administrator configures the Network File System (NFS) location. The Upload files feature provides an option for admin, group admin, or the end-user (service end-user portal) to upload Open Virtualization Format (OVF) files to the local storage or to an external NFS share mount point. The NFS location is configured by the administrator. For more details, see the OVF Upload Guide. Multiple Language Support Cisco UCS Director supports multiple languages for concurrent display and input. All input fields support entering text in the user s language of choice. 84
CHAPTER 6 Managing a Physical Infrastructure This chapter contains the following sections: About Managing a Physical Infrastructure, page 85 Testing Connectivity, page 92 Enabling Device Discovery, page 93 About Managing a Physical Infrastructure Cisco UCS Director enables you to manage both physical and virtual infrastructures.cisco UCS Director discovers all components in the newly created physical account. Typically, the discovery process takes about 5 minutes. You can add a pod or use the default pod. A physical account can be associated with the default pod or to one that you add. te You can add either the type of infrastructure first (physical or virtual). A physical account in Cisco UCS Director has no dependency on a virtual (cloud) account. Adding a Site On the menu bar, choose Administration > Physical Accounts. Choose the Site Management tab. Click Add (+). In the Add Site. dialog box, complete the following fields: Site field A descriptive name for the site. 85
Adding a Pod Managing a Physical Infrastructure field (Optional) Contact field The description of the site, such as the location, significance, and so on. The name of the person responsible for this site. Click Submit. Adding a Pod On the menu bar, choose Administration > Physical Accounts. Click the Pods tab. Click Add. In the Add Pod dialog box, complete the following fields: field Site drop-down list Type drop-down list A descriptive name for the pod. Choose the site where you want to add the pod. If your environment does not include sites, you can omit this step. Choose the type of pod that you want to add. This can be one of the following supported types: Flexpod Generic ExpressPod Medium VSPEX ExpressPod Small Vblock The nongeneric pod types accommodate only specific physical and virtual components. A generic pod does not require a specific pod license. You can add any type of physical or virtual component to a generic pod. For more information about bundled pod licenses (FlexPod, Vblock, and VSPEX), which include the necessary individual device licenses to run a pod, see the Cisco UCS Director Installation and Upgrade Guides. 86
Managing a Physical Infrastructure Adding a Physical Account field Address field Hide Pod check box (Optional) A description of the pod. The physical location of the pod. For example, this field could include the city or other internal identification used for the pod. Check the check box to hide the pod if you do not want it to show in the Converged Check View. You can continue to add or delete accounts from the pod. For example, you can use this check box to ensure that a pod that does not have any physical or virtual elements is not displayed in the Converged View. Click Add. What to Do Next Add one or more accounts to the pod. Adding a Physical Account On the menu bar, choose Administration > Physical Accounts. Choose the Physical Accounts tab. Click Add (+). In the Add Account dialog box, complete the following fields: Pod drop-down list Category drop-down list Account Type drop-down list Choose the pod to which this physical account belongs. Choose the category type (Computing or Storage). If you chose Storage, continue to Step 6. Choose from the following account types for this physical account: UCSM HP ILO Cisco Rack Server (CIMC) IPMI 87
Adding a Physical Account Managing a Physical Infrastructure In the Add Account dialog box, complete the following fields: Authentication Type drop-down list Choose from the following authentication types to be used for this account: Locally Authenticated A locally authenticated user account is authenticated directly through the fabric interconnect and can be enabled or disabled by anyone with admin or AAA privileges. Remotely Authenticated A remotely authenticated user account is any user account that is authenticated through LDAP, RADIUS, or TACACS+. Server Management drop-down list Choose how servers are managed by this account by selecting one of the following options: All Servers Selected Servers Account field Server Address field User ID field Password field Transport Type drop-down list A unique name that you assign to the physical account that you want to add. The IP address of the server. The username for accessing this account. The password associated with the username. Choose the transport type that you want to use for the account. This can be one of the following: HTTP HTTPS Port field field Contact Email field Location field The server port number. The description of the account. The contact email address for the account. The location. 88
Managing a Physical Infrastructure Adding a Multi-Domain Manager Account Service Provider field The service provider s name, if any. Step 6 Step 7 If this account is Storage, choose the appropriate account type: NetApp ONTAP, NetApp OnCommand, EMC VNX, EMC VMAX Solutions Enabler or WHIPTAIL. Click Add. Adding a Multi-Domain Manager Account Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Administration > Physical Accounts. Choose the Multi-domain Managers tab. Click Add (+). In the Add Account dialog box, complete the following fields: Account field field Account Type drop-down list Choose the account name to which this multi-domain manager account belongs. (Optional) The description of the account. Choose from the following account types for this multi-domain manager account: PNSC Cisco Prime Network Services Controller account. UCS Central Cisco UCS Central account. Server Address field Account field Server Address field User ID field Enter the IP address of the server managing the multi-domain manager account. A unique name that you assign to the physical account that you want to add. The IP address of the server. The username for accessing this account. 89
Adding a Network Element Managing a Physical Infrastructure Password field Transport Type drop-down list The password associated with the username. Choose the transport type that you want to use for the account. This can be one of the following: http https Port field Contact Email field Location field The server port number. The default port is 443. (Optional) The contact email address for the account. (Optional) The location. Click Submit. Adding a Network Element In order to create a virtual server that will support load balancing, you first have to add a network element in Cisco UCS Director. Once the F5 load balancer is added as a network element in Cisco UCS Director, it appears under the Managed Network Element tab. Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Administration > Physical Accounts. Choose the Managed Network Elements tab. Click Add Network Element. In the Add Network Element dialog box, complete the following fields: Pod drop-down list Device Category drop-down list Device IP field Choose the pod to which the network element belongs. Choose the device category for this network element. For example, F5 Load Balancer. The IP address for this device. 90
Managing a Physical Infrastructure Enabling DHCP Logging Protocol drop-down list Choose the protocol to be used. The list may include the following: telnet ssh http https te When working with an F5 load balancer device, http and https are the only valid selections. Port field Login field Password field The port to use. The login name. The password associated with the login name. Click Submit. When the F5 Load Balancer is added, the system task inventory collection is triggered. The polling interval configured on the System Tasks tab specifies the frequency of inventory collection. What to Do Next To make changes to a virtual server, choose the server, then click the Modify button. To remove a virtual server, choose the server, then click thedelete button. Enabling DHCP Logging Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Administration > Physical Accounts. Choose the Network Service Agents tab. Click Embedded Network Services. In the Embedded Network Services dialog box, check the Enable DHCP Logging check box. 91
Testing Connectivity Managing a Physical Infrastructure Testing Connectivity You can test connectivity for managed network elements and physical accounts. Testing Connectivity of Managed Network Elements On the menu bar, choose Administration > Physical Accounts. Choose the Managed Network Elements tab. Choose the pod for which you want to test connectivity. Click Test Connection. Testing the Connection to a Physical Account You can test the connection at any time after you add an account to a pod. On the menu bar, choose Administration > Physical Accounts. Click the tab for the type of account that you want to test. For example, click the Physical Accounts tab or the Multi-Domain Managers tab. In the table, click the row of the account for which you want to test the connection. Click Test Connection. When the connection test has completed, click Close. What to Do Next If the connection fails, verify the configuration of the account, including the username and password. If the username and password are correct, determine whether there is a network connectivity problem. 92
Managing a Physical Infrastructure Enabling Device Discovery Enabling Device Discovery Step 6 On the menu bar, choose Administration > Physical Accounts. Click on an account for which you want to verify device discovery Choose the Discovered Devices tab Click the Setup Discovery icon. The first Setup Discovery dialog box appears. Check the Enable Discovery check box to enable discovery. In the Setup Discovery dialog box, complete the IP address range field and determine if the default values for the following fields are adequate for your environment: Enable Discovery check box IP Range TCP Timeout (ms) SNMP Timeout (ms) SNMP Community Strings The check box is checked by default to enable device discovery for this account. The IP address range for device discovery. The TCP timeout (ms) (default value is 2000 ms). The SNMP timeout (ms) (default is 1500 ms). The SNMP community string (default is public). Step 7 Click Submit. 93
Enabling Device Discovery Managing a Physical Infrastructure 94
CHAPTER 7 Managing a Virtual Infrastructure This chapter contains the following sections: About Managing WMware, page 95 Verifying Cloud Discovery and Connectivity, page 98 Viewing vcenter Plug-ins, page 98 About Managing WMware Cisco UCS DirectorCisco UCS Director supports VMware through vcenter (ESX 3.5, ESX/ESXi 4.x and 5.x). Cisco UCS Directorautomatically discovers all existing virtual machines (VMs) and images in the newly added cloud account. Typically, the discovery process takes about 5 minutes. You can add VMware clouds and PowerShell agents. te The term cloud refers to one vcenter installation. Creating a Cloud On the menu bar, choose Administration > Virtual Accounts. Choose the Virtual Accounts tab. Click Add (+). In the Add Cloud dialog box, complete the following fields: 95
Creating a Cloud Managing a Virtual Infrastructure Cloud Type drop-down list Cloud field Choose VMware. te The following fields are displayed when VMware is chosen. Other cloud types display fields that are specific to that cloud type. The cloud name. The name cannot include single quotes. te Each cloud requires a unique name in Cisco UCS Director. Once a cloud has been added, all reports refer to the cloud using the Cloud. Server Address field Server User ID field Server Password field Server Access Port field VMware Datacenter field The vcenter server address The vcenter server username. The vcenter server password. The server port number. The data center name on the vcenter account. This name allows you to discover, monitor, and manage the specified pod's resources. Leave the field blank if the entire vcenter account is managed by Cisco UCS Director. Server Access URL field field Contact Email field Location field Pod drop-down list The URL for server access. The description of the cloud. The contact email address for the cloud. The location. Choose the converged infrastructure pod. By choosing a pod name, the VMware cloud account appears in the converged infrastructure stack. Service Provider field The service provider s name. Click Add. 96
Managing a Virtual Infrastructure Downloading the PowerShell Agent Installer Downloading the PowerShell Agent Installer The PowerShell Agent is installed on Windows Server 2008 R2 or Windows Server 2012 64 bit virtual machine(s). Step 6 Step 7 On the menu bar, choose Administration > Virtual Accounts. Choose the PowerShell Agents tab. Click Download Installer. In the Download Agent Installer dialog box, check if your system meets the listed installation requirements. If the requirements are met, click Submit. If the requirements are met, click Submit. The Opening PSASetup. exe dialog box prompts you to save the executable file. Click Save File. The file is saved to your system s download location. Install the PSASetup. exe file on your Windows Server 2008 R2 or Windows Server 2012 64 bit virtual machine (VM). Creating a PowerShell Agent On the menu bar, choose Administration > Virtual Accounts. Click Add (+). In the Add Agent dialog box, complete the following fields: Agent field Agent Address field Agent Access Port field Access Key field field The agent name. The agent address. The agent access port number. The access key. The description of the agent 97
Verifying Cloud Discovery and Connectivity Managing a Virtual Infrastructure Verifying Cloud Discovery and Connectivity Testing the Connection Step 6 On the menu bar, choose Administration > Virtual Accounts. Choose the Virtual Accounts tab. Choose the VMware account that you want to test. Click Test Connectivity te After you add one or more cloud accounts to Cisco UCS Director, you can verify that the cloud and its data has been collected by using the Summary tab. On the menu bar, choose Virtual > Compute. Choose the Summary tab. te It can take few minutes to complete auto-discovery and populate the data. Choose the cloud name to view its status details. Viewing vcenter Plug-ins On the menu bar, choose Administration > Virtual Accounts. Choose the Plugins tab. This tab shows all the plugins asked for the vcenters added to Cisco UCS Director. 98
CHAPTER 8 Managing Policies This chapter contains the following sections: Policies, page 99 Data Collection Policy, page 102 About Group Share Policy, page 103 Storage Policies, page 104 About End User Self-Service Policy, page 117 Policies Cisco UCS Director provides a self-service portal where virtual machines (VMs) are provisioned from a pool of assigned resources using predefined policies set by administrators. A policy is a group of rules that determine where and how a new VM is provisioned within the infrastructure based on the availability of system resources. Cisco UCS Director requires that you set up the following policies to provision VMs: Computing Storage Network System Important A cloud account should be present prior to setting up policies to provision VMs. Computing Policies Computing policies determine the computing resources used during provisioning that satisfy group or workload requirements. 99
Computing Policies Managing Policies As an administrator, you can define advanced policies by mixing and matching various conditions in the computing policy. te We recommend that you thoroughly understand all the fields in the computing policy because some combinations of conditions can result in no host machines during self-service provisioning. Creating a Computing Policy On the menu bar, choose Policies > Computing. Choose the VMware Computing Policy tab. Click Add (+). In the Add Computing Policy dialog box, complete the following fields: Policy field Policy field Cloud drop-down list Host de/cluster Scope drop-down list Resource Pool drop-down list ESX Type drop-down list ESX Version drop-down list Minimum Conditions check boxes The name of the policy. te This name is used during catalog definition The description of the policy. Choose the cloud where resource allocation occurs. Choose the scope of deployment. te You can narrow the scope of deployment by specifying whether to use all, include chosen, or exclude chosen options. Depending on the choices, a new field appears where the required hosts or clusters can be chosen. Choose the resource pool. Choose the ESX installation type: ESX, ESXi, or both. Choose the version of ESX. Check the check boxes for one or more conditions that should match. Any hosts that do not meet these criteria are excluded from consideration. If more than one condition is chosen, all of the chosen conditions must match. Deployment Options 100
Managing Policies Computing Policies Override Template check box Number of vcpus field CPU Reservation (MHz) field CPU Limit (MHz) field CPU Shares drop-down list Memory field Memory Reservation (MB) field Memory Limit (MB) field Memory Shares drop-down list Resizing Options Allow Resizing of VM check box Check the check box to override the template properties. You are provided with options to enter custom settings for CPU and memory. A custom number of vcpus. The specified number of vcpus for a VM should not exceed the total cores for the chosen scope of host nodes or clusters. te This option appears if you checked the Override Template checkbox. The CPU reservation for the VM. The reservation depends upon the number of vcpus specified. te This option appears if you checked the Override Template checkbox. The CPU limit for the VM. The CPU limit is based on the chosen scope of host nodes or clusters. Choose the CPU shares: low, normal, or high. The CPU shares determine which VM gets CPU resources when there is competition among VMs. te This option appears if you checked the Override Template checkbox. The custom memory for the VM. te This option appears if you checked the Override Template checkbox. The memory reservation for the VM. The reservation depends upon the memory specified. te This option appears if you checked the Override Template checkbox. The memory limit for the VM. The memory limit is based on the chosen scope of host nodes or clusters. te This option appears if you checked the Override Template checkbox. Choose the memory shares: low, normal, or high.1 Memory shares determine which VM gets memory resources when there is competition among VMs. te This option appears if you checked the Override Template checkbox. Check the check box to allow VM resizing before provisioning or to resize an existing VM. 101
Data Collection Policy Managing Policies Permitted Values for vcpus field Permitted Values for Memory in MB field The range of vcpus to use while provisioning a VM or resizing an existing VM. A range of more than 8 is visible during VM provisioning or resizing. only if the chosen cloud (vcenter) is 5 or above and has VM version 8. Only the values specified in the box are visible. te This option appears if you checked the Allow Resizing of VM checkbox. The range of memory to use while provisioning a VM or resizing an existing VM. For example: 512, 768, 1024, 1536, 2048, 3072, 4096, and so on. Only the values specified in the box are visible. te This option appears if you checked the Allow Resizing of VM checkbox. Click Add. Data Collection Policy A data collection policy can be created to control the amount of parameters that can be retrieved from the vcenter for each VMware account. Each of the parameters mentioned in a data collection policy are collected and used in specific trend reports in Cisco UCS Director. te VMware is the only supported virtual account type. When a VMware account is added, it is initially associated with the default-data-collection-policy by default. Configuring a Data Collection Policy for a Virtual Account On the menu bar, choose Policies > Virtual/Hypervisor Policies > Service Delivery. Choose the Data Collection Policy tab. Click Add (+). In the Add dialog box, complete the following fields: 102
Managing Policies Associating the Data Collection Policy for a Virtual Account field field Account Type drop-down list Resource window The name of the data collection policy. te This name is used during catalog definition. The description of the policy The VMware virtual account is selected Choose a data collection group containing vcenter parameters. For example, CPU. Click the pencil icon to edit the data collection group. In the Edit Resource Entry dialog box, you can enable or disable data collection by checking or unchecking the Enable Collection check box. Click Submit. Associating the Data Collection Policy for a Virtual Account On the menu bar, choose Policies > Virtual/Hypervisor Policies > Service Delivery. Choose the Data Collection Policy Association tab. Choose the virtual (VMware) account and click Edit. In the Edit dialog box, choose the data collection policy from the Policy drop-down list that you configured in "Configuration a Data Collection Policy for a Virtual Account" section. Click Submit. The VMware account is now associated with the data collection policy. About Group Share Policy A group share policy provides more control to the users on the resources and what they can share with other users. With this policy, users can view resources that are currently assigned only to them or can view resources that are assigned to all groups that the users are part of. While you are creating a group, you can define a group share policy and determine which groups have read/write permissions. Later on, when users are added to this group, their access to resources is defined by the group share policy that is applied to the group. 103
