vShield Manager investment - clarification of required documentation

Similar Questions

• vShield Manager interface network & group of port / vlan

  Hello:

  I'm new to vShield and looking to use it in our environment.  I read the documentation and seeks to install the first part, the Device Manager vShield.  By reading the docs, it specifies the management interface for the vShield Manager is in its own group of port.  Why is this?  Is it okay to put this interface in a group of existing port?  Is it possible in a port with another management SMV Group (vCenter, etc.)?  Also, is it better practice to have this in a standard vs dvswitch, or isn't it important?  I was looking through posts and the other docs and so far I don't see a clear reason why it must be in its own group of port.

  So far, the only element that we will consider is vShield Endpoint, for now.  We have no plans to watch App or Edge, etc.

  Thanks in advance!

  Hello

  The Manager can be put on any standard or distributed port group. Do not create any new groups-port. The only thing that is necessary to access vCenter/SSO and DNS, NTP server (mirror).

  There is no need to create a new. IMHO, this could be a failure in the doc.

  Kind regards

  Roland

• vShield Manager OVA file download?

  I want to download the virtual machine Manager vShield packaged as a file Open Virtualization appliance (OVA). Is this download open source that I need? I have to be looking right at it and not see it?

  Thanks in advance for your help

  No, there are various products/solutions based on the use case/requirements

  Check below links for reference

  http://clean-clouds.com/2011/10/19/VShield-app-VShield-edge-VShield-Manager-use-cases-and-comparisons/

  http://www.TrainSignal.com/blog/vSphere-VShield

  You can download vShield Zones here:

  http://downloads.VMware.com/d/details/zones41u1/dHdlYnRlZXBidGVwQA==

  HTH

• can not access to vShield Manager via Web

  Hello

  I have deployed vShield manager Appliance and configured it. However, when I connect Portal accepts the credentials and stops spinning.

  I've waited enough for the whole night.

  Any help is appreciated.

  Thank you

  This helped.

  Thank you very much

• vShield Manager cannot remove portgroup

  I have problem with vCloud Director 1.5. When I stop TIME it has this error.

  -vShield Manager cannot remove portgroup dvportgroup-8446 on DVS dvs-7564

  HTTP/1.1 500 Internal Server Error

  Code: 100, Description: VC connection error: error connecting to vCenter server allocation. ; nested exception is java.util.concurrent.ExecutionException: com.vmware.vim.binding.vim.fault.VimFault com.vmware.vim.binding.vim.fault.InvalidLogin:inherited:

  inherited from com.vmware.vim.binding.vim.fault.InvalidLogin: could not complete the connection due to an incorrect user name or password.

  That said I worng usename and password but I don't change password. I don't know why. A few days before everything works ok. I can start and stop TIME normally. But today this error.

  Thank you for help me alots.

  have you tried to go to your manage & Monitor tab and then access your vcenter and see if there are errors in saying vsphield id inaccessible. If there ar enone, you could try reconnecting to vcenter and also specify the credentials for vshield manager. And then you try to do the task.

• How to separate vShield Manager with vCenter

  People, we have installed vShield manager. Before you configure devices such as EDGE or APP, we decided to go for some change major grace to which we would like to uninstall the vShield Manager. I just wanted to know how we can separate vShield Manager with vCenter or simply if I delete device it will be deleted?

  Please help.

  Thank you and best regards.

  Hari.

  No,

  VShield manager is a device managed by plug-in.

  If you previously uninstall component vshield vshield link manager, you can remove the device and then remove the plug in. (like other component like Vmware Data recovery,...)

  Kind regards

  Julien.

• verification of vShield Manager record vCenter

  I'm installing vShield Manager in my environment of vCloud/vSphere 'assessment '.  Working from the vShield Quickstart document [1], the vCenter configuration section says to check the configuration by going to "vSphere Client, select an ESX host and make sure that the vShield appears as a tab.

  First of all, I use the vSphere Web Client, not the client application, then where would this 'tab' be in the user interface?

  Then, just to check, I went in the client application, and I couldn't find the tab anyway.

  HOWEVER, when I go into the web interface of vShield, I see the data centers of my vCenter in the tree of "inventory" on the left side; such, it seems that the vCenter has been saved successfully.

  ALSO, is there an interface in the vCloud Director to control the vShield?

  Can someone give an overview of these issues?  Thank you!

  1 http://www.vmware.com/pdf/vshield_51_quickstart.pdf

  I'm installing vShield Manager in my environment of vCloud/vSphere 'assessment '.  Working from the vShield Quickstart document [1], the vCenter configuration section says to check the configuration by going to "vSphere Client, select an ESX host and make sure that the vShield appears as a tab.

  First of all, I use the vSphere Web Client, not the client application, then where would this 'tab' be in the user interface?

  There is no such tag for the Web Client, 'functionality' (which is not really adding anything useful) is provided by a vSphere Client Plugin.

  You can view the list of vCenter Server Extensions in the Web Client, which should list your vShield Manager like in this picture of the attached example.

