Introduction
Big enterprises are heterogeneous and different teams use different tools. The skills and knowledge required to manage each ‘toolset silo’ are very different. And while each team should be allowed to choose the tools that make them the most productive, every additional cloud account becomes an extra challenge for the IT operations team. Complexity increases exponentially, the cloud bill sky-rockets and the company finds itself exposed to security and operational risks. Someone needs to keep tabs and establish the guardrails that will get this situation under control.
VMware Aria Automation Cloud consists of Assembler, Service Broker and Pipelines. Aria Automation Cloud makes it easy and efficient for IT developers to get what they need to build and deploy applications.
It provides a unified management solution across clouds, whether VMware powered or public. Based on modern Infrastructure-as-Code (IaC) and DevOps principles, it empowers agility and collaboration across tenant teams and functions while supplying providers with checks and controls to contain cost and risk exposure. It offers capabilities on service brokerage, cloud governance, workload orchestration, topology composition, workflow automation and CI/CD pipelines for infrastructure and application delivery
Aria Assembler
Aria Assembler is VMware’s approach to building a declarative blueprinting and automation solution-enabling, Infrastructure-as-Code first