Creating a Group Share Policy Managing Policies Creating a Group Share Policy On the menu bar, choose Policies > Virtual/Hypervisor Policies > Service Delivery. Click the Group Share Policy tab. Click Add (+). In the Add Policy dialog box, complete the following fields: Policy field Policy field Select Groups field The name of the group share policy. The description of the policy. The groups that have read/write permissions for the resources defined with this policy. Click Submit. What to Do Next You can edit user groups to specify this group share policy. Based on the permissions, users within those groups will inherit read/write permissions to resources. Storage Policies A storage policy defines resources such as the datastore scope, type of storage to use, minimum conditions for capacity, latency, and so on. The storage policy also provides options to configure additional disk policies for multiple disks and to provide datastore choices for use during a service request creation. te Cisco UCS Director supports datastore choice during a service request creation for VM provisioning. You have the option to enable or disable datastore choices for the end user during service request creation. The datastores listed depend upon the scope conditions specified in the storage policy that is associated with the VDC during the service request creation. To use the datastore selection feature while creating a service request, the template used for VM provisioning must have the disk type assigned as System. This is applicable for templates with single or multiple disks. 104
Managing Policies Storage Policies for Multiple VM Disks Storage Policies for Multiple VM Disks Cisco UCS Director supports VM provisioning with multiple disks on multiple datastores. Disks are classified into five types: system, data, database, swap, and log. The system disk policy is configured first, and the other disks can be configured depending on requirements. You can configure the disk policy individually for each disk type or choose the default system disk policy for each disk. te For information on creating a storage policy for a template with multiple disks, see the chapter on Multiple Disk VM Provisioning. Adding and Configuring a Storage Policy On the menu bar, choose Policies > Virtual/Hypervisor Policies > Storage. Choose the VMware Storage Policy tab. Click Add (+). In the Add Storage Resource Allocation Policy dialog box, complete the following fields: Policy field Policy field Cloud drop-down list Choose the cloud in which resource allocation occurs. If you want to narrow the scope of deployment, choose whether to use all, include selected data stores, or exclude selected data stores. Choose the cloud in which resource allocation occurs. System Disk Scope Data Stores Scope drop-down list Use Shared Data Store Only check box If you want to narrow the scope of deployment, choose whether to use all, include selected data stores, or exclude selected data stores. Check the check box to use shared datastores only. Storage Options Use Local Storage check box Use NFS check box Check the check box to use local storage. By default, the field is checked. Check the check box to use NFS storage. By default, the field is checked. 105
Adding and Configuring a Storage Policy Managing Policies Use SAN check box Minimum Conditions check boxes Override Template check box Check the check box to use SAN storage. By default, the field is checked. Check the check box to choose one or more conditions that should match. Any datastores that do not meet these criteria are excluded from the consideration. If more than one condition is chosen, all conditions must match. Check the check box to override the template properties. You are provided with options to enter custom settings such as using thin provisioning and custom disk size. Resizing Options for VM Life cycle Allow Resizing of Disk check box Permitted Values for Disk in GB field Allow user to select datastore from scope check box Allow Resizing of Disk check box Check the check box to provide the end user with an option to choose the VM disk size before provisioning. The custom range of disk size values that are chosen while provisioning a VM. For example, 1, 5, 10, 50, 100, 500, 1024, 5120, 10240, and so on. This option appears if All Resizing of Disk is checked. Check the check box to provide the end user with an option to choose the data store during the service request creation. Step 6 Step 7 Step 8 Step 9 0 1 Click Next. In the Additional Disk Policies pane, choose a disk type to configure. Click Edit (pencil) to edit the disk type. te By default, the disk policy for the disk is the same as in the System Disk Policy. In the Edit Policies Entry dialog box, uncheck the Same as System Disk Policy check box to configure the disk policy. Click Submit. In the Edit Entry dialog box, configure additional disk policies. Click Submit. te To use the storage policy created with additional disk policies, you need to associate the policy with the VDC that is used for the VM provisioning. When using the Additional disks policies configured in a policy, make sure to uncheck the Provision all disks in a single database check box during catalog creation for the multiple disk template. For more information about catalog creation, see Managing Catalogs, on page 131. 106
Managing Policies Virtual Storage Catalogs Virtual Storage Catalogs You can use a virtual storage catalog to customize storage policies. Using the virtual storage catalog, you can choose more than one storage policy and give it a custom storage entry name. You map a storage catalog to a catalog by enabling it during catalog creation. When you raise a service request using the catalog, you are provided with the Storage Tier choice. Configuring a Virtual Storage Catalog On the menu bar, choose Policies > Virtual/Hypervisor Policies > Storage. Choose the Virtual Storage Catalog tab. Click Add (+). In the Virtual Storage Catalog dialog box, complete the following fields: Catalog field Catalog field Cloud drop-down list Choose of Entries drop-down list The name of the catalog. This name is used during catalog custom actions definition. The description of the catalog. Select the cloud account. Choose the number of entries. The range is from 1 to 10. Depending on the choice, storage entry options are provided in the subsequent dialog box. Step 6 Click Next. In the Add Entries pane, complete the following fields: Storage Entry #1 Storage Entry field Storage Policy drop-down list The name of the storage entry. Choose the storage policy. Storage Entry # 2 Storage Entry field Storage Policy drop-down list The storage entry name of the second policy. Choose the storage policy. 107
Network Policies Managing Policies Step 7 Click Submit. What to Do Next You can map the virtual storage catalog during catalog creation. See Managing Catalogs section (xref to be added). You can view the storage tier options during the Service request creation. See Using Self-Service Provisioning (xref to be added). Network Policies The network policy includes resources such as network settings, DHCP, or static IP, and the option to add multiple vnics for VMs provisioned using this policy. Adding a Static IP Pool Policy You can optionally configure a static IP pool policy that can be used with a network policy. On the menu bar, choose Policies > Virtual/Hypervisor Policies > Network. Choose the Static IP Pool Policy tab. Click Add (+). In the Static IP Pool Policy Information dialog box, complete the following fields: Policy field Policy field of the network policy. of the policy. Step 6 Click Add (+) in the Static IP Pools section to add and configure multiple static IP pools. In the Add Entry to Static IP Pools dialog box, complete the following fields: Static IP Pool field The static IP pool. For example: 10.5.0.1-10.5.0.50, 10.5.0.100, 10.5.1.20-10.5.1.70 108
Managing Policies Network Policies Subnet Mask field Gateway IP Address field The subnetwork mask for the pool. For example: 255.255.255.0 The IP address of the default gateway for this network Step 7 Step 8 Click Submit. Click Submit in the Static IP Policy Information dialog box. Adding a Network Policy On the menu bar, choose Policies > Virtual/Hypervisor Policies > Network. Choose the VMWare Network Policy tab. Click Add (+). In the Network Policy Information dialog box, complete the following fields: Policy field The name of the network policy. Policy field Cloud drop-down list Allow end user to select optional NICs check box The description of the network policy. Choose the cloud account to which the policy applies. Check this check box if you want to provide vnics selection during the creation of a service request-deployment configuration. Step 6 Click Add (+) in the VM Networks section to add and configure multiple vnics. These vnics are applicable to the VM that is provisioned using this policy. te To add or replace vnics for provisioned or discovered VMs using VM actions, you must configure the vnics. In the Add Entry to VM Networks dialog box, complete the following fields: NIC Alias field The name for the new NIC 109
Network Policies Managing Policies Mandatory check box Allow end user to choose portgroups check box Copy Adapter from Template check box Adapter Type drop-down list If the Allow end user to select optional NICs check box in the Network Policy dialog box was selected, this check box is pre-selected. If the Network Policy dialog box was not selected, and this check box is not selected, then the NIC Alias field is optional. te At least one of the NICs should have the Mandatory option selected. The NICs that have the Mandatory field selected are used in VM provisioning and there will be no option of the user during VM service request creation. Check the check box to allow the end user to choose port groups during provisioning. Check the check box if you do not need custom settings. Uncheck for custom settings. Choose the adapter type. Check this option if the user wants to have the same Adapter Type that is available in the template. te This option is not visible if the Copy Adapter from Template option is chosen. Step 7 Step 8 Step 9 Click Add (+) in the Port Groups section. The Add Entry to Port Groups dialog box displays. Click Select to choose the port group name. From the Select IP Address Type drop-down field, choose DHCP (default) or Static. a) If you choose Static, the Add Entry dialog box appears. Choose IP Pool Policy (default) or Inline IP Pool. If you choose IP Pool Policy, click Select to choose a static IP pool. In the Select dialog box, choose from the list of preconfigured static IP pool(s). If no preconfigured static IP pools exist, see Adding a Static IP Policy for more information. b) If you choose Inline IP Pool, complete the following fields: Static IP Pool field Subnet Mask field Gateway IP Address field The static IP pool. For example: 10.5.0.1-10.5.0.50, 10.5.0.100, 10.5.1.20-10.5.1.70 The subnetwork mask for the pool. For example: 255.255.255.0 The IP address of the default gateway for this network. 110
Managing Policies Network Policies 0 1 2 Click Submit. Click Submit in the Add Entry to VM Networks dialog box. Click Submit in the Network Policy Information dialog box. Networking Provisioning Policies A network provisioning policy is used during orchestration workflow tasks. This policy defines Layer 2 network configuration and access control lists (ACLs) for switches in the network. Configuring a Network Provisioning Policy On the menu bar, choose Policies > Virtual/Hypervisor Policies > Network. Choose the Network Provisioning Policy tab. Click Add. In the Add Policy dialog box, complete the following fields: General Information Policy field Policy field The name of the policy. The description of the policy. L2 Network Configuration VLAN Use Private VLAN checkbox If checked, the following fields are automatically populated: Private VLAN Type: community Primary VLAN ID: 0 Secondary VLAN Range Starting ID 500 Secondary VLAN Range Ending ID 1000 VLAN Range - Starting ID field VLAN Range - Ending ID field Base Profile field A starting ID for the VLAN range. 500 is the default ID start range. An ending ID for the VLAN range. 1000 is the default ID end range. The VLAN base profile name. This is the profile that contains one or more nested profile assignments 111
Network Policies Managing Policies Access Control List ACL Type drop-down list Permit Incoming Traffic to TCP Ports field Simple is the default and only option available at this time. Check the check box if ICMP is to be allowed on your VLAN Click the Select button. The Select Items dialog box displays. The following options are available: FTP SSH Telnet SMTP POP3 HTTP HTTPS MySQL Select the check box next to the options you want or click the Check All button. To clear prior entries, click the Check ne button. Permit Incoming Traffic to UDP Ports field Click the Select button. The Select Items dialog box displays. The following options are available: SNMP Syslog Select the check box next to the options you want or click the Check All button. To clear prior entries, click the Check ne button. Click Submit. VLAN Pool Policies A VLAN pool policy defines the VLAN range for a pod. This policy is used in the orchestration workflow for generating a free VLAN ID from the defined range specified in the policy. 112
Managing Policies System Policies Configuring a VLAN Pool Policy On the menu bar, choose Policies > Virtual/Hypervisor Policies > Network. Choose the VLAN Pool Policy tab. Click Add (+). In the Add Policy dialog box, complete the following fields: Pod drop-down list Policy field Policy field VLAN Range field Choose the pod. The policy name. This policy name is used in orchestration workflows. The description of the policy. The VLAN range. For example 1,3, 5 15. Click Submit. System Policies A system policy defines the system specific information such as the template to use, time zone, OS specific information, and so on. Configuring a System Policy On the menu bar, choose Policies > Virtual/Hypervisor Policies > Service Delivery. Choose the VMware System Policy tab. Click Add (+). In the System Policy Information dialog box, complete the following fields: Policy field Policy field The name of the policy. This name is used during catalog definition. The description of the policy. 113
System Policies Managing Policies VM Template field The VM name template to use. Cisco UCS Director allows automatic creation of VM names. VM names can be automatically created using a set of variable names. Each variable must be enclosed in ${VARIABLE_NAME}. For example: vm-${group_name}-sr${sr_id}. Choose from the following optional VM Template features: End User VM Prefix check box Power On after deploycheck box Host Template field Check the check box to allow the user to add a VM name prefix during a service request creation for VM provisioning. Check the check box to automatically power on all VMs deployed using this policy. The VM hostnames that can be automatically created using set of variable names. Each variable must be enclosed in ${VARIABLE}. Step 6 Step 7 Choose the Host Template variable names. For example: ${VMNAME} Complete the following fields: DNS Domain field Linux Time Zone drop-down list DNS Suffix List field DNS Server List field VM Image Type drop-down list The IP domain to use for the VM. Choose the time zone. The DNS suffixes to configure for the DNS lookup. If there is more than one suffix, separate each by a comma. The list of DNS server IP addresses. Use a comma to separate more than one server. Choose the OS of the image that is installed on the VM. Choose Windows and Linux or Linux Only. Windows 114
Managing Policies System Policies Product ID field License Owner field Organization field License Mode drop-down list Number of License Users WINS Server List field Auto Logon check box Auto Logon Count field Administrator Password field Domain/Workgroup drop-down list Workgroup field Domain field Domain Username field Domain Password field Windows Time Zone drop-down list The Windows product ID or license key. The product ID or license key can be provided here or at the OS license pool. The key entered in OS license pool overrides the key provided here. The Windows license owner name. The organization name to configure in the VM. Choose per-seat or per-server. The number of license users or connections. The WINS server IP addresses. Multiple values are separated with a comma. Check the check box to enable auto log on. The number of times to perform auto log on. The password for the administrators account. Choose either Domain or Workgroup. The name for the workgroup. This option appears if Workgroup is chosen as the value in the Domain/Workgroup drop-down list. The name of the Windows domain. te This option appears if Domain is chosen as the value in the Domain/Workgroup drop-down list. The Windows domain administrator s username. te This option appears if Domain is chosen as the value in the Domain/Workgroup drop-down list. The Windows domain administrator s password. te This option appears if Domain is chosen as the value in the Domain/Workgroup drop-down list. Choose the time zone. 115
System Policies Managing Policies Define VM Annotation check box Check the check box to specify annotations to the VM. You can specify a note and custom attributes as part of the annotation. After you select this check box, complete the following fields: VM Annotation field Enter a description for the VM. Custom Attributes Click Add(+) to specify the, Type and Value. te The information that you add as part of the VM Annotation is displayed for the VM in the VM Details page. Step 8 Click Add. OS Licenses Cisco UCS Director provides an option for users to add Windows OS licenses. These licenses are mapped to Windows images during the creation of a catalog. You have an option to provide the Windows OS license for a Windows image in VMware System Policy or choose the key from the OS version field during catalog creation. Adding an OS License On the menu bar, choose Policies > Virtual/Hypervisor Policies > Service Delivery. Choose the OS License tab. Click Add (+). In the Add License Details page, complete the following fields: Windows Version field License field License Owner field The Windows version name. The Windows product ID or license key. This field accepts KMS client set-up keys. The Windows license owner name. 116
Managing Policies About End User Self-Service Policy Organization field License Mode drop-down list Number of Licensed Users field The organization name to configure in the VM. Choose per-seat or per-server. The number of license users or connections. Click Submit. About End User Self-Service Policy An End User Self-Service Policy controls the actions or tasks that a user can perform on a vdc. The starting point for creating this policy is to specify an Account Type, for example VMware. After you specify an account type, you can continue with creating the policy. After you create the policy, you must assign the policy to a vdc that is created with the same account type. For example, if you have created an end user policy for VMware, then you can specify this policy when you create a VMware vdc. You cannot view or assign policies that have been created for other account types. In addition to creating an end user self-service policy, Cisco UCS Director allows you to perform the following tasks: View Displays a summary of the policy. Edit Opens the End User Policy dialog box from which you can modify the description or the end user self service options. Clone Opens the End User Policy dialog box through which you can create another policy with options specified in another policy. Delete Deletes the policy from the system. However, no vdc must be assigned with this policy. Important Assigning a policy to a vdc is the only method through which you can control the tasks that a user can perform on the vdc. In prior versions, you enabled or disabled tasks on a vdc while creating it. If you have upgraded to the current release, those previously set permissions and options are automatically grouped as an end user policy, with the name of the vdc, and assigned to the vdc. 117
Creating an End User Policy Managing Policies Creating an End User Policy On the menu bar, choose Policies > Virtual/Hypervisor Policies > Service Delivery. Choose the End User Self-Service Policy tab. Click Add (+). In the Add End User Policy dialog box, select an account type from the drop-down list. Click Submit. Step 6 In the End User Policy dialog box, complete the following fields: Policy field Policy field End User Self-Service Options field The name of the policy. The description for the policy. Select the tasks that a user can perform on a vdc that is assigned with this policy. The list of tasks vary according to the Account Type. Step 7 Click Submit. What to Do Next Assign this end-user policy to a vdc. For more information, see Adding a Virtual Data Center, on page 120. 118