  Then, just to check, I went in the client application, and I couldn't find the tab anyway.

  Make sure that the vShield Manager plugin is enabled in the vSphere Client.

  HOWEVER, when I go into the web interface of vShield, I see the data centers of my vCenter in the tree of "inventory" on the left side; such, it seems that the vCenter has been saved successfully.

  If this is the case, then Yes, the connection between the vShield Manager and vCenter is good.

• Order of PowerCLI to save VCentre with VShield manager

  Hey nybdy know hw cn register VCenter with Vshield manager using powerCLI or api REST?

  This issue is a duplicate; Take a look at http://communities.vmware.com/thread/439586?tstart=0

• Error adding vShield Manager in vCD

  I have tried a CEP of vCD and vShield using the. OVA on VMware.com
  I see error adding vShield Manager vCloud Director.
  I checked the vShield Manager, it works well, can connect display settings on the Web page.
  I tried to telnet vShiled Manager of port 442 vCD virtual machine, and that failed.
  
  What should I do next?

  Does anyone have any suggestions?

  This may seem like a stupid answer, but it launched my butt when I started using vShield edge with vCloud.

  Connect to the device vShield edge with a web browser:

  https://vshieldedgedevice - one of the first options is to connect the edghe to a vcenter, the account used to connect vshield edge to vcenter - this is a good one to use because it configures all rights that edge will need on this account... (don't forget to login/pw)

  In vCloud use this login/pw.

  Now, here's what made me, the password cannot contain a few special tank - I forgot the list but I don't know ":" me before.

  Hope this helps

• vShield manager installation

  I am trying to install vShield Manager because it must be run to install vCloud.

  Now Manager of vShield deployment went well, not to mention Manager I also installed vShield Endpoint on a cluster with two servers (I want to test deep security some time later).

  Everything seems fine, but strangely, I have found that the task of the latter, an infinite loop of "Scan, block ports in firewall, queries and open Firewall ports" appears.

  This happends on the servers of al in my lab, which is a server running, vshield vcenter and a group distinct from both servers.

  I forgot a few setting or configuration to stop this infinite loop?

  Concerning

  It's Normal. These are standard alarms/tasks after installing vshield & will be displayed whenever you select any ESX host.

• Unable to connect to the vShield Manager

  Hello

  I have deployed just a test "vCloud Director camera 1.5" and in the "Attach new vCenter ' Assistant in the vCloud Director 1.5 portal, I was able to attach my vCenter fine credentials, but when he asked"vShield Connection Manager"I grabbed both FQDN or the IP address of the unit vShield Manager user/pass appropriate but still didn't work but gave an error"unable to connect to the vShield Manager. "

  I double check my two vSM01 DNS entries and vCD01 servers are looking backward/forward very well.  My IP model using base 192.168.1.xx without firewall or VLANS between the two, if someone has problems with that please advice.

  Thanks in advance!

  Works very well here. But I recommend certainly triple check DNS, as it is the thing that most often cause these problems.

• Vmtools in the vShield Manager Update

  Hello

  I'm having a problem getting the IP address of the VM Manager vShield displays in vCenter.  The vmtools say "Obsolete".  I tried to update the tool with the Update Manager and continues just failing.  Any who could update the tools and if so please tell.

  Will Johnson

  VCP on VI3 / vSphere VI4

  &

  vEXPERT 2009

  Hi Will,

  I investigated my own problems with my installation vShield Zones and found your post. I remembered reading this article and don't know if you've read or not.

  http://SearchVMware.TechTarget.com/Tip/0, 289483, sid179_gci1363438_mem1, 00.html

  Your interest is the section below.

  VMware Tools

  The vSphere Client will report that VMware Tools is not installed on the vShield Manager and agent of the virtual machines (VMS). Do not try to install VMware Tools on those virtual machines, because it is not necessary and performance optimization that provides VMware tools is already integrated into VMs vShield Zones

  I hope this helps...

• vShield Manager, virtual son VXLAN, uplink changes of VDS

  Need input on how to resolve this situation without rebuilding the entire cluster care...

  I have vSM for vCloud Director of VXLAN son/virtual networks. As a part of a host updates - migration of all 1 Gbit/s to 1 / 10 Gbps mixed - I was able to reorganize the network adapters on the host computers and add additional total ascending available on the DVS pass that VXLAN is "horse on.» As part of making these updates, I've renamed also uplinks, where mistakes and the discovery of the problem root.

  The errors were to appear when you try to instantiate a new network VXLAN. The vCloud error was pretty impenetrable (as usual), but trying to manually create a new network in vSM provides useful information: the error was a failure to set the mode of collection for the new port group, and it referred to one of the ancient names of uplink.

  After that I added rising additional "dummy" to the DVS and renamed them so that the old names have been included, the virtual wires could be built very well. However, by examining the exchange of news, it was clear that vShield were built using the original, pre-reconfiguration uplink names, ignoring all new uplink: the new rising have been defined as "unused" in the group properties and the 'active' were fake uplinks that had no physical associated cards!

