TheSaffaGeek

My ramblings about all things technical


2 Comments

Setting up vMA for Remote Logging

 

One of the bits of information I took out of my VMware vSphere: Manage and Design for Security course was setting up vMA for Remote logging of the syslog files from your virtual centre server and ESX hosts. I have played with vMA bit before but over the past week I’ve made a concerted effort to try better my skills as it is something i really need to strengthen before the next realise of vSphere which has no ESX included and therefore I need to know how to do my daily role through vMA and PowerCLI (everyone recommended I learn both as each has it’s pro’s and con’s).

I’m not going to get too in-depth with the process as some top bloggers have already done such a great job of it I would only be re-covering what they have already said.  If you haven’t used vMA before then I would recommend a document created by William Lam of virtuallyghetto.com fame all about Getting Started with the vMA and there is even a VMware KB TV video all about vMA here

  • To setup my vMA for remote logging I used my course lab notes but Simon Long has written a great posting covering pretty much everything that was in my course lab guide for setting up your vMA to retrieve your syslog files and store them in the VMA.
  • Next I secured my credentials in vMA by following the knowledge base article here. This is something I learnt on the course and maybe it’s overkill as someone would have to take the VMDK files of my vMA and reverse-engineer the encryption algorithm and decrypt the passwords but it’s always good practice to try secure your passwords as best you can so I did it Smile
  • Having changed my keyboard layout from US to UK(EN) I noticed that due to this my vi-admin password wasn’t what i wanted it to be so after looking around and asking on twitter I was pointed to logging into my vMA using single-user mode and resetting my vi-admin password that way. I used this Red Hat FAQ to show me how to make this change.
  • Next I configured my vMa for Active Directory Authentication as recommended and detailed in the  vSphere Management Assistant Guide on page 14. Also William Lam did a great posting detailing in a bit more of a user friendly fashion.

Now my vMa is remote logging,secured and using Active Directory Authentication.

Gregg


6 Comments

VMware vSphere: Manage and Design for Security Course Experience

Monday,Tuesday and Wednesday this week I was fortunate enough to attend the VMware vSphere: Manage and Design for Security course. The course is one of the recommended courses for the VCAP: DCA exam so I was looking forward to learning quite a few things and get some of the questions I had built up while doing my preparations for the VCAP: DCA exam.

The course started a little slow on the Monday morning,as to no fault of the lecturer the first two modules were him giving best practices and recommendations and covering a lot of things I had learnt before either in my VCP courses/studies or via real world experience. The course material is very well structured and the extra explanations and examples in the study materials will be great reference documents for my VCAP preparations and for my design one day when I’m hopefully prepared to put my design up for the VCDX certification. The afternoons material was a lot more engaging and started to get into the kinds of things I was hoping the course was going to cover in teaching good design practice and fixing and preventing common problems in todays virtual environments. The day finished off with a few labs helping you visually fix common design errors and problems.

Tuesday we got into protecting the  the management environment and Protecting your ESX and ESXi hosts. These were some of the topics I was really interested in especially for learning good design practices for my current job and for my future VCDX design. The biggest take away from this section had to be learning all about how you can use vMA to retrieve and store all your individual ESX hosts log files and how to add and use SSL certificates to secure the login into the Virtual Centre server. I’ve even already started looking at implementing the vMA log retrieval and storage into my own environment I was so impressed with it. Tuesday finished off with some labs learning how to setup vMa to retrieve and store the logs and had a really great lab for someone like me that hasn’t done it before on how to request and add an SSL certificate to your Virtual Centre server.

Wednesday consisted of finishing off learning about how to protect my ESX/ESXi hosts and then covered all the ways to harden my virtual machines and learning about configuration and change management. We were lucky to have a VMware employee in the course with us who had actually written parts of the vSphere Hardening Guide and therefore could give us great tips and additional resources to help learn more about securing our VMware environments. The two things that were the most interesting from what he told us was all about a product by HyTrust which “offers IT managers and administrators of virtual infrastructure a centralized, single point of control and visibility for hypervisor configuration, compliance, and access management” It comes in a virtual appliance and there is a community edition for me to play with in my test environment Smile. Hopefully I can write up a posting on my experiences with the product for anyone interested. The next very informative tip he gave us was all about a document created by Horst Mundt a Technical Account Manager at VMware Germany on the VIOPS.VMware.com site detailing all the alarms and what they do in vCentre 4 and vCentre 4.1. The document is frighteningly thorough. The course finished covering the remaining topics and then we got to finish off our labs which were really good compared to a few courses I have been on as they really did teach you some in-depth skills and tips.

I would highly recommend the course to anyone wanting to strengthen their knowledge on securing their VMware Environment and it really is a great course if you are planning on doing your VCAP: DCA exam as there was loads and loads of pages and resources i marked down for me to study before I sit the exam.

Gregg