CHAPTER 9 Managing Virtual Data Centers This chapter contains the following sections: About Managing Virtual Data Centers, page 119 VDC Actions, page 120 Virtual Data Center Service Profiles, page 128 About Managing Virtual Data Centers A Virtual Data Center (VDC) is an environment that combines virtual resources, operational details, rules, and policies to manage specific group requirements. A group or organization can manage multiple VDCs. images, templates, and policies. Organizations can allocate quotas and assign resource limits for individual groups at the VDC level. You can also define approvers specific to a VDC. The approver for a particular VDC must approve the request from users for VM provisioning. te There is a default VDC in Cisco UCS Director and all discovered VMs are part of this default VDC. Discovered VMs are VMs that are created outside of Cisco UCS Director or were already created on vcenter before Cisco UCS Director was installed. Cisco UCS Director automatically discovers such VMs and adds them to the default VDC. A VM that is provisioned using a service request can be associated with a VDC. When you are creating a service request, you can choose the VDC on which this VM is provisioned. You can view a list of VDC that are available for a particular group and choose the required VDC when provisioning VMs. 119
VDC Actions Managing Virtual Data Centers VDC Actions Adding a Virtual Data Center On the menu bar, choose Policies > Virtual/Hypervisor Policies > Virtual Data Centers. Choose the VDC tab. Click Add (+). In the VDC Add dialog box, select an account type from the drop-down list. The account type that you select determines the list of cloud names that are displayed in the Add VDC dialog box. Step 6 Click Submit. In the Add VDC dialog box, complete the following fields: VDC field VDC Locked check box VDC field Group drop-down list Cloud drop-down list The name of the VDC. After entering the name, it cannot be edited. Check the check box to deny the use of the VDC for any further deployments. Actions on existing VMs, within this VDC, are disabled. Uncheck the check box to allow the use of the VDC for further deployments. The VDC-specific description. Choose the group for which the VDC is being set up. Choose the cloud on which the VDC is being set up. The options available in this drop-down list is determined by the account type you specified. Approvers and Contacts First Approver User field Second Approver User field Provider Support Email Address field The user who must approve the service request. The second user who must approve the service request. The contact or user s email address. The person who is notified about VM provisioning using this VDC. 120
Managing Virtual Data Centers Adding a Virtual Data Center Copy tifications to Email Address field The second contact s email for copying notifications about this VDC. Policies System Policy drop-down list Computing Policy drop-down list Network Policy drop-down list Storage Policy drop-down list Cost Model drop-down list Disable displaying cost in the SR summary and email page check box User Action Policy drop-down list Enable Storage Efficiency check box Delete after Inactive VM days drop-down list Choose the system policy applicable to the VDC. Choose the computing policy applicable to the VDC. Choose the network policy applicable to the VDC. Choose the storage policy applicable to the VDC. Choose the cost model applicable to the VDC. Check the check box to disable displaying cost in the SR summary and email page for this VDC. Choose the policy that is used for execution of orchestration workflow post provisioning of the VMs. The chosen workflow appears as an action button for VMs within the VDC. Check the check box to clone the VM using RCU. Choose the number of days to wait before deleting an inactive VM. The VM in the inactive state is when it is not in the power-on state. te Ensure that the Delete Inactive VM's Based on VDC Policy check box is checked in the Advanced Controls tab under Administration > System for this choice to work as expected. For more information, see Enabling Advanced Controls. 121
Viewing a Virtual Data Center Managing Virtual Data Centers End User Self-Service Policies Select a self-service policy for the vdc. The policy defines the tasks or actions that can be performed on the VDC. te This drop-down list is populated with policies that are relevant to the account type that you are creating the VDC for. Assigning a policy to a vdc is the only method through which you can control the tasks that a user can perform on the vdc. In prior versions, you enabled or disabled tasks on a vdc while creating it. If you have upgraded to the current release, those previously set permissions and options are automatically grouped as an end user policy, with the name of the vdc, and assigned to the vdc. Step 7 Click Add. te The following tasks can no longer be performed by users on a VM: Migrate a VM Use Stack View Assign a VM Viewing a Virtual Data Center On the menu bar, choose Policies > Virtual/Hypervisor Policies > Virtual Data Centers. In the All User Groups pane, choose the VDC group that contains the VDC to view. Choose the VDC tab. In the main viewing pane, choose the VDC to view. Click View to open the VDC Details page. 122
Managing Virtual Data Centers Editing a Virtual Data Center Editing a Virtual Data Center On the menu bar, choose Policies > Virtual/Hypervisor Policies > Virtual Data Centers. In the All User Groups pane, choose the VDC group that you need to edit. Choose the VDC tab. Click Edit. In the Edit VDC dialog box, edit the following fields: VDC field VDC Locked check box VDC field Group drop-down list Cloud drop-down list The name of the VDC. After entering the name, it cannot be edited. Check the check box to deny the use of the VDC for any further deployments. Actions on existing VMs, within this VDC, are disabled. Uncheck the check box to allow the use of the VDC for further deployments. The VDC-specific description. Choose the group for which the VDC is being set up. Choose the cloud on which the VDC is being set up. The options available in this drop-down list is determined by the account type you specified. Approvers and Contacts First Approver User field Second Approver User field Provider Support Email Address field Copy tifications to Email Address field The user who must approve the service request. The second user who must approve the service request. The contact or user s email address. The person who is notified about VM provisioning using this VDC. The second contact s email for copying notifications about this VDC. Policies System Policy drop-down list Computing Policy drop-down list Choose the system policy applicable to the VDC. Choose the computing policy applicable to the VDC. 123
Editing a Virtual Data Center Managing Virtual Data Centers Network Policy drop-down list Storage Policy drop-down list Cost Model drop-down list Disable displaying cost in the SR summary and email page check box User Action Policy drop-down list Enable Storage Efficiency check box Delete after Inactive VM days drop-down list End User Self-Service Policies Choose the network policy applicable to the VDC. Choose the storage policy applicable to the VDC. Choose the cost model applicable to the VDC. Check the check box to disable displaying cost in the SR summary and email page for this VDC. Choose the policy that is used for execution of orchestration workflow post provisioning of the VMs. The chosen workflow appears as an action button for VMs within the VDC. Check the check box to clone the VM using RCU. Choose the number of days to wait before deleting an inactive VM. The VM in the inactive state is when it is not in the power-on state. te Ensure that the Delete Inactive VM's Based on VDC Policy check box is checked in the Advanced Controls tab under Administration > System for this choice to work as expected. For more information, see Enabling Advanced Controls. Select a self-service policy for the vdc. The policy defines the tasks or actions that can be performed on the VDC. te This drop-down list is populated with policies that are relevant to the account type that you are creating the VDC for. Assigning a policy to a vdc is the only method through which you can control the tasks that a user can perform on the vdc. In prior versions, you enabled or disabled tasks on a vdc while creating it. If you have upgraded to the current release, those previously set permissions and options are automatically grouped as an end user policy, with the name of the vdc, and assigned to the vdc. Step 6 Click Save. 124
Managing Virtual Data Centers Deleting a Virtual Data Center Deleting a Virtual Data Center On the menu bar, choose Policies > Virtual/Hypervisor Policies > Virtual Data Centers. In the All User Groups pane, choose the VDC group that you need to delete. Choose the VDC tab. In the main viewing pane, choose the VDC to delete. Click Delete. Cloning a Virtual Data Center Step 6 On the menu bar, choose Policies > Virtual/Hypervisor Policies > Virtual Data Centers. In the All User Groups pane, choose the VDC group that you need to clone. Choose the VDC tab. In the main viewing pane, choose the VDC to clone. Click Clone. In the Clone VDC dialog box, complete the following fields: VDC field VDC Locked check box VDC field Group drop-down list Cloud drop-down list The name of the VDC. After entering the name, it cannot be edited. Check the check box to deny the use of the VDC for any further deployments. Actions on existing VMs, within this VDC, are disabled. Uncheck the check box to allow the use of the VDC for further deployments. The VDC-specific description. Choose the group for which the VDC is being set up. Choose the cloud on which the VDC is being set up. The options available in this drop-down list is determined by the account type you specified. Approvers and Contacts 125
Cloning a Virtual Data Center Managing Virtual Data Centers First Approver User field Second Approver User field Provider Support Email Address field Copy tifications to Email Address field The user who must approve the service request. The second user who must approve the service request. The contact or user s email address. The person who is notified about VM provisioning using this VDC. The second contact s email for copying notifications about this VDC. Policies System Policy drop-down list Computing Policy drop-down list Network Policy drop-down list Storage Policy drop-down list Cost Model drop-down list Disable displaying cost in the SR summary and email page check box User Action Policy drop-down list Enable Storage Efficiency check box Delete after Inactive VM days drop-down list Choose the system policy applicable to the VDC. Choose the computing policy applicable to the VDC. Choose the network policy applicable to the VDC. Choose the storage policy applicable to the VDC. Choose the cost model applicable to the VDC. Check the check box to disable displaying cost in the SR summary and email page for this VDC. Choose the policy that is used for execution of orchestration workflow post provisioning of the VMs. The chosen workflow appears as an action button for VMs within the VDC. Check the check box to clone the VM using RCU. Choose the number of days to wait before deleting an inactive VM. The VM in the inactive state is when it is not in the power-on state. te Ensure that the Delete Inactive VM's Based on VDC Policy check box is checked in the Advanced Controls tab under Administration > System for this choice to work as expected. For more information, see Enabling Advanced Controls. 126
Managing Virtual Data Centers Managing Application Categories in a Virtual Data Centers End User Self-Service Policies Select a self-service policy for the vdc. The policy defines the tasks or actions that can be performed on the VDC. te This drop-down list is populated with policies that are relevant to the account type that you are creating the VDC for. Assigning a policy to a vdc is the only method through which you can control the tasks that a user can perform on the vdc. In prior versions, you enabled or disabled tasks on a vdc while creating it. If you have upgraded to the current release, those previously set permissions and options are automatically grouped as an end user policy, with the name of the vdc, and assigned to the vdc. Step 7 Click Save. Managing Application Categories in a Virtual Data Centers Step 6 Step 7 On the menu bar, choose Policies > Virtual/Hypervisor Policies > Virtual Data Centers. In the All User Groups pane, choose the VDC group that contains the VDC. Choose the VDC tab. In the main viewing pane, choose the VDC to edit. Click Manage Categories. In the Edit App Category dialog box, edit any of the fields that apply to optionally change the system policy, computing policy, network policy, or storage policy. You can also change the cost model and the smart allocation policy. Click Save. 127
Virtual Data Center Service Profiles Managing Virtual Data Centers Virtual Data Center Service Profiles This feature is similar to adding a VDC, but the VDCs created under VDC Service Profiles are used during orchestration workflows. With this feature, you can create Gold, Silver, and Bronze VDCs that can be used when you create VDCs during a workflow task. Adding a Virtual Data Center Service Profile On the menu bar, choose Policies > Virtual/Hypervisor Policies > Virtual Data Centers. Choose the VDC Service Profile tab. Click Add (+). In the Add VDC Service Profile dialog box, complete the following fields: VDC Profile field VDC Locked check box VDC field Group drop-down list Cloud drop-down list The name of the VDC profile. After entering the name, it cannot be edited. Check the check box to deny the use of the VDC for any further deployments. Actions on existing VMs, within this VDC, are disabled. Uncheck the check box to allow the use of the VDC for further deployments. The VDC-specific description. Choose the group for which the VDC is being set up. Choose the cloud on which the VDC is being set up. Approvers and Contacts First Approver User field Second Approver User field Provider Support Email Address field Copy tifications to Email Address field The user who must approve the service request. The second user who must approve the service request. The contact or user s email address. The person who is notified about VM provisioning using this VDC. The second contact s email for copying notifications about this VDC. Policies 128
Managing Virtual Data Centers Adding a Virtual Data Center Service Profile System Policy drop-down list Computing Policy drop-down list Network Policy drop-down list Storage Policy drop-down list Cost Model drop-down list Disable displaying cost in the SR summary and email page check box User Action Policy drop-down list Choose the system policy applicable to the VDC service profile. Choose the computing policy applicable to the VDC service profile. Choose the network policy applicable to the VDC service profile. Choose the storage policy applicable to the VDC service profile. Choose the cost model applicable to the VDC service profile. Check the check box to disable displaying cost in the SR summary and email page for this VDC service profile. Choose the policy that is used for execution of orchestration workflow after provisioning of the VMs. The chosen workflow appears as an action button for VMs within the VDC. End User Self-Service Options VM Power Management check box VM Resize check box VM Snapshot Management check box VM Deletion check box VM Disk Management check box VM Network Management check box Delete after Inactive VM days drop-down list Check the check box to enable all VM power management actions for VMs that belong to this VDC. Check the check box to enable the VM resize action for VMs that belong to this VDC. Check the check box to enable all storage snapshot actions for VMs in this VDC. Check the check box to enable the VM delete action for VMs in this VDC. Check the check box to enable the VM disk management for VMs in this VDC. Check the check box to enable network management for the VM that belongs to this VDC. Choose the number of days to wait before deleting an inactive VM. The VM in the inactive state is when it is not in the power-on state. 129
Adding a Virtual Data Center Service Profile Managing Virtual Data Centers Click Add. 130
CHAPTER 10 Managing Catalogs This chapter contains the following sections: About Managing Catalogs, page 131 Publishing a Catalog, page 132 About Publishing Advanced Catalogs, page 137 Publishing Advanced Catalogs, page 137 Viewing a Catalog, page 138 Editing a Catalog, page 139 Reordering Catalogs Within a Folder, page 143 Cloning a Catalog, page 143 Deleting a Catalog, page 144 Accessing Hosts for Deployment, page 144 Re-ordering Catalog Folders, page 145 About Managing Catalogs You can self-provision virtual machines (VMs) using predefined catalog items. A catalog is created by the system administrator or the end user. It defines parameters such as the cloud name and the group name to which the VM is bound. To aid in managing catalogs, Cisco UCS Director allows you to group similar catalogs within a folder. While creating a catalog, you can select a specific folder, which has been created earlier on. Optionally, you can create a new folder for the catalog. A folder is visible only when it contains a catalog. The Manage Folder option in the Catalog page allows you to perform the following tasks: Edit a folder To modify the name of the folder. You cannot edit a folder that is created by default. Delete a folder To delete a folder from Cisco UCS Director. If this folder contains catalogs, then these catalogs are automatically moved into the folders that are available by default, based on the catalog type. You cannot delete a folder that is available by default. 131
Publishing a Catalog Managing Catalogs Re-order the list of folder To change the order in which the folders are listed in the Catalog page. By default, the folders are listed alphabetically. Following folders are available by default, and you cannot edit or delete them: Standard Advanced Service Container VDI Important If you have upgraded Cisco UCS Director to the latest version, then all catalogs created in prior versions are grouped into the folders available by default, based on the catalog type. Publishing a Catalog On the menu bar, choose Policies > Catalogs. Choose the Catalog tab. Click Add (+). In the Catalog Add dialog box, select the type of catalog that you want to add. Click Submit. Step 6 In the Create Catalog dialog box, complete the following fields: Basic Information pane Catalog field Catalog field The name of the catalog. te After you create a catalog, you cannot modify the name. The description of the catalog. 132
Managing Catalogs Publishing a Catalog Catalog Type drop-down list The type of catalog. It can be one of the following: Standard Used to create catalogs for VM provisioning using images from a list of clouds. Advanced Used for publishing orchestration workflows such as catalog items. Service Container Used for publishing application containers as catalog items. VDI Used for publishing Xen Desktop as catalog items. Catalog Icon drop-down list Applied to all groups check box Selected Groups check box list Cloud drop-down list Image drop-down list Windows License Pool field Provision all disks in single datastore check box Choose from a list of icons to associate this catalog with an image. This icon is seen when you are creating a service request using this catalog. Check the check box to enable all groups to use this catalog. Uncheck the check box to deny its use to other groups. Check the check boxes for the included groups that are from the Select Items dialog box. The checked group(s) use this catalog to provision new VMs. Choose the cloud with the image for VM provisioning. Choose the type of image (any existing templates such as Windows, Linux and other files that make up the image) that you use when VMs are provisioned using this catalog. Choose the Windows License. te te This option appears only when a Windows image is chosen. t supported in the RHEV KVM Connector. Check the check box to provision all disks in a single datastore. You can also choose to use the datastores configured for each disk in the storage policy. For more information on multiple disk storage policy creation, see Managing Policies, page 8-1. te te This option appears if the chosen template has multiple disks. t supported in the RHEV KVM Connector. 133
Publishing a Catalog Managing Catalogs Service Container Template drop-down list XenDesktop Catalog drop-down list Select Folder drop-down list Choose the template from the list. te This option appears when the chosen Catalog Type is Service Container. Choose the template from the list of XenDesktop dedicated catalogs configured in Desktop Studio. te This option appears when the chosen Catalog Type is VDI. Choose the folder within which this catalog must be created in. te The drop-down list includes names of folders that are available by default. You can either select a folder that is available, or click the + icon to create a new folder. Step 7 Step 8 Click Next. In the Applications Details pane, complete the following fields: Category drop-down list Choose a VDC category. Support Contact Email Address field Specify OS drop-down list Specify Other OS field Specify Applications check box list Specify Other Applications field The email address of the contact that is notified when a service request is created using this catalog item. Choose the type of OS installed on the VM when it is provisioned. te t supported in the RHEV KVM Connector. Any OS that is not available in the Specify OS list. te t supported in the RHEV KVM Connector. Check the check boxes for applications from the Select Items dialog box. These applications are installed on the VM during provisioning. te t supported in the RHEV KVM Connector. The applications that are not available in the Select Items dialog box. te t supported in the RHEV KVM Connector. 134