  I restarted vSM, re-entered the credentials of vCenter to try to get it to re - sync with the configuration of the network, but nothing helped.

  I need a way to force vSM list again this DVS who uses VXLAN so that it will end up with the correct uplinks. So far, my Google-fu has failed me, so I hope someone on the Forum might have a clue. Heck, as far as I know, it is a defect that I just discovered...

  Assuming you are using "failover command" set up for your VXLAN, you can try to use the REST API to change the name of uplink in POSSIBLE Manager (almost similar to what you see in KB 2093324).

  Note : I recommend backup or snapshot Manager first! Just in case...

  Headers required such as:

  Accept: application/xml

  Content-Type: application/xml

  Basic authentication

  1 /

  Use GET on the following points for the VDS loan ':
  http:// /api/2.0/vdn/switches

  (of course replace the with the name or the IP address of your vShield/POSSIBLE Manager)

  You will get something like this (this is just a part of it, if you have several vDS):

  DVS-18

  VmwareDistributedVirtualSwitch

  DSwitch

  16

  VmwareDistributedVirtualSwitch

  Datacenter-2

  Data Center

  Cloud

  1600

  FAILOVER_ORDER

  Uplink 2

  Uplink 1

  fake

  2 /

  Modify the parts of that you need. For example:

  ...

  NewLink1

  NewLink2

  ...
  Leave the rest as what.

  3. /

  Then use to execute a 'PUT' to the URL below in the REST client containing the above (in step / 2) change of body (and once again: assuming you are using the failover command).
  http:// /api/2.0/vdn/switches/dvs-18

  Note: Replace "dvs-18" by the id between and to what you in the GET request (in bold and red).

  You should get a HTTP 200 code if everything is OK. See: vShield API Guide around page 154, but personally I think that the part "Edit Group Policy" is not correct.

  It won't change any existing in vCenter port group. You have to change them manually. This change is only for any other creation of sons v VXLAN.

  HTH

  Roland

  PS: I did my best to test and try the example above, but no warranty and no support provided. For support, please open a service request with VMware.

• Partition on the clarification of required list

  Hello gurus

  I need clarification on the partition table
  TABLE
  PART)
  Primary key NUMBER PARTNO,
  NUMBER OF LB/PO2
  MEDIAN NUMBER)

  MEDIAN will have 10 distinct values from 0 to 9

  so I created 10 partition list on PART Table for 1 part01 part02 for 2... so now

  Select partno
  a part

  Watch the plan INDEX (PRIMARY KEY is used with scan limited quick index)

  
  Select partno
  partition part01 - selection '1' median part

  don't watch no clue is scanned... It is in full table scan

  
  Please suggest
  My partno primary key must be local indexed?
  MEDIAN should be indexed at the local level?

  
  Help, please

  S

  Select partno

  a part

  Here you select the entire table, then there should be a FULL table scan.

  Select partno

  partition part01 - selection '1' median part

  Here the partition must be ENTIRELY digitized as all lines are being accessed.

  My partno primary key must be local indexed?

  I think he must have the overall index, assuming that the primary key should be used without using the partitioning key column in the WHERE clause.

  MEDIAN should be indexed at the local level?

  Yes.

  Here are the generic guidelines for the creation of global/local index:

  When you decide what type of partitioned index to use, you should consider the following recommendations in order:

  1. If the table partitioning column is a subset of index keys, use a local index. If this is the case, you are finished. If this is not the case, continue to guideline 2.
  2. If the index is unique and does not include the partitioning key columns, use a global index. If this is the case, then you are finished. Otherwise, continue to guideline 3.
  3. If your priority is the ease of management, use a local index. If this is the case, you are finished. If this is not the case, continue to guideline 4.
  4. If the application is an OLTP we and users need fast response time, use a global index. If the application is an a MAS and users more interested in flow, use a local index.

  Concepts of partitioning

• vShield manager cannot see some virtual guests

  Recently, we have built a new vSphere 5.1 environment and installing vShield endpoint Manager 5.1.2 - 943471.

  Installed the endpoint on the hosts and the Kapersky Security Appliances to each host. I started to migrate virtual environment 4.1 existing to the new environment.

  
  

  Improved vmware tools in the virtual machine as part of the process and removed the existing antivirus checker. The endpoint vSheild Manager reports that the thin driver is installed on all but a few virtual methods that are not reported by the slim agent vShield as Manager. They are listed in the left column, but when you look at the endpoint events that are not like the others? Before you begin to migrate all about I need to be certain that all virtual methods at least are protected.

  
  

  I checked each guest to ensure that the driver has been installed and running using msinfo32 and are looking for the driver vfilefilter it checked good also I can confirm that virtual methods are running supported SCSI adapters. Something else to check?

  Just a update for it tried a few other servers and they they also have same problem. Have uninstalled and reinstalled vmware tools with the vshield driver installed, but still do not see the virtual server.

  Kind regards

  Jason.

  Response of the virtual, which is where are not not in Manager of vShield or on version 4 of a previous update ESX3.5 material. Once we upgraded the virtual DJ we can now seem to them