Managing Catalogs Publishing a Catalog Application Code field An application code that is used in the VM name. The application code can be between 1 to 4 characters (for example: W2K3, DB, WS). The application code can used in a system policy for the VM name by using the variable ${APPCODE}. For example, if the VM Template is vm-${group_name}-${appcode}, the VM provisioned with the system policy has the name vm-groupname-w2k3. te t supported in the RHEV KVM Connector. Step 9 0 Click Next. In the User Credentials pane, complete the following fields: te t supported in the RHEV KVM Connector. Credential Options drop-down list Choose to allow or disallow users to retrieve VM access credentials (shared). User ID field Password field The user ID. te This option appears when you choose either of the share options under Credential Options. The user password. te This option appears when you choose either of the share options under Credential Options. 1 2 Click Next. In the Customization pane, complete the following fields: Post Provisioning Custom Actions check box Check the check box to enable an orchestration workflow that is executed after VM provisioning. Workflow drop-down list VM App Charge Frequency drop-down list Choose a defined workflow for provisioning. te This option appears when Post Provisioning Custom Actions is checked. Choose Hourly or Monthly. 135
Publishing a Catalog Managing Catalogs Active VM Application Cost field Inactive VM Application Cost field The cost for the application that is included in the template. te t supported in the RHEV KVM Connector. The cost to this catalog of a VM in inactive state per hour or month. te t supported in the RHEV KVM Connector. 3 4 Click Next. In the VM Access pane, complete the following fields: Web Access Configuration check box Check the check box to enable web access to the VM. Uncheck the check box to disable web access to the VM. URL field Label field Remote Desktop Access Configuration check box Server field Port field Label field The URL of the VM. te This option appears when Web Access Configuration is checked. The label that is defined for this URL te This option appears when Web Access Configuration is checked. Check the check box to enable remote desktop access to the VM. Uncheck the check box to disable remote desktop access to the VM. The IP address of the server for remote access. te This option appears when Remote Desktop Access Configuration is checked. The port number on the server for remote access. te This option appears when Remote Desktop Access Configuration is checked. The label that is defined for this remote access. te This option appears when Remote Desktop Access Configuration is checked. 136
Managing Catalogs About Publishing Advanced Catalogs 5 6 7 Click Next. Review the catalog information in the Summary page. Click Submit. About Publishing Advanced Catalogs When you choose the Advanced catalog type, you can provision workflow catalogs to end users. End users can use these catalogs during a Service Request to execute workflows. You create an Advanced Catalog Item by defining parameters such as Group, Workflow, and so on. Publishing Advanced Catalogs Step 6 On the menu bar, choose Policies > Catalogs. Choose the Catalog tab. Click Add. In the Catalog Add dialog box, from the Catalog Type drop-down list, select Advanced. Click Submit. In the Create Catalog dialog box, complete the following fields: Basic Information Pane Catalog field Catalog field Catalog Type Catalog Icon drop-down list Applied to all groups check box The name of the catalog. The description of the catalog. Choose Advanced. Choose the icon to associate this catalog with an image. The icon is seen when creating a service request using this catalog. Check the check box to enable all groups to use this catalog. Uncheck the check box to deny its use to other groups. 137
Viewing a Catalog Managing Catalogs Selected Groups Click Select and complete the following: 1 (Optional) Click Check All to choose all of the categories or click Check ne to deselect all categories. 2 From the Select Items dialog box, check the appropriate groups to include. The checked group(s) can use this catalog to provision new VMs. 3 Click Select to finish your selection of categories. Select Folder drop-down list Choose the folder within which this catalog must be created in. te The drop-down list includes names of folders that are already available. You can either select a folder that is available, or click the + icon to create a new folder. Step 7 Step 8 Step 9 0 1 2 Click Next. In the vapp Workflow pane, click Workflow Select. In the Select dialog box, check the check box adjacent to the workflow to use. Click Select. Review the catalog information on the Summary page. Click Submit. Viewing a Catalog On the menu bar, choose Policies > Catalogs. Choose the Catalog tab. Choose the name of the catalog you want to view. Click Submit. 138
Managing Catalogs Editing a Catalog Editing a Catalog On the menu bar, choose Policies > Catalogs. Choose the Catalog tab. Choose the name of the catalog you want to edit. Click Edit. In the Modify Catalog dialog box, complete the following fields: Basic Information pane Catalog field Catalog field Catalog Type drop-down list The name of the catalog. te After you create a catalog, you cannot modify the name. The description of the catalog. The type of catalog. It can be one of the following: Standard Used to create catalogs for VM provisioning using images from a list of clouds. Advanced Used for publishing orchestration workflows such as catalog items. Service Container Used for publishing application containers as catalog items. VDI Used for publishing Xen Desktop as catalog items. Catalog Icon drop-down list Applied to all groups check box Selected Groups check box list Cloud drop-down list Choose from a list of icons to associate this catalog with an image. This icon is seen when you are creating a service request using this catalog. Check the check box to enable all groups to use this catalog. Uncheck the check box to deny its use to other groups. Check the check boxes for the included groups that are from the Select Items dialog box. The checked group(s) use this catalog to provision new VMs. Choose the cloud with the image for VM provisioning. 139
Editing a Catalog Managing Catalogs Image drop-down list Windows License Pool field Provision all disks in single datastore check box Service Container Template drop-down list XenDesktop Catalog drop-down list Select Folder drop-down list Choose the type of image (any existing templates such as Windows, Linux and other files that make up the image) that you use when VMs are provisioned using this catalog. Choose the Windows License. te te This option appears only when a Windows image is chosen. t supported in the RHEV KVM Connector. Check the check box to provision all disks in a single datastore. You can also choose to use the datastores configured for each disk in the storage policy. For more information on multiple disk storage policy creation, see Managing Policies, page 8-1. te te This option appears if the chosen template has multiple disks. t supported in the RHEV KVM Connector. Choose the template from the list. te This option appears when the chosen Catalog Type is Service Container. Choose the template from the list of XenDesktop dedicated catalogs configured in Desktop Studio. te This option appears when the chosen Catalog Type is VDI. Choose the folder within which this catalog must be created in. te The drop-down list includes names of folders that are available by default. You can either select a folder that is available, or click the + icon to create a new folder. Step 6 Step 7 Click Next. In the Applications Details pane, edit the following fields: Category drop-down list Choose a VDC category. Support Contact Email Address field The email address of the contact that is notified when a service request is created using this catalog item. 140
Managing Catalogs Editing a Catalog Specify OS drop-down list Specify Other OS field Specify Applications check box list Specify Other Applications field Application Code field Choose the type of OS installed on the VM when it is provisioned. te t supported in the RHEV KVM Connector. Any OS that is not available in the Specify OS list. te t supported in the RHEV KVM Connector. Check the check boxes for applications from the Select Items dialog box. These applications are installed on the VM during provisioning. te t supported in the RHEV KVM Connector. The applications that are not available in the Select Items dialog box. te t supported in the RHEV KVM Connector. An application code that is used in the VM name. The application code can be between 1 to 4 characters (for example: W2K3, DB, WS). The application code can used in a system policy for the VM name by using the variable ${APPCODE}. For example, if the VM Template is vm-${group_name}-${appcode}, the VM provisioned with the system policy has the name vm-groupname-w2k3. te t supported in the RHEV KVM Connector. Step 8 Step 9 Click Next. In the User Credentials pane, complete the following fields: Credential Options drop-down list Choose to allow or disallow users to retrieve VM access credentials (shared). User ID field The user ID. te This option appears when you choose either of the share options under Credential Options. 141
Editing a Catalog Managing Catalogs Password field The user password. te This option appears when you choose either of the share options under Credential Options. 0 1 Click Next. In the Customization pane, complete the following fields: Post Provisioning Custom Actions check box Check the check box to enable an orchestration workflow that is executed after VM provisioning. Workflow drop-down list VM App Charge Frequency drop-down list Active VM Application Cost field Inactive VM Application Cost field Choose a defined workflow for provisioning. te This option appears when Post Provisioning Custom Actions is checked. Choose Hourly or Monthly. The cost for the application that is included in the template. te t supported in the RHEV KVM Connector. The cost to this catalog of a VM in inactive state per hour or month. te t supported in the RHEV KVM Connector. 2 3 Click Next. In the VM Access pane, complete the following fields: Web Access Configuration check box Check the check box to enable web access to the VM. Uncheck the check box to disable web access to the VM. URL field Label field The URL of the VM. te This option appears when Web Access Configuration is checked. The label that is defined for this URL te This option appears when Web Access Configuration is checked. 142
Managing Catalogs Reordering Catalogs Within a Folder Remote Desktop Access Configuration check box Server field Port field Label field Check the check box to enable remote desktop access to the VM. Uncheck the check box to disable remote desktop access to the VM. The IP address of the server for remote access. te This option appears when Remote Desktop Access Configuration is checked. The port number on the server for remote access. te This option appears when Remote Desktop Access Configuration is checked. The label that is defined for this remote access. te This option appears when Remote Desktop Access Configuration is checked. 4 5 6 Click Next. Review the catalog information in the Summary page. Click Submit. Reordering Catalogs Within a Folder By default, the catalogs within a folder are listed alphabetically. But you can change the order in which these catalogs are listed. On the menu bar, choose Policies > Catalogs. Choose the Catalog tab. Expand a folder to view the catalogs within it. Select a catalog from the list. Click the Move Up or Move Down options to re-order the catalogs. Cloning a Catalog You can clone a catalog item using the clone feature. When you choose a catalog item to clone, all existing properties are copied into the new catalog, except for the catalog and. After defining the and, you can modify other properties. 143
Deleting a Catalog Managing Catalogs Step 6 Step 7 On the menu bar, choose Policies > Catalogs. Choose the Catalog tab. Choose the name of the catalog you want to clone. Click Clone. In the Clone Catalog dialog box, enter a name and description for the catalog. Edit the catalog details if necessary. Click Submit. Deleting a Catalog Deleting all catalogs in a folder deletes the folder in which these catalogs are stored in. But folders that are available by default cannot be deleted. On the menu bar, choose Policies > Catalogs. Choose the Catalog tab. Choose the name of the catalog you want to delete. Click Delete. Accessing Hosts for Deployment You can choose a catalog item to assess deployable hosts and provide a reason for excluded hosts. On the menu bar, choose Policies > Catalogs. Choose the Catalog tab. Choose the Catalog Entry to assess. Click Deployability Assessment. 144
Managing Catalogs Re-ordering Catalog Folders Re-ordering Catalog Folders By default, the catalog folders are listed alphabetically. But you can change the order in which these folders are listed. On the menu bar, choose Policies > Catalogs. Click Manage Folder. In the Manager Folder dialog box, use the arrows to re-order the folders. Click Submit. 145
Re-ordering Catalog Folders Managing Catalogs 146
CHAPTER 11 Using Self-Service Provisioning This chapter contains the following sections: About Self Service Provisioning, page 147 About Service Requests, page 147 Service Request Workflow and Details, page 151 About Scheduling a Service Request, page 154 About Resubmitting a Service Request, page 155 Other Service Request Functions, page 156 Service Request Approval Process, page 158 Service Request Budgeting, page 160 About Self Service Provisioning You can provision virtual machines (VMs) by using self-service provisioning. However, before a VM is provisioned, you must create a service request. This action initiates a VM creation workflow that includes budget validation, dynamic resource allocation, approval, provisioning, life cycle set up, and notification about the status of service requests. About Service Requests You can use the self-service provisioning feature to create a service request to provision virtual machines (VMs), services, or applications. The service request process produces a provisioning workflow for VM creation that includes the following actions: Budget validation Dynamic resource allocation Approvals Provisioning 147
Creating a Service Request with Catalog Type Standard Using Self-Service Provisioning Life cycles setup and notification te If you change the number of CPU Cores or memory allocation while in the Deployment Configuration pane, the total cost is automatically updated and displayed. To provision a VM or execute an orchestration workflow, you must first create a service request. Once an administrator or a relevant user approves the service request, the VM is provisioned. VMs can be immediately approved or scheduled to be approved within a maximum of 90 days from the original request. te The service request approval process is optional. An administrator can provide an orchestration workflow as a catalog to a service portal. The approval process for a service request requires approval by one or two users. In such a scenario, an administrator and IT manager would have to approve the request before the VM can be provisioned. Creating a Service Request with Catalog Type Standard On the menu bar, choose Organizations > Service Requests. Choose the Service Request tab. Click Create Request. In the Create Service dialog box, complete the following fields: Catalog Selection Request Pane Select Group drop-down list Assign to User check box User drop-down list Choose the group(s) for which a new VM is provisioned. Select this check box to assign the VM to a specific user. This option is visible only if resource assignment to end users is enabled for the group share policy that is applied to the selected user group. For more information on creating a group share policy, see Creating a Group Share Policy, on page 104. Select the user to whom this VM must be assigned. te Currently, only VMs that are in a VMWare cloud can be assigned to a specific end user. 148
Using Self-Service Provisioning Creating a Service Request with Catalog Type Standard Catalog Type drop-down list Choose the catalog type. It can be one of the following: Standard Advanced Service Container VDI te Advanced is used for Orchestration Workflow. Select Catalog drop-down list Choose the catalog that is used for VM provisioning. Step 6 Click Next. In the Deployment Configuration pane, complete the following fields: Select VDC drop-down list VM or VM Prefix field Comment field Provision drop-down list Days calendar Hours drop-down list Minutes drop-down list The VDC on which the VM is provisioned. VDCs are defined by the administrator. The VM name or prefix. Any comments relating to the deployment configuration. Choose either w or Later. When you choose w, the VM is provisioned immediately or up to 90 days in the future. When you choose Later, a calendar for the Day, drop-down lists for the Hour and Minute, and radio buttons for AM or PM appear. The number of days after which the VM is terminated. te This option appears when thepower OFF the VM After check box is checked. Choose the number of hours after which the VM is terminated. te This option appears when thepower OFF the VM After check box is checked. Choose the number of minutes after which the VM is terminated. te This option appears when the Power OFF the VM After check box is checked. 149
Creating a Service Request with Catalog Type Standard Using Self-Service Provisioning Step 7 Step 8 Click Next. In the Custom Specification pane, complete the following fields: CPU Cores drop-down list Choose the CPU cores for the VM being provisioned. te This list opens if the resizing option is chosen in the Computing Policy dialog box. Memory drop-down list Storage Tier drop-down list Disks drop-down list Choose the amount of memory for the VM being provisioned. te This list opens if the resizing option is chosen in the Computing Policy dialog box. Choose an option to customize storage entries for the VM being provisioned. te This custom list opens, if the Virtual Storage Catalog was enabled when the chosen catalog was created. See more information about the creation of a virtual storage catalog in Managing Policies section on page 8-1. See more information about enabling this option during catalog creation in Managing Catalogs section on page 10-1. Choose the preferred hard disk size for VM provisioning. The list of available datastores depends upon the scope conditions specified in the storage policy. You can enable or disable this option in the storage policy. Step 9 0 1 2 3 4 5 6 7 To choose a datastore for a disk, choose a disk from the list and click the Pencil icon. Click Select to view available datastores. Choose a datastore from the list and click Select. Click Submit. (Optional) For templates with multiple disks, you must choose a datastore for each disk. In the Custom Specification pane, click Select to view available VM Networks. te This option is available only if the Allow end user to select optional NICs check box or Allow end user to choose portgroups check box is checked in the network policy associated to the VDC selected for this VM provisioning service request. For more information, see Adding a Network Policy section on page 8-8. Choose a VM Network from the list and click Select. Click Next. Complete the details in the Custom Workflow pane. 150
Using Self-Service Provisioning Creating a Service Request with Catalog Type Advanced 8 9 0 te Custom workflow inputs apply if the catalog chosen for VM provisioning has Post Provisioning Custom Actions enabled. In the above scenario, the post-provisioning workflow allows users to specify custom inputs. Click Next. te The list of available datastores depends upon the scope conditions specified in the storage policy. You can choose only one datastore for each disk category (System, Data, Database, Swap, and Log). Review the summary for the service request. Click Submit. Creating a Service Request with Catalog Type Advanced By choosing the advanced catalog type during the creation of a service request, you can execute orchestration workflows. The details involved for creating an advanced catalog are much the same as creating a standard catalog. Step 6 Step 7 Step 8 Step 9 On the menu bar, choose Organizations > Service Requests. Choose the Service Requests tab. Click Create Request. In the Catalog Selection section of the Create Service Request dialog box, choose the Group, Catalog Type (Advanced), and the Catalog (workflow). Click Next. In the Custom Workflow section of the Create Service Request dialog box, provide the custom workflow input values. Click Next. Review the summary for the service request. Click Submit. Depending upon the user inputs entered in the workflow creation, these inputs are reflected during the service request. Service Request Workflow and Details After you create a service request, you can check the status and workflow, cancel the request, resubmit the request, and so on. These actions are controlled by the toolbar buttons at the top of the service requests lists. 151
Service Request Workflow Using Self-Service Provisioning Service Request Workflow The Workflow Status box displays details about the service request and the workflow steps. A typical workflow for a service request includes the following steps: 1 Initiation Service request initiation by the user. 2 Resource Allocation Allocation of resources that are required for the VM. 3 Approval Process of user approval before the VM is provisioned. An email is sent to the approver who was defined during the catalog creation. This catalog is the catalog that is used during VM provisioning. 4 Provision Provisioning process of the VM. 5 Set Up Life cycle Schedule Life cycle scheduling where the set up, scheduled, and termination times are set. 6 tify Process of notifying the user through email about VM provisioning. Optional service request workflow steps include Budget Watch and Check Resource Limits: 1 Budget Watch An administrator has to enable budgeting for a group. This step determines if a sufficient budget is available for provisioning a new VM in that group. 2 Check Resource Limits Resource limits for a group must be enabled by an administrator. It determines if sufficient resources are available for provisioning a new VM in that group. Service Request Details Service Request details include items under Overview, Ownership, Catalog Information, and the Current Status of the service request, as follows: Overview Request ID Request Type VDC Image Request Time Request Status Comments The service request ID number. The type of request (in this case, creating a VM). The VDC where the VM is provisioned. The image from which the VM is provisioned. The time of the service request creation. The status of the service request as Complete, Cancelled, Failed, and so on. Any comments. Ownership 152
Using Self-Service Provisioning Service Request Details Group Initiating User Duration Hours Scheduled Time The group to which the service request initiating user belongs. The user who has initiated the service request. The amount of time that the VM is active. If defined, the VM gets deleted after the specified time. The time after which the VM is provisioned. If defined, the VM is provisioned at 6 a.m. on the scheduled date. If not defined, the VM is provisioned as soon as the workflow steps for the service request are complete. Catalog Information VDC Owner Email Approving Users Catalog Catalog Service Request Cost The email ID provided by the administrator when creating a VDC. The user (if defined) who must approve the service request for VM provisioning. The catalog item name from which the VM is provisioned. The catalog item description. The cost (projected) of provisioning the VM. This cost is determined based on the Cost Model that is defined for the catalog item. You can view the status of each workflow step. Details such as warning or error messages and the time of the request are also displayed. The workflow steps are color-coded to indicate their status: Color Code Grey Green Red Blue The step is incomplete. The step completed successfully. The step failed. The reason for failure is also described. Additional input is required for the step to complete. For example, an approver was defined for a service request, and until the request is approved, this step is incomplete. 153
Viewing the Workflow Status of a Service Request Using Self-Service Provisioning te Approvers can view service requests that are assigned to them under the Approvals tab. Viewing the Workflow Status of a Service Request On the menu bar, choose Organizations > Service Requests. From the left panel, choose a user group. The default is All User Groups, which lists all service requests. Choose the Service Request tab. Choose a service request. Click View Details to see the details and status of the service request. By default, the Workflow Status tab appears in the dialog box. Viewing Log Details for a Service Request On the menu bar, choose Organizations > Service Requests. From the left panel, choose a user group. The default is All User Groups, which lists all service requests. Choose the Service Request tab. Choose a service request. Click View Details, and choose the Log tab. About Scheduling a Service Request You can schedule VM provisioning for a later date using Deferred Provisioning. The default provisioning is at 8.30 a.m. on the date of scheduling. Once the date is set, the VM provisioning status in the workflow displays the provisioning as scheduled for a future date. 154
Using Self-Service Provisioning Scheduling Service Requests Scheduling Service Requests Step 6 Step 7 Step 8 On the menu bar, choose Organizations > Service Requests. Choose the Service Request tab. Click Create Request. Choose the group, catalog type and catalog (see more information in the Creating a Service Request with Catalog Type Standard section on page 11-1. Click Next. Choose the Later option for the Provision field, and the provisioning date in the Service Request dialog box. Click Next until the Summary window appears. Click Submit. About Resubmitting a Service Request You can resubmit a failed service request. A service request could fail for the following reasons: Budget limit (if defined by administrator) is exceeded for the group under which the VM is being provisioned. Resource limits (if defined by administrator) is exceeded for the group under which the VM is being provisioned. Provisioning could fail if relevant information is not provided when creating a service request. When a service request is resubmitted, the process starts again from the workflow step that failed in the earlier submittal. For example, if a service request fails in the Resource Allocation workflow (), when this service request is resubmitted, the process is initiated from that step. Resubmitting a Service Request On the menu bar, choose Organizations > Service Requests. From the left panel, choose a user group. The default is All User Groups, which lists all service requests. 155
Other Service Request Functions Using Self-Service Provisioning Choose the Service Request tab. Choose the service request to resubmit. Click Resubmit Request. Other Service Request Functions Canceling a Service Request Step 6 On the menu bar, choose Organizations > Service Requests. From the left panel, choose a user group. The default is All User Groups, which lists all service requests. Choose the Service Request tab. Choose the service request entry to cancel. Click Cancel Request. Click Submit to cancel the service request. Rolling Back a Service Request You can roll back a service request when a service request is created using orchestration workflow or fenced container deployment. Step 6 On the menu bar, choose Organizations > Service Requests. From the left panel, choose a user group. The default is All User Groups, which lists all service requests. Choose the Service Request tab. Choose the service request to archive. Click Archive. In the Archive Request dialog box, click Archive. Choose the Archived Service Requests tab to view all the archived requests. 156
Using Self-Service Provisioning Viewing Service Requests for a Particular Group Viewing Service Requests for a Particular Group On the menu bar, choose Organizations > Service Requests. From the left panel, choose a user group. The default is All User Groups, which lists all service requests. Choose the Service Request tab. Searching the Service Requests History for a Group On the menu bar, choose Organizations > Service Requests. Choose the Service Request tab. On the toolbar, click Search and Replace. In the Search and Replace dialog box, enter the search terms in the search fields. Click Submit. Exporting the Service Requests History for a Group Step 6 On the menu bar, choose Organizations > Service Requests. From the left panel, choose a group name. Choose the Service Request tab. On the right of the toolbar, click the Export Report icon. In the Export Report dialog box, choose the report format. The report format can be PDF, CSV or XLS. Click Generate Report. 157
Reinstating an Archived Service Request Using Self-Service Provisioning Reinstating an Archived Service Request On the menu bar, choose Organizations > Service Requests. Choose the Archived Service Requests tab. Choose the service request that you want to reinstate. Click Unarchive. Service Request Approval Process Before the VM is provisioned, a service request must be approved by a specified approver or approvers who are defined in the VDC. You have an option to define two approvers for a group. Once created, the service request workflow has a step requiring VM approval that shows the approver s name. A service request notification email is sent to the approver(s). The approver(s) are able to see all requests under the Approvals tab. Once approved, the next step, VM provisioning, is initiated. te For more information about defining approvers, see Managing Virtual Data Centers section on page 9-1. Approving a Service Request Step 6 Step 7 On the menu bar, choose Organizations > Service Requests. Choose the My Approvals tab. Choose the service request entry to approve. To verify the details, click View Details. Click Approve. Add comments in the Service Request dialog box if necessary. Click Approve. 158
Using Self-Service Provisioning Rejecting a Service Request Rejecting a Service Request Step 6 Step 7 On the menu bar, choose Organizations > Service Requests. Choose the My Approvals tab. Choose the service request entry to reject. Verify the details by clicking View Details. Click Reject. Add comments in the Service Request dialog box if necessary. Click Reject. Viewing the Service Requests Approvals History On the menu bar, choose Organizations > My Approvals. Choose the My Approvals tab. All approvals that are either already approved or pending approval are listed. Searching the Service Request Approvals History On the menu bar, choose Organizations > My Approvals. Choose the My Approvals tab. All approvals that are either already approved or pending approval are listed. In the Search field, enter the search term. The service requests that match the search criteria are displayed. 159
Exporting Service Request Approvals History Using Self-Service Provisioning Exporting Service Request Approvals History Step 6 On the menu bar, choose Organizations > My Approvals. Choose the My Approvals tab. From the list, choose a group name. On the right of the toolbar, click the Export Report icon. In the Export Report dialog box, choose the report format. The report format can be PDF, CSV, or XLS. Click Generate Report. Service Request Budgeting Viewing the Current Month Budget Availability On the menu bar, choose Organizations > Service Requests. From the left panel, choose either All User Groups or a specific user group. Choose the Current Month Budget Availability tab. Viewing Budget Entries On the menu bar, choose Organizations > Service Requests. From the left panel, choose a user group. Choose the Budget Entries tab. 160
Using Self-Service Provisioning Adding a Budget Entry Adding a Budget Entry On the menu bar, choose Organizations > Summary. From the left panel, choose a user group. Choose the Budget Entries tab. Click Add (+). In the Add Budget Entry dialog box, complete the following fields: Entry field Budget Amount field Year drop-down list Month drop-down list Repeat Entries drop-down list The name of the budget entry. The amount of the budget per month. Choose the year. Choose the month. Choose the number of months for the same amount of budget to repeat. Step 6 Click Add. Editing a Budget Entry Step 6 On the menu bar, choose Organizations > Summary. From the left panel, choose a user group. Choose the Budget Entries tab. In the main page, choose the budget entry. Click Edit. In the Edit Budget Entry dialog box, complete the following fields: Entry field Budget Amount field The name of the budget entry. The amount of the budget per month. 161
Deleting a Budget Entry Using Self-Service Provisioning Year drop-down list Month drop-down list Repeat Entries drop-down list Choose the year. Choose the month. Choose the number of months for the same amount of budget to repeat. Step 7 Click Save. Deleting a Budget Entry Step 6 On the menu bar, choose Organizations > Summary. From the left panel, choose a user group. Choose the Budget Entries tab. In the main window, choose the budget entry. Click Delete (X). Confirm the deletion in the Delete Entry dialog box. 162
CHAPTER 12 Multiple Disk VM Provisioning This chapter contains the following sections: About Multiple Disk VM Provisioning, page 163 Workflow for Multiple Disk VM Provisioning, page 164 About Templates with Multiple Disks, page 164 Assigning Disk Categories, page 164 Defining Storage Policies, page 165 Creating a Catalog, page 167 Creating a VM Disk, page 172 About Multiple Disk VM Provisioning Cisco UCS Director supports virtual machine (VM) provisioning of multiple disks from a template. You can configure VM disk provisioning on a preferred single datastore or multiple datastores. You can also configure individual disk policies for each additional disk in a template. Cisco UCS Director classifies the disks into the following categories: System Data Database Swap Log te The disk categories that are defined by Cisco UCS Director are for disk labeling only. 163
Workflow for Multiple Disk VM Provisioning Multiple Disk VM Provisioning Workflow for Multiple Disk VM Provisioning Check for the availability of a template with multiple disks. Assign disk categories. Define the storage policy. Create the template catalog. About Templates with Multiple Disks To provision a multiple disk virtual machine (VM), a template (image) with multiple disks, must be available. Before using a template with multiple disks for VM provisioning, you must assign the disk categories for individual disks. Assigning Disk Categories Step 6 Step 7 Step 8 On the menu bar, choose Virtual > Compute. Choose a VMware cloud and choose the Images tab. Choose a template with multiple disks. On the toolbar, click the View Details button. Click the Disks tab. Choose a disk. Click Assign Disk Type. Choose the disk type. It can be one of the following: System Data Database Swap Log Step 9 Click Submit. 164
Multiple Disk VM Provisioning Defining Storage Policies Defining Storage Policies The storage policy defines resources such as datastore scope, type of storage to use, minimum conditions for capacity, latency, and so on. The storage policy also provides an option for you to configure the additional disk policies for multiple disks and an option to provide datastore choices for the end user during a service request creation. Cisco UCS Director supports VM provisioning with multiple disks on multiple datastores. There are five types: System, Data, Database, Swap, and Log. The System disk policy is configured first, and the other disks are configured later depending on the requirements. You can configure the disk policy individually for each disk type or choose the default system disk policy for each disk. When using the additional disks policies, be sure to uncheck the Provision all disks in a single datastore option during catalog creation for the multiple disk template. For more information about catalog creation, see the Adding a Catalog, on page 167. In addition, Cisco UCS Director supports datastore selection during the creation of a service request for VM provisioning by providing you with an option to enable or disable datastore selection for the end user. The datastores that are listed for selection depend upon the scope conditions specified in the storage policy associated with the VDC that was chosen during the creation of the service request. Creating a Storage Policy On the menu bar, choose Policies > Virtual/Hypervisor Policies > Storage. Choose the VMware Storage Policy tab. Click Add (+). In the Add Storage Resource Allocation Policy- System Disk Policy dialog box, complete the following fields Policy field Policy field Cloud drop-down list The name of the policy. This name is used during catalog definition. The description of the policy. Choose the cloud in which resource allocation occurs. System Disk Scope Data Stores Scope drop-down list Use Shared Data Store only check box Choose the scope of deployment. Specify whether to use all, include chosen, or exclude chosen. Check the check box to use shared datastores only. Storage Options 165
Creating a Storage Policy Multiple Disk VM Provisioning Use Local Storage check box Use NFS check box Use SAN check box Minimum Conditions check box list Override Template check box Use Thin Provisioning check box Custom Disk Size Resize Options for the VM Life Cycle Allow Resizing of Disk Permitted Values for Disk in GB field Allow user to select datastore from scope check box Check the check box to use local storage. By default, the field is checked. Check the check box to use NFS storage. By default, the field is checked. Check the check box to use SAN storage. By default, the field is checked. Check the check boxes of one or more conditions that should match. Hosts or datastores that do not meet these criteria are excluded from consideration. If more than one condition is chosen, all chosen conditions must match. Check the check box to override the template properties. You are provided with options to enter custom settings such as using thin provisioning and custom disk size. Check the check box to use thin provisioning during VM storage provisioning. Thin provisioning enables dynamic allocation of physical storage capacity to increase VM storage utilization. te This option appears when Override Template is checked. A custom disk size that will override the disk size of the template used for VM provisioning. te This option appears when Override Template is checked. Check the check box to provide an option to choose the VM disk size before provisioning. The disk size values for provisioning a VM. te This option appears when Allow resize of disk is checked. Check the check box to provide the user with an option to choose the datastore during the service request creation. 166
Multiple Disk VM Provisioning Creating a Catalog Step 6 Step 7 Step 8 Step 9 0 1 2 Click Next. In the Additional Disk Policies pane, choose a disk type to configure. By default, the disk policy for the disk is System Disk Policy. Click the Pencil icon and the Edit Disk Policies Entry dialog box appears. To configure the disk policy, uncheck the Same as System Disk Policy check box. In the Edit Entry dialog box, choose the Disk Scope and Storage Options for the disk type. Click Submit. Continue to configure the other disk types as needed. Click Submit. te To use the storage policy created with additional disk policies, you must associate the policy with the VDC that is used for the VM provisioning Creating a Catalog Adding a Catalog On the menu bar, choose Policies > Catalogs. Choose the Catalog tab. Click Add (+). In the Catalog Add dialog box, select the type of catalog that you want to add. Click Submit. Step 6 In the Create Catalog dialog box, complete the following fields: Basic Information pane Catalog field Catalog field The name of the catalog. te After you create a catalog, you cannot modify the name. The description of the catalog. 167
Adding a Catalog Multiple Disk VM Provisioning Catalog Type drop-down list The type of catalog. It can be one of the following: Standard Used to create catalogs for VM provisioning using images from a list of clouds. Advanced Used for publishing orchestration workflows such as catalog items. Service Container Used for publishing application containers as catalog items. VDI Used for publishing Xen Desktop as catalog items. Catalog Icon drop-down list Applied to all groups check box Selected Groups check box list Cloud drop-down list Image drop-down list Windows License Pool field Provision all disks in single datastore check box Choose from a list of icons to associate this catalog with an image. This icon is seen when you are creating a service request using this catalog. Check the check box to enable all groups to use this catalog. Uncheck the check box to deny its use to other groups. Check the check boxes for the included groups that are from the Select Items dialog box. The checked group(s) use this catalog to provision new VMs. Choose the cloud with the image for VM provisioning. Choose the type of image (any existing templates such as Windows, Linux and other files that make up the image) that you use when VMs are provisioned using this catalog. Choose the Windows License. te te This option appears only when a Windows image is chosen. t supported in the RHEV KVM Connector. Check the check box to provision all disks in a single datastore. You can also choose to use the datastores configured for each disk in the storage policy. For more information on multiple disk storage policy creation, see Managing Policies, page 8-1. te te This option appears if the chosen template has multiple disks. t supported in the RHEV KVM Connector. 168
Multiple Disk VM Provisioning Adding a Catalog Service Container Template drop-down list XenDesktop Catalog drop-down list Select Folder drop-down list Choose the template from the list. te This option appears when the chosen Catalog Type is Service Container. Choose the template from the list of XenDesktop dedicated catalogs configured in Desktop Studio. te This option appears when the chosen Catalog Type is VDI. Choose the folder within which this catalog must be created in. te The drop-down list includes names of folders that are available by default. You can either select a folder that is available, or click the + icon to create a new folder. Step 7 Step 8 Click Next. In the Applications Details pane, complete the following fields: Category drop-down list Choose a VDC category. Support Contact Email Address field Specify OS drop-down list Specify Other OS field Specify Applications check box list Specify Other Applications field The email address of the contact that is notified when a service request is created using this catalog item. Choose the type of OS installed on the VM when it is provisioned. te t supported in the RHEV KVM Connector. Any OS that is not available in the Specify OS list. te t supported in the RHEV KVM Connector. Check the check boxes for applications from the Select Items dialog box. These applications are installed on the VM during provisioning. te t supported in the RHEV KVM Connector. The applications that are not available in the Select Items dialog box. te t supported in the RHEV KVM Connector. 169
Adding a Catalog Multiple Disk VM Provisioning Application Code field An application code that is used in the VM name. The application code can be between 1 to 4 characters (for example: W2K3, DB, WS). The application code can used in a system policy for the VM name by using the variable ${APPCODE}. For example, if the VM Template is vm-${group_name}-${appcode}, the VM provisioned with the system policy has the name vm-groupname-w2k3. te t supported in the RHEV KVM Connector. Step 9 0 Click Next. In the User Credentials pane, complete the following fields: te t supported in the RHEV KVM Connector. Credential Options drop-down list Choose to allow or disallow users to retrieve VM access credentials (shared). User ID field Password field The user ID. te This option appears when you choose either of the share options under Credential Options. The user password. te This option appears when you choose either of the share options under Credential Options. 1 2 Click Next. In the Customization pane, complete the following fields: Post Provisioning Custom Actions check box Check the check box to enable an orchestration workflow that is executed after VM provisioning. Workflow drop-down list VM App Charge Frequency drop-down list Choose a defined workflow for provisioning. te This option appears when Post Provisioning Custom Actions is checked. Choose Hourly or Monthly. 170
Multiple Disk VM Provisioning Adding a Catalog Active VM Application Cost field Inactive VM Application Cost field The cost for the application that is included in the template. te t supported in the RHEV KVM Connector. The cost to this catalog of a VM in inactive state per hour or month. te t supported in the RHEV KVM Connector. 3 4 Click Next. In the VM Access pane, complete the following fields: Web Access Configuration check box Check the check box to enable web access to the VM. Uncheck the check box to disable web access to the VM. URL field Label field Remote Desktop Access Configuration check box Server field Port field Label field The URL of the VM. te This option appears when Web Access Configuration is checked. The label that is defined for this URL te This option appears when Web Access Configuration is checked. Check the check box to enable remote desktop access to the VM. Uncheck the check box to disable remote desktop access to the VM. The IP address of the server for remote access. te This option appears when Remote Desktop Access Configuration is checked. The port number on the server for remote access. te This option appears when Remote Desktop Access Configuration is checked. The label that is defined for this remote access. te This option appears when Remote Desktop Access Configuration is checked. 171
Creating a VM Disk Multiple Disk VM Provisioning 5 6 7 Click Next. Review the catalog information in the Summary page. Click Submit. Creating a VM Disk You can add an additional disk with a custom size to provisioned or discovered VMs by using the Create VM disk option that is available through the VM action button. Step 6 Step 7 On the menu bar, choose Virtual > Compute. From the left side pane, choose a cloud name. Choose the VMs tab. From the list, choose a VM. At the right side of the toolbar, click the down arrow and a drop-down list of VM options open. Choose Create VM Disk. In the Create VM Disk dialog box, complete the following fields: VM field New Disk Size (GB) field Select a disk type drop-down list The VM name. You cannot edit the name of the VM. The disk size for the VM in GB. Choose the disk label. It can be one of the following: System Data Database Swap Log Select Datastore drop-down list Choose the datastore. The datastores choice depends on the storage policy that is associated with the VM s VDC. 172
Multiple Disk VM Provisioning Creating a VM Disk Thin Provision check box Check the check box to add a thin provisioned disk to the VM. te Thin provisioning enables dynamic allocation of physical storage capacity to increase VM storage utilization. Step 8 Click Create. 173
Creating a VM Disk Multiple Disk VM Provisioning 174
CHAPTER 13 Using the Chargeback Module This chapter contains the following sections: About Chargeback Features, page 175 Budget Policies, page 176 Cost Models, page 176 Modifying a VDC to Include a Cost Model, page 179 Package-Based Cost Models, page 181 Storage Tier Cost Models, page 183 About Assigning a Datastore to Tiers, page 184 Chargeback Reports, page 185 About Change Records, page 188 Chargeback Calculations, page 189 About Chargeback Features The chargeback module in Cisco UCS Directoroffers in-depth visibility into the costs of the virtual infrastructure. It allows the definition and assignment of cost models to policies within departments and organizations. Virtual machine (VM) metering data is collected at frequent intervals to ensure accurate calculation of resource costs. Following are the features of the chargeback module: Flexibility Provides fixed costs, one-time costs, allocation costs, usage costs, and a combination of all, based on the organizational requirements. Reusable Cost Models Assigns cost models to VMs using standardized cost models or templates. These templates are used to apply cost models to new environments quickly. Reporting Generates various summary and comparison reports of costs and resource usage for the virtual infrastructure. These reports are exported to PDF, CSV, and XLS formats and allows you to view them within a web browser. 175
Budget Policies Using the Chargeback Module Top 5 Reports Monitors the top five reports for organizations or groups with the highest VM cost, CPU, memory, storage and network costs. Dashboard Monitors and analyzes VM metering information and chargeback in real time with the built-in dashboard and extensive set of graphical widgets. Budget Policies Overall resources are accounted for by the chargeback module. In addition to chargeback, individual groups or organizations must be associated with a budget policy where you can enable or disable the budget watch and over budget. Configuring a Budget Policy Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Administration > Users and Groups. Choose the User Groups tab. Choose a group and click Budget Policy. In the Budget Policy dialog box, complete the following fields: Enable Budget Watch check box Allow Over Budget check box If checked, the group s budget usage is monitored. If unchecked, all budget entries for this group are ignored. If checked, the group members are allowed to go over the provisioned budget. If unchecked, once the budget is exhausted, all requests are rejected until a new budget is added. Click Save. Cost Models A cost model is used to define the unit level costs of virtual resources such as CPU, RAM, and storage. These costs are used for chargeback calculations of VMs within the virtual infrastructure. Cost models offer a definition of costs in a linear model, Costs can be defined at the unit level. 176
Using the Chargeback Module Creating a Cost Model The cost of a particular resource for a VM is calculated based on how many units are assigned to that VM. For example, the cost of 1 GB of RAM is defined within the cost model and this unit cost is used to determine the cost of RAM for a particular VM. You can define one-time provisioning costs, active or inactive VM costs, and provisioned, reserved, or used costs for resources such as CPU, memory and so on. These costs are used to calculate the VM costs based on usage. Creating a Cost Model Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Policies > Virtual/Hypervisor Policies > Service Delivery. Choose the Cost Model tab. Click Add (+). In the Add Cost Model dialog box, complete the following fields. Cost Model field Cost Model field Cost Model Type drop-down list Charge Frequency drop-down list The name of the cost model. The description of the cost model. Choose the type of cost model. Standard indicates a linear cost model. Advanced indicates a package or script-based cost model. See the Package-Based Cost Models section on page 13-6 section for the Advanced cost model description and usage. You can also choose HyperV, if appropriate. Choose the frequency at which the VM s resources costs are defined. If you want to specify the costs of resources on an hourly basis, choose Hourly. If you want to specify the costs of resources on a monthly basis, choose Monthly. Fixed Costs One Time Cost field The fixed one-time cost for provisioning the VM. VM Costs Active VM Cost field The per hour cost of a VM in the active state. 177
Creating a Cost Model Using the Chargeback Module Inactive VM Cost field The per hour cost of a VM in the inactive state. CPU Costs CPU Charge Unit drop-down list Provisioned CPU Cost field Reserved CPU Cost field Used CPU Cost field Memory Costs Provisioned Memory Cost field Reserved Memory Cost field Used Memory Cost field Choose the charge unit for CPU: GHz or cores. The provisioned CPU cost per CPU charge unit per hour. The amount of CPU that was provisioned to the VM is taken into consideration. te The cost if the CPU charge unit is GHz. If you enter a value for the Used CPU Cost field, you must leave this field blank. The reserved CPU cost per GHz per hour. The amount of CPU that has been actually reserved to the VM is taken into consideration, including the provisioned CPU cost calculation. Any extra cost for the reserved CPU (apart from the provisioning cost) is entered here. For example, if the provisioning cost is $1 and the reserved cost is $1.4, the extra amount to reserve must be mentioned. In this example, it is $1.4 $1 = $0.4. te The cost if the CPU charge unit is GHz. If you enter a value for the Used CPU Cost field, you must leave this field blank. The used CPU cost per GHz per hour. The cost is based on the actual CPU usage. This cost does not take into consideration the provisioned and reserved costs. If you enter a value for the Used CPU Cost field, the provisioned cost and reserved cost fields must be left blank. te The cost if the CPU charge unit is GHz. The provisioned memory cost per GB per hour.2 The reserved memory cost per GB per hour.2 The used memory cost per GB per hour.2 Network Costs Received Network Data Cost field The received data cost per GB per hour. 178
Using the Chargeback Module Modifying a VDC to Include a Cost Model Transmitted Network Data Cost field The transmitted data cost per GB per hour. Storage Costs Committed Storage Cost field Uncommitted Storage Cost field The committed storage cost per GB per hour. The uncommitted storage cost per GB per hour. The unused but provisioned storage is defined as uncommitted storage. Click Add. Modifying a VDC to Include a Cost Model You can add or edit an existing VDC to assign it the newly created cost model. You can edit an existing VDC or a new VDC can be created and have a cost model assigned to it. After the cost model is assigned to a VDC, all VMs within the VDC are charged based on the advanced cost model. Any VMs within VDCs that have the standard type of cost model are still charged according to the standard cost model. Adding a Cost Model to a VDC Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Policies > Virtual/Hypervisor Policies > Virtual Data Centers. Choose the VDC tab. Choose the VDC to add to the cost model. Click Add (+). In the Add VDC dialog box, complete the following fields: VDC field The name of the VDC. 179
Adding a Cost Model to a VDC Using the Chargeback Module VDC Locked check box VDC field Group drop-down list Cloud drop-down list Check the check box to deny the use of the VDC for any further deployments. Actions on existing VMs, within this VDC, are disabled. Uncheck the check box to allow the use of the VDC for further deployments. The VDC specific description. Choose the group for which the VDC is being set up. Choose the cloud on which the VDC is being set up. Approvers and Contacts First Approver User field Second Approver User field Provider Support Email Address field Copy tifications to Email Address field The user who must approve the service request. The second user who must approve the service request. The contact or user s email address. The person who is notified about VM provisioning using this VDC. The second contact s email for copying notifications about this VDC. Policies System Policy drop-down list Computing Policy drop-down list Network Policy drop-down list Storage Policy drop-down list Cost Model drop-down list Disable displaying cost in the SR summary and email page check box User Action Policy drop-down list Choose the system policy applicable to the VDC. Choose the computing policy applicable to the VDC. Choose the network policy applicable to the VDC. Choose the storage policy applicable to the VDC. Choose the cost model applicable to the VDC. Check the check box to disable displaying cost in the SR summary and email page for this VDC. Choose the policy that is used for execution of orchestration workflows after provisioning of the VMs. The chosen workflow appears as an action button for VMs within the VDC. End User Self-Service Policies 180
Using the Chargeback Module Editing a VDC to Include a Cost Model VM Power Management check box Check the check box to enable all VM power management actions for VMs that belong to this VDC. Step 6 te Click Add. End user self-service policies also include VM Resizing, VM Snapshot Mangement, VM deletion, VM Disk Management, and VM Network Management. For more information, see Adding a Virtual Data Center, on page 120. Editing a VDC to Include a Cost Model Before You Begin You must be logged in to the appliance to complete this task. Step 6 Step 7 Step 8 On the menu bar, choose Policies > Virtual/Hypervisor Policies > Virtual Data Centers. Choose the VDC tab. Choose the VDC to add to the cost model. Click Manage Categories. Choose the category to edit. Click Edit. In the Edit App Category dialog box, in the drop-down list, choose a Cost Model and a Deploy Policy. Click Save. Package-Based Cost Models A package-based cost model enables you to define the costs for the system resources as packages instead of as individual definitions. There are different packages to choose from based on your requirements. This type of cost model is suitable for nonlinear models. te Cisco UCS Director supports definitions of CPU memory (server) packages. In this type of cost model, the definition is based on the available resource packages. The model is in the following format: C M:X. 181
Creating a Package-Based Cost Model Using the Chargeback Module C is the number of CPU cores. M is the memory in GB. X is the combined monthly cost of C and M. For example, a package with an entry of 2-4:200 implies CPU cores = 2, memory = 4 GB, and the cost of this package is $200 per month. You can define multiple packages using the following format: C1-M1:X1,C2-M2:X2,...,CN-MN:XN. For example, 1-1:50,1-2:70,1-4:90,2-4:150,2-6:170,2-8:190,4-8:350,4-12:380,4-16:400. The first entry 1-1:50 is a package of 1 core CPU and 1 GB memory that costs $50 per month. te These entries can be edited at any time to suit the cost package requirements. Creating a Package-Based Cost Model Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Policies > Virtual/Hypervisor Policies > Service Delivery. Choose the Cost Model tab. Click Add (+) to create a new cost model. Under the Cost Model Type field, choose the Advanced option. Paste the script provided in the Advanced Cost Model field. /********************************/ var CPU_MEMORY_COST = 1-2:81,1-4:95,1-8:109,2-4:162,2-6:176,2-8:189,2-16:378,4-12:352,4-16:378; /********************************/ /* define cost packages as shown above. The cost packages can be defined in the following format: C-M:X. C is the number of CPU cores. M is the memory in GB. X is the combined monthly cost of C and M. For example, 2-4:162 means CPU cores = 2, memory = 4 GB and the cost of this package is $162 per month. */ /* When defining multiple packages, define it in the following format: C1-M1:X1,C2-M2:X2,...,CN-MN:XN The standard packages are defined at the top of the script using the variable CPU_MEMORY_COST. 182
Using the Chargeback Module Storage Tier Cost Models This variable can be edited to suit the cost package requirement. */ /* For reference, the storage cost to use is based on the storage tier cost model definition. */ /* do not edit any script below */ computechargeback(data); function computechargeback(data) { var map = chargebackapi.getcpumemcostmodelmap(cpu_memory_cost); var cpucores = data.getvmmeter().getcpucores(); var memory = data.getvmmeter().getallocmemgb(); var servercost = chargebackapi.getcostforitem(map,cpucores, memory); servercost = servercost / (24 * 30); var storagetiercost = chargebackapi.getstoragecostforitem(data.getvmmeter().getvmid()); var storagegb = (data.getvmmeter().getcommitteddiskgb()) + (data.getvmmeter().getuncommitteddiskgb()); var committeddiskgbcost = (data.getvmmeter().getcommitteddiskgb()) * storagetiercost; var uncommitteddiskgbcost = (data.getvmmeter().getuncommitteddiskgb()) * storagetiercost; var storagecost = (storagegb * storagetiercost) / (24 * 30); var totalvmcost = servercost + storagecost; var cb = data.getcbsummary(); cb.setcpucores(cpucores); cb.setmemory(memory); cb.setservercost(servercost); cb.setcommitteddiskgb(data.getvmmeter().getcommitteddiskgb()); cb.setcommitteddiskgbcost(committeddiskgbcost); cb.setuncommitteddiskgb(data.getvmmeter().getuncommitteddiskgb()); cb.setuncommitteddiskgbcost(uncommitteddiskgbcost); cb.settotalcost(totalvmcost); } /********************************/ Step 6 Click Add. te Once the cost model has been defined, assign it to a VDC in order to start the chargeback of VMs based on this cost model. Storage Tier Cost Models You can use a storage tier cost model to define multiple costs for storage using the tier format. Current storage types include local, NFS, SAN, and NAS, and others. Each storage type cost could vary and you can incorporate this variation while calculating costs for storage usage. You can use this model to define different costs for different tiers and then assign existing datastores to these tiers. You can group similar datastore types by cost wise using the tier cost model. Each tier must be assigned a cost. This cost is per GB per month. For example, when assigning $0.5 to a tier, all datastores within this tier are charged at $0.5 per GB per month. By default, four tiers are already created, so you must assign the costs to them. 183
Assigning a Cost to a Tier Using the Chargeback Module Assigning a Cost to a Tier Before You Begin You must be logged in to the appliance to complete this task. Step 6 On the menu bar, choose Policies > Virtual/Hypervisor Policies > Service Delivery. Choose the Storage Tier Cost Model tab. Choose the tier to edit. Click Edit. Edit the Disk Cost (GB)/Month field. Click Submit. About Assigning a Datastore to Tiers You can assign a datastore to a tier so that the cost defined in the tier is used to calculate the cost of storage within that particular datastore. When calculating the chargeback for VMs within a datastore, the cost is determined by which tier the datastore was assigned to. If no tier is assigned to a datastore, the storage cost for that datastore is not considered when using the advanced (script) based cost model. When using a regular cost model, where you define the resource costs in a form, storage tier costs are taken into consideration if tier costs are assigned and datastores are assigned to those tiers. However, if no tier is assigned to a datastore, the storage cost for VMs under that datastore is taken from the storage cost entry of the cost model form. te Assigning a datastore to a tier applies only to the regular cost model. Assigning a Datastore to a Tier Before You Begin You must be logged in to the appliance to complete this task. 184
Using the Chargeback Module Chargeback Reports Step 6 Step 7 On the menu bar, choose Virtual > Storage. From the left panel, choose the cloud account. Choose the Datastore Capacity Report tab. Currently, the tier based cost is supported only on VMware cloud accounts. Choose the datastore to assign a tier. Click Assign Tier and the Storage Tier dialog box appears. From the drop-down list, choose a tier. Click Submit. Chargeback Reports Chargeback provides information about how much organizations are paying for resources, both used and unused. This feature allows you to optimize resource consumption and costs. The system resources accounting can be based on monthly usage. Resources, such as CPU and memory usage, are monitored and measured. Chargeback reports are based on the type of the cost model. Chargeback is calculated and shown in the form of tabular reports, summaries, graphical reports, and widgets. Following are the report types that are available: Viewing Export Current month summary The current month summary cost report (VM, CPU, storage costs, and so on) by groups. Previous month summary The previous month summary cost report (VM, CPU, storage costs, and so on) by groups. Monthly resource accounting details The resource accounting details (CPU and memory usage statistics) for each group on a monthly basis. VM level resource accounting details The resource accounting details at the VM level. VM level chargeback details The charges that are applicable for VM usage using the chargeback feature. Export monthly resource accounting details Reports of resource accounting details can be exported as tables. Export VM level resource Accounting details Reports of VM level resource accounting details can be exported as tables. Export VM level chargeback details Chargeback reports can be exported as tables. 185
Viewing the Current Month Summary Using the Chargeback Module Viewing the Current Month Summary Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Organizations > Chargeback. From the left panel, choose the group to view. Choose the Current Month Summary tab to view the month s chargeback details for all VMs that belong to the group. Viewing the Previous Month s Summary Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Organizations > Chargeback. From the left panel, choose the group to view. Choose the Previous Month Summary tab to view the previous month s chargeback details for all VMs that belong to the group. Viewing Monthly Resource Accounting Information Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Organizations > Chargeback. From the left panel, choose the group to view. Choose the Resource Accounting tab. 186
Using the Chargeback Module Viewing the VM Level Resource Accounting Details Viewing the VM Level Resource Accounting Details Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Organizations > Chargeback. From the left panel, choose the group to view. Choose the Resource Accounting Details tab to view the individual VMs resource usage details. Viewing the VM Level Chargeback Details Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Organizations > Chargeback. From the left panel, choose the group to view. Choose the Chargeback tab. Exporting the Monthly Resource Accounting Details Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Organizations > Chargeback. Choose the Resource Accounting tab. Click the Export Report icon on the right side of the toolbar and the Export Report dialog box appears. From the drop-down list, choose a format: PDF, CSV, or XLS. Click Generate Report. 187
Exporting VM Level Resource Accounting Details Using the Chargeback Module Exporting VM Level Resource Accounting Details Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Organizations > Chargeback. Choose the Resource Accounting Details tab. On the right side of the toolbar, click the Export Report icon. The Export Report dialog box appears. From the drop-down list, choose a format: PDF, CSV, or XLS. Click Generate Report. Exporting VM Level Chargeback Details Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Organizations > Chargeback. Choose the Chargeback tab. On the right side of the toolbar, click the Export Report icon. The Export Report dialog box appears. From the drop-down list, choose a format: PDF, CSV, or XLS. Click Generate Report. About Change Records You can use change records within the Change Management Database (CMDB) to track and manage changes in the system. These records typically display ADD, DELETE, and MODIFY type of events on any resource, such as a VM, service request, groups, and so on. Change records display information about the resource type (VM) including the resource name, change type, change time, and description. In the case of VM resizes, information is provided about resources of the VMs that were resized and also about previous and resized resource values. When a VM has been resized, such changes are recorded and displayed under the Change Records tab. 188
Using the Chargeback Module Accessing Change Records Accessing Change Records Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Administration > Integration. Choose the Change Records tab. Chargeback Calculations The total cost calculated for a VM includes the following: Total cost = active VM cost or inactive VM cost + one-time cost + CPU cost + memory cost + disk cost + CPU reserved cost + memory reserved cost + CPU used cost + CPU core cost + memory used cost + network received used cost + network transmitted used cost + application cost. The VM cost calculation is done only on an hourly basis. The cost for each resource is calculated based on the values that are defined in the cost model. The cost calculations are based as follows: Cost Active VM Cost Inactive VM Cost One Time Cost CPU Cost Memory Cost Disk Cost Cost The value defined in the cost model for the active VM cost. The value defined in the cost model for the inactive VM cost. The value defined in the cost model for the one-time cost. CPU usage (provisioned) cost that is defined in the cost model for the provisioned CPU cost. The CPU charge unit is GHz. Memory usage (provisioned) cost that is defined in the cost model for the provisioned memory cost. The memory charge unit is GB. The committed storage committed storage cost that is defined in the cost model + uncommitted storage uncommitted storage cost that is defined in the cost model. The storage charge unit is GB. 189
Chargeback Calculations Using the Chargeback Module Cost CPU Reserved Cost Memory Reserved Cost CPU Used Cost CPU Core Cost Memory Used Cost Network Received Used Cost Network Transferred Used Cost Application Cost Cost The reserved CPU cost that is defined in the cost model for the reserved CPU cost.1. The reserved memory cost that is defined in the cost model for the reserved memory cost.2. The used CPU cost that is defined in the cost model for the used CPU cost.1. The used CPU core cost that is defined in the cost model for the CPU core cost. The CPU charge unit is per core. The used memory cost that is defined in the cost model for the used memory cost.2. The network received usage in KB / (1024.0 1024.0) cost that is defined in the cost model for the received network data cost. The network charge unit is GB. The network transmitted usage in KB / (1024.0 1024.0) cost that is defined in the cost model for the transmitted network data cost.5. The active VM hours cost that is defined in a catalog for active VM application cost + inactive VM hours cost that is defined in a catalog for the inactive VM application cost. 190
CHAPTER 14 System Monitoring and Reporting This chapter contains the following sections: Dashboard, page 191 Summary, page 192 Inventory Management, page 193 Resource Pools, page 194 Clusters, page 194 Images, page 194 Host des, page 195 Virtual Machines (VMs), page 195 Topology, page 196 Assessment, page 197 Reports, page 197 Dashboard The dashboard is the first window that you see when you log in. Any report widget in the application can be added to the dashboard. You can enable the dashboard (in the top level menu) for adding important and favorite report widgets. Enabling the Dashboard Before You Begin You must be logged in to the appliance to complete this task. 191
Adding Report Widgets System Monitoring and Reporting At the top right of the window, click admin. Choose the Dashboard tab. Check the Enable Dashboard check box. Click Apply. Adding Report Widgets Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Virtual > Compute. From the left panel, choose the cloud name. Choose the tab with the type of report you want to view. At the top right of a report, click the down arrow. Choose Add to Dashboard. Refreshing Widget Data You can set refresh to automatic or manual for report widget data. For automatic refresh, you have an option to customize the automatic refresh from 5 to a maximum of 60 minutes. The Automatic Refresh button on the dashboard should be set to ON to configure the time. Summary The Summary window allows you to manage system inventory. It gives you access to a wide array of tabular, graphical, and map reports, and also helps in managing inventory life cycle actions. Each report is displayed as a widget and can be hidden through customization. Viewing Virtual Machine, Cloud and System Summary Information Before You Begin You must be logged in to the appliance to complete this task. 192
System Monitoring and Reporting Customizing Summary Report Widgets On the menu bar, choose Virtual > Compute. Choose the Summary tab. Customizing Summary Report Widgets Before You Begin You must be logged in to the appliance to complete this task. Step 6 On the menu bar, choose Virtual > Compute. Choose the Summary tab. Click the Customize icon to bring up the available report widgets. Click and drag a widget onto the dashboard. Double-click the report to expand the view, or click the top right side of a report and choose Expand View. Adjust the size of the reports displayed on the Dashboard by using the slide bar. Inventory Management You can monitor the system inventory using the dashboard. Any changes to the physical infrastructure are updated to the dashboard. The dashboard displays the entire system level infrastructure information for administrative management. Accessing System Inventory Details Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Virtual > Compute. From the left panel, choose the cloud name. Choose any of the tabs for detailed information. 193
Resource Pools System Monitoring and Reporting Resource Pools The Resource Pools tab shows resource details at the host node level. These details include the CPU configured reservation, CPU limit, CPU used, memory used, and so on. Accessing Resource Details Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Virtual > Compute. From the left panel, choose the cloud name or choose All Clouds. Choose the Resource Pools tab. Clusters The Clusters tab displays all the clusters and their details, if available, on the pod. Accessing Clusters Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Virtual > Compute. Choose the Clusters tab. Images The Images tab displays all available image IDs and their details. These images include guest OS, CPU, memory, and storage provisioned. You can use these image IDs to provision new virtual machines (VMs). 194
System Monitoring and Reporting Accessing Images Accessing Images Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Virtual > Compute. Choose the Images tab. Host des The Host des tab displays all physical host nodes that are available in the infrastructure. You can see details such as the ESX/ESXi version installed, active VMs, power status, and so on. Accessing Host des Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Virtual > Compute. Choose the Host des tab. From the drop-down list, choose a Report type on the toolbar. Virtual Machines (VMs) The VMs tab displays all the VMs and VM specific details for the chosen cloud. Accessing VMs Before You Begin You must be logged in to the appliance to complete this task. 195
Accessing Group Level VMs System Monitoring and Reporting On the menu bar, choose Virtual > Compute. Choose the VMs tab. Accessing Group Level VMs Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Organizations > Virtual Resources. From the left panel, choose a group and then choose the VMs tab. Topology The Topology tab displays VMware cloud topology. There are four view mode types: Hierarchical, Concentric, Circular, and Force Directed. Depending on the view mode you choose, you can adjust the item spacing, distance, radius, rigidity, and force distance. Accessing Topology Types Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Virtual > Compute. From the left panel, choose the cloud name. Choose the Topology tab. Choose one of the topology types: Hostnode-Datastore Topology, or Hostnode-VM Topology. On the toolbar, click the View Connectivity button. The topology appears in a new window. te t all of the topology types are displayed. 196
System Monitoring and Reporting Assessment Assessment The Assessment tab displays assessment reports, including cloud readiness, virtualization best practices, performance optimization, capacity, and power optimization. Accessing Assessments Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Virtual > Compute. From the left panel, choose the cloud name. Choose the Assessment tab. From the Report drop-down list, choose a report type. Reports Cisco UCS Director can monitor the virtual infrastructure and system resources by displaying a wide array of reports. These reports help you to understand system details and provide an insight into how the system is performing. Following are the types of reports: Tabular reports for system information, including overview, host nodes, new VMs, and deleted VMs. Bar and pie graph comparisons, including VMs active versus inactive, CPU provisioned versus capacity, and so on. Trend graphs about system resources, including CPU trends, memory trends, VM additions and deletions, and so on. Other reports include Top 5 reports at the group, VDC, host node, and VM level. The Top 5 reports are groups with the highest number of VMs, groups with the greatest CPU usage, VDCs with the highest number of VMs, host nodes with the greatest CPU usage, and so on. Map reports display the system resource information in the form of heat maps or color-coded maps. Additional trend reports are available for certain accounts (for example KVM accounts). Trend reports display data over a selected time frame. 197
Accessing Reports System Monitoring and Reporting Accessing Reports Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Virtual > Compute. From the left panel, choose the cloud name. Choose the tab with the type of report (Map, Top 5, or More Reports). 198
CHAPTER 15 Managing Lifecycles This chapter contains the following sections: Managing VM Power Settings, page 199 Resizing VMs, page 200 Managing VM Snapshots, page 201 Configuring the Lease Time for a Virtual Machine, page 204 Managing VM Actions, page 205 Managing VM Power Settings Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Virtual > Compute. Choose the cloud name. To bring up virtual machine (VM) actions, choose the VMs tab and right click a VM (wait for the timer to cycle). Choose an action and the VM Task dialog box opens. Complete the last two fields: VM display-only field The name of the VM that is the subject of the action. Power Off display-only field The task to power off the VM. Power On display-only field The task to power on the VM. Suspend display-only field The task to put the VM in a suspended state. 199
Resizing VMs Managing Lifecycles Shutdown Guest display-only field Standby display-only field Reset display-only field Reboot display-only field Comments field Schedule Action radio button The task to shut down the guest OS on the VM. The task to move the VM into a standby state. te t supported in the RHEV KVM Connector. The task to perform a hard reset of the VM. te t supported in the RHEV KVM Connector. The task to perform a soft reboot of the VM. te t supported in the RHEV KVM Connector. The comments. The task to power on a VM now or at a specific date and time. Click Proceed. Resizing VMs Before You Begin Create a provisioned VM. The administrator must also provide permission by enabling the End User Self-Service Options in the group's vdc. Click Virtual Resources and choose VMs. Right-click on a VM and choose Resize VM. In the Resize VM dialog box, complete the following fields: VM field The name of the selected VM. Current Allocated CPU field Current Allocated Memory (GB) field New CPU Count drop-down list The number of allocated CPUs being used by the VM. The amount of memory allocated to the VM. Choose the CPU required from the drop-down list. 200
Managing Lifecycles Managing VM Snapshots New Memory drop-down list Choose the amount of memory required from the drop-down list. Click Resize. Managing VM Snapshots This topic covers the following tasks: Create Snapshot You can create a snapshot of all the VM s resources in their current state. When you create a snapshot, you can revert toit in the event of a VM crash. Revert Snapshot If the VM crashes or malfunctions (the OS becomes corrupt), you can revert back to the most recent snapshot of the VM, which brings the VM back up and running. In the case where there are multiple snapshots for a VM, you can revert to a specific snapshot. Mark Golden Snapshot You can mark a specific snapshot for a VM as a Golden Snapshot. This feature protects the snapshot from accidental deletion. Delete a Snapshot You can delete a snapshot if required. If you delete a Golden Snapshot, you must first unmark it before it can be deleted. Delete All Snapshots You can delete all snapshots for a VM. However, you cannot delete all snapshots if you have Golden Snapshots. You must first unmark the Golden Snapshot and then delete all snapshots. Creating VM Snapshots Before You Begin You must be logged in to the appliance to complete this task. Step 6 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM and click the down arrow button on the right side of the toolbar. From the drop-down list, choose Create Snapshot. In the Create Virtual Machine Snapshot dialog box, complete the following fields: Snapshot field The snapshot name. 201
Reverting to a Snapshot Managing Lifecycles Snapshot field Snapshot Memory check box Quiesce Guest File System check box The snapshot description. Check the check box to include the VM memory. Check the check box to take the snapshot in quiesce mode. te Quiescing a file system brings the on-disk data of a physical or virtual computer into a state that is suitable for backups. This process might include operations such as flushing buffers from the operating systems in-memory cache to disk or other higher-level application-specific tasks. To use this option, VMware tools must be installed on the VM. Step 7 Click Proceed. Reverting to a Snapshot Before You Begin You must be logged in to the appliance to complete this task. Step 6 Step 7 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM and click the down arrow button on the right side of the toolbar. From the drop-down list, choose Revert Snapshot. In the Revert Snapshot Task dialog box, choose a snapshot from the list by checking the check box that is next to the snapshot name. Click Proceed. 202
Managing Lifecycles Marking a Golden Snapshot Marking a Golden Snapshot Before You Begin You must be logged in to the appliance to complete this task. Step 6 Step 7 Step 8 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM and click the down arrow button on the right side of the toolbar. From the drop-down list, choose Mark Golden Snapshot. In the Mark Golden Snapshot Task dialog box, choose a snapshot from the list by checking the check box that is next to the snapshot name. Check the Mark as Golden Snapshot check box. Click Proceed. Deleting a Snapshot Before You Begin You must be logged in to the appliance to complete this task. Step 6 Step 7 Step 8 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM and click the down arrow button on the right side of the toolbar. From the drop-down list, choose Delete Snapshot. In the Delete Snapshot Task dialog box, choose a snapshot from the list by checking the check box that is next to the snapshot name. Check the Delete Children check box. Click Proceed. 203
Deleting All Snapshots Managing Lifecycles Deleting All Snapshots Before You Begin You must be logged in to the appliance to complete this task. Step 6 Step 7 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM and click the down arrow button on the right side of the toolbar. From the drop-down list, choose Delete All Snapshots. In the VM Snapshot Task dialog box, enter an optional comment. Click Proceed. Configuring the Lease Time for a Virtual Machine A user can configure a lease expiration time for a selected virtual machine (VM). Once the lease time expires, the VM is shutdown (powered-off). The lease time end is not limited because it is a calendar selection. Before You Begin You must be logged in to the appliance to complete this task. Step 6 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM. On the toolbar, click the Configure Lease Time button. In the Configure Lease Time dialog box, check the Set Lease Time check box. Complete the following fields: VM field Lease Date/Time calendar, drop-down lists, radio buttons The name of the VM. This field cannot be edited The lease date and time of the VM. There are calendars for the Date, drop-down lists for the Time (hour and minute), and radio buttons for AM or PM. 204
Managing Lifecycles Managing VM Actions Step 7 Click Submit. Managing VM Actions The other VM action menus can be brought up by right clicking on a VM for a shortened menu, or for a complete menu, you can highlight a VM and click on the down arrow at the right side of the toolbar. Following are the other VM actions: View VM Details You can access individual VMs to view details such as summary reports, vnics, disks, snapshots, and so on. Stack View You can view stacks of information about a particular VM including OS, hypervisor, and infrastructure information. Delete a VM You can delete a VM from the list. Only a powered-off VM can be deleted. Create a VM Disk You can add an additional disk with a custom size to a VM. Delete a VM Disk You can delete a disk. Add vnics You can add multiple vnics to a VM. You also have the option to add or replace a vnic in a VM. The options for vnics depends upon the network policy mapped to the VDC that is associated to the VM. Launch VM Client You can set up either web access, remote desktop, or VNC console preferences to a VM. Assign VM You can assign a VM to a group or VDC and modify the category of the VM. You can set the provisioning time, termination time, and label for a VM. Access VM Credentials You can access a VM s login credentials when it is set up for web or remote desktop access, but only if the administrator provides the privileges in the catalog from which the VM is provisioned. Inventory Collection Request for VM You can choose a VM and request for on-demand inventory collection for that VM. Test VNC You can testing VNC connectivity for troubleshooting purposes. Clone You can clone or make a copy of an existing VM in order to make a new VM with the same or similar qualities. Move a VM to VDC You can move a VM to a VDC so that the rules of the VDC system policy are followed in the VM. VM Resync You can choose to set the number of minutes to have a VM resynchronize its time periodically with Cisco UCS Director. 205
Viewing VM Details Managing Lifecycles Viewing VM Details Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM from the list. On the toolbar, click the View Details button. Using Stack View Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. On the toolbar, click the Stack View button. Deleting a VM Before You Begin You must be logged in to the appliance to complete this task. 206
Managing Lifecycles Creating a VM Disk Step 6 Step 7 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM and click the down arrow button on the right side of the toolbar. From the drop-down list, choose Delete VM. In the VM Task dialog box, enter an optional comment and schedule the action to execute now or later. te If you choose Execute Later, you must specify a time. Click Proceed. Creating a VM Disk Before You Begin You must be logged in to the appliance to complete this task. Step 6 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM and click the down arrow button on the right side of the toolbar. From the drop-down list, choose Create VM Disk. In the Create VM Disk dialog box, complete the following fields: VM field The name of the VM. This name cannot be edited. New Disk Size (GB) field Choose a disk type drop-down list Choose Datastore drop-down list The disk size for the VM in GB. Choose the disk label. Choose a datastore. te The datastore choices that are available depends upon the storage policy that is associated to the VM (VM s VDC). 207
Deleting a VM Disk Managing Lifecycles Thin Provision check box Check the check box to add a thin provisioned disk to the VM. te Thin provisioning enables dynamic allocation of the physical storage capacity to increase VM storage utilization. Step 7 Click Create. Deleting a VM Disk Before You Begin You must be logged in to the appliance to complete this task. Step 6 Step 7 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM and click the down arrow button on the right side of the toolbar. From the drop-down list, choose Delete VM Disk. In the Delete VM Disk dialog box, choose the disk name from the drop-down list. Click Delete. Adding vnics te When you add a vnic VM, only the Port Group and Adapter Type values are modified. The IP address of the VM is changed only if DHCP is enabled on the selected port group. However, the IP address is not modified if it is sourced from a static pool policy. 208
Managing Lifecycles Adding vnics Step 6 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM and click the down arrow button on the right side of the toolbar. From the drop-down list, choose Add vnics. In the Add VM vnics window, choose Add from the Operation drop-down list. This operation is not allowed if the additional vnic limit that is configured in the network policy is exceeded. Step 7 Click Add (+). Step 8 In the Add Entry to VM Networks dialog box, complete the following fields: NIC Alias drop-down list Port Group Type display-only drop-down list Port Group drop-down list Adapter Type display-only drop-down list DHCP check box Static IP Pool field Network Mask field Gateway IP Address field Choose a NIC alias from the list. Choose a port group from the list. Choose a port group name from the list. Choose the adapter type. The choice is available only if the NIC alias does not have Copy Adapter Type from Template chosen in the network policy. If checked, the IP is assigned using DHCP. You cannot edit this field. The static IP address pool. The network mask. The gateway IP address. Step 9 te Click Submit. The NIC Alias, Port Group, Adapter Type, DHCP, and Static IP Pool choices depend upon the settings in the network policies that are associated with the VM (VM s VDC). For more information about multiple NIC network policies, see Managing Policies, on page 99. The VM is powered off to perform this action. The VM will power on once the action is completed. 209
Replacing a vnic Managing Lifecycles Replacing a vnic te When you replace a vnic VM, only the Port Group and Adapter Type values are modified. The IP address of the VM is changed only if DHCP is enabled on the selected port group. However, the IP address is not modified if it is sourced from a static pool policy. Step 6 Step 7 Step 8 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM and click the down arrow button on the right side of the toolbar. From the drop-down list, choose Add vnics. In the Add VM vnics window, choose Replace from the Operation drop-down list. This operation is not allowed if the additional vnic limit that is configured in the network policy is exceeded. Choose a vnic. In the Add vnic dialog box, complete the following fields: NIC Alias drop-down list Port Group drop-down list Adapter Type display-only drop-down list DHCP check box Static IP Pool field Network Mask field Gateway IP Address field Choose a NIC alias. Only the vnics configured in the network policy are visible here. Choose a port group name from the list. Choose the adapter type. The choice is available only if the choice of the NIC alias does not have Copy Adapter Type from Template chosen in the network policy. Check the check box if you want the IP assigned using DHCP. The static IP address pool. The network mask. The gateway IP address. Step 9 Click Submit. 210
Managing Lifecycles Deleting vnics te The VM is powered off to perform this action. The VM is powered on once the action is completed. The Replace operation removes all the existing vnics from the VM and replaces them with the vnics that were added. This operation is not allowed if the additional vnic limit, that is configured in the network policy is exceeded. The NIC Alias, Port Group, Adapter Type, DHCP, and Static IP Pool choices depend upon the settings in the network policy that is associated to the VM (VM s VDC). For more information about multiple NIC network policies, see Managing Policies, on page 99. Deleting vnics Before You Begin You must be logged in to the appliance to complete this task. Step 6 Step 7 Step 8 Step 9 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM and click the down arrow button on the right side of the toolbar. From the drop-down list, choose Delete vnics. Click the Select button in the Delete VM vnics dialog box. In the Select Items dialog box, check the check box that is next to the vnic to delete. You can choose Check All to delete all vnics. Click Select. Click Delete. Launching the VM Client Before You Begin You must be logged in to the appliance to complete this task. 211
Enabling the VNC Console on a VM Managing Lifecycles Step 6 Step 7 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM from the list. On the toolbar, choose Launch VM Client. In the Launch Client dialog box, choose an access scheme for the VM Client. You can choose Remote Desktop, Web Access, or VNC Console. te Click Proceed. The VNC console is an Ajax-based console that has access to a VM. The console window can be launched by using any standalone web browser. It does not require a dedicated browser plug-in and it provides full VM control capabilities. Enabling the VNC Console on a VM Before You Begin You must be logged in to the appliance to complete this task. Step 6 Step 7 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM and click the down arrow button on the right side of the toolbar. From the drop-down list, choose Configure VNC. Click Submit. Click OK. Cisco UCS Director automatically configures VNC console access to a VM when the request is submitted. Accessing the VNC Console Window for a VM Before You Begin You must be logged in to the appliance to complete this task. 212
Managing Lifecycles Assigning a VM Step 6 Step 7 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM from the list. On the toolbar, choose Launch VM Client. In the Launch Client dialog box, choose VNC Console as the Access Schema. Click Proceed. te The ESX/ESXi server s VNC ports (from 5900 to 5964) must be open on the hypervisor for a VMs VNC console access. te Cisco UCS Director provides automatic configuration of the VNC console for a VM. To configure, you must open the required ports on the hypervisor. te Hypervisors with ESX 4.X and ESXi 5.0 versions are supported to configure VNC console access. Assigning a VM You can assign a resource or a VM to a user group. If the resource or a VM is in a VMWare cloud, then you can also assign it to a specific end user in Cisco UCS Director. Before You Begin You must be logged in to the appliance to complete this task. Step 6 On the menu bar, choose Virtual > Compute. Choose the cloud name. Click the VMs tab. Choose a VM from the list. On the toolbar, click the Assign VM button. In the Assign VM dialog box, complete the following fields: VM field The name of the VM. User Group drop-down list Choose the user group. 213
Assigning a VM Managing Lifecycles Assign to User check box User drop-down list VDC drop-down list Category drop-down list VM User Label field Set Provision Time check box Provision Date/Time calendar, drop-down lists, radio buttons Set Termination Time check box Termination Date/Time calendar, drop-down lists, radio buttons Comments field Select this check box to assign the VM to a specific user. This option is visible only if resource assignment to end users is enabled for the group share policy that is applied to the selected user group. For more information on creating a group share policy, see Creating a Group Share Policy, on page 104. Select the user to whom this VM must be assigned. te Currently, only VMs that are in a VMWare cloud can be assigned to a specific end user. Choose the VDC. Choose the category for the VM. The VM label if required. Check the check box to set a specific provisioning time for the VM. The VM s provisioning date and time. There are calendars for the Date, drop-down lists for the Time (hour and minute), and radio buttons for AM or PM. This option appears when Set Provision Time is checked. Check the check box to set a specific termination time for the VM. The VM s termination date and time. There are calendars for the Date, drop-down lists for the Time (hour and minute), and radio buttons for AM or PM. This option appears when Set Termination Time is checked. The comments if required. Step 7 Step 8 Click Assign. Click OK. 214
Managing Lifecycles VM Credentials VM Credentials The web or remote access login credentials for a VM can only be viewed if the administrator provides the necessary privileges in the Catalog from which the VM is provisioned. Viewing VM Credentials Before You Begin You must be logged in to the appliance to complete this task. On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM from the list. On the toolbar, click the Access VM Credentials button. Using the Inventory Collection Request for a VM Before You Begin You must be logged in to the appliance to complete this task. Step 6 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM and click the down arrow button on the right side of the toolbar. From the drop-down list, choose Inventory Collection. Click Submit. Testing VNC Connectivity Testing VNC connectivity is used for troubleshooting purposes. If the test for VNC connectivity succeeds, the host node IP address and VNC port number displays. For example: VNC connectivity intact at 172.29.110.75:5921. 215
Cloning a VM Managing Lifecycles However if connectivity fails, a failure message displays. For example: VM is not configured for VNC yet. Before You Begin You must be logged in to the appliance to complete this task. Step 6 Step 7 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM and click the down arrow button on the right side of the toolbar. From the drop-down list, choose Test VNC. In the Test VNC Connectivity dialog box, click Submit. Use the result to troubleshoot VNC connectivity. te If connectivity fails, there is no VNC port assigned to the VM IP address. For more information, see Enabling the VNC Console on a VM, on page 212. Cloning a VM Cloning a VM is the same as making a copy of an existing VM in order to make a new VM with similar qualities. Cloning can save you time by keeping the parameters that you want from the VM you are cloning from while making adjustments needed for the new VM. The new name given to the clone is defined in the system policy. Before You Begin You must be logged in to the appliance to complete this task. Step 6 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM and click the down arrow button on the right side of the toolbar. From the drop-down list, choose Clone. In the Clone VM dialog box, complete the following fields: Select Group drop-down list Choose a predefined group to clone. The Default Group is chosen by default. 216
Managing Lifecycles Cloning a VM Assign to User check box User drop-down list Use Linked Clone check box Select Snapshot Type drop-down list Select this check box to assign the VM to a specific user. This option is visible only if resource assignment to end users is enabled for the group share policy that is applied to the selected user group. For more information on creating a group share policy, see Creating a Group Share Policy, on page 104. Select the user to whom this VM must be assigned. te Currently, only VMs that are in a VMWare cloud can be assigned to a specific end user. Check this check box to clone a VM from a linked clone. te A linked clone is a copy of a virtual machine that shares virtual disks with the parent VM. A linked clone is made from a snapshot of the parent VM. A linked clone must have access to the parent VM. Without access to the parent VM, a linked clone is disabled. Select the snapshot that is associated with the linked clone. You can choose one of the following: Existing Snapshot New Snapshot Select Existing Snapshot field Snapshot field Click Select to view a list of existing snapshots. Select a snapshot from the list, and click Select. te This field appears only when you select Existing Snapshot. Specify a name for the snapshot. te This field appears only when you select New Snapshot. Step 7 Step 8 Click Next. In the Customization Options pane, complete the following fields: Category drop-down list Choose the VM category you want. 217
Cloning a VM Managing Lifecycles Credential Options drop-down list Provision all disks in a single datastore check box User ID field Password field Automatic Guest Customization check box Post Provisioning Custom Actions check box VM App Charge Frequency drop-down list Active VM Application Cost field Inactive VM Application Cost field Choose to allow or disallow users to retrieve VM access credentials (shared). The Do not share option is chosen if the administrator wants to send the credentials privately to another user outside Cisco UCS Director. Check this check box to have all the VM disks, in the previously configured single datastore, provisioned. The user ID. This option appears when you choose either of the share options under Credential Options. The user password. This option appears when you choose either of the share options under Credential Options. The Enable check box is checked. Click Enable to attach a workflow. The Workflow drop-down list appears with a list of work flows to choose from. The chosen workflow initiates when the provisioning starts. Choose Hourly or Monthly. The cost for the application that is included in the template. The cost to this catalog of a VM in inactive state per hour or month. Step 9 0 Click Next. In the Deployment Configuration pane, complete the following fields: Select VDC drop-down list Comment field Provision drop-down list Choose a VDC containing the policies you want for the VM. Optionally, enter a description of the VDC. Choose w to provision the VDC now or choose Later to provision the VDC later. If you choose Later, then fields to specify the date, and time appear. 218
Managing Lifecycles Cloning a VM Lease Time check box Days field Hours field Check the check box to configure a lease expiration time. Specify the number of days for the lease time. te This field appears only when you select the Lease Time checkbox Specify the number of hours for the lease time. te This field appears only when you select the Lease Time checkbox 1 2 Click Next. In the Custom Specification pane, complete the following fields: CPU Cores drop-down list Memory drop-down list Choose the CPU cores for the VM being provisioned. Choose the amount of memory for the VM being provisioned. 3 4 Click Next. In the Select Datastores pane, complete the following fields: VM Disks pencil icon Click the VM Disks pencil icon (if a disk is available) to assign any applicable datastores to the applicable disk. 5 In the Edit VM Disks Entry pane, complete the following fields: Disk Disk Type Selected Datastores The name of the VM disk to which data stores are assigned. Choose the VM disk type. For example: System. Choose the data stores that you want for this VM disk. The data store choices that appear are from the data storage policy attached to the VDC. 219
Moving a VM to VDC Managing Lifecycles 6 7 8 Click Submit. Click Next. In the Select VM Networks panel, choose from the following fields: VM Disks pencil icon Click this icon to edit a VM network. 9 0 1 2 te The Select VM Networks panel is empty unless the Allow end user to select optional NICs check box is chosen in the network policy. In the Select dialog box choose the cloud(s) you want associated with the VM. Click Submit. Review the cloned VM information in the Summary panel. Click Submit. The cloned VM gets its new name from the VDC policy. Moving a VM to VDC A VM is moved to a VDC so that the rules of the VDC system policy are followed in the VM. The existing VM is replaced by the one that is moved to the VDC. te The old VM is deleted. The new VM name is given according to the system policy. Before You Begin You must be logged in to the appliance to complete this task. Step 6 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM and click the down arrow button on the right side of the toolbar. From the drop-down list, choose Move VM to VDC. In the Move VM to VDC dialog box, you can make modifications to the VM that you are moving in the same way you did when cloning a VDC. For more information, see Cloning a VM, on page 216. 220
Managing Lifecycles Resynchronizing a VM Resynchronizing a VM Before You Begin You must be logged in to the appliance to complete this task. Step 6 Step 7 On the menu bar, choose Virtual > Compute. Choose the cloud name. Choose the VMs tab. Choose a VM and click the down arrow button on the right side of the toolbar. From the drop-down list, choose Resync VM. In the Resync VM dialog box, choose the number of minutes from 0 to 30 from the Max Wait Time drop-down list. Click Submit. 221
Resynchronizing a VM Managing Lifecycles 222
CHAPTER 16 Managing CloudSense Analytics This chapter contains the following sections: About CloudSense Analytics, page 223 Generating a Report, page 224 Generating an Assessment, page 224 About CloudSense Analytics CloudSense Analytics in Cisco UCS Director provide visibility into the infrastructure resources utilization, critical performance metrics across the IT infrastructure stack, and capacity in real time. CloudSense significantly improves capacity trending, forecasting, reporting, and planning of virtual and cloud infrastructures. You can generate the following reports with CloudSense: Billing Report for a Customer EMC Storage Inventory Report NetApp Storage Inventory Report NetApp Storage Savings Per Group NetApp Storage Savings Report Network Impact Assessment Report Organizational Usage of Virtual Computing Infrastructure PNSC Account Summary Report Physical Infrastructure Inventory Report for a Group Storage Dedupe Status Report Storage Inventory Report For A Group Thin Provisioned Space Report UCS Data Center Inventory Report 223
Generating a Report Managing CloudSense Analytics VM Activity Report by Group VMware Host Performance Summary Virtual Infrastructure and Assets Report Generating a Report Before You Begin You must be logged in to the appliance before completing this task. On the menu bar, choose CloudSense > Reports. From the left panel, choose the report. Click Generate Report. This step generates a new instant report in either HTML or PDF format. Generating an Assessment Before You Begin You must be logged in to the appliance before completing this task. On the menu bar, choose CloudSense > Assessments. Click Virtual Infrastructure Assessment Report. Click Generate Report. This step generates a new instant report in either HTML or PDF format. 224
APPENDIX A Appendix This chapter contains the following topic: Configuring the VNC Console on an ESX Server, page 225 Configuring the VNC Console on an ESX Server Before You Begin Open the ESX/ESXi server's VNC ports (5900-5964) on the hypervisor for VM VNC console access. Cisco UCS Director provides automatic configuration of VNC console for a VM. te For now hypervisors with ESX 4.X and ESXi 5.0 versions are supported to configure VNC console access. Login to ESXi5.x host. Using the shell, run the following command to disable the firewall configuration: # cat /etc/vmware/firewall/vnc.xml Copy and paste the XML configuration to the vnc.xml file. <!-- Firewall configuration information for VNC --> <ConfigRoot> <service> <id>vnc</id> <rule id='0000'> <direction>inbound</direction> <protocol>tcp</protocol> <porttype>dst</porttype> <port> <begin>5901</begin> <end>6000</end> </port> </rule> 225
Configuring the VNC Console on an ESX Server Appendix <rule id='0001'> <direction>outbound</direction> <protocol>tcp</protocol> <porttype>dst</porttype> <port> <begin>0</begin> <end>65535</end> </port> </rule> <enabled>true</enabled> <required>false</required> </service> </ConfigRoot> Refresh the firewall rules and verify that the new configuration is accurately loaded. ~ # esxcli network firewall refresh ~ # esxcli network firewall ruleset list grep VNC VNC true #**************************************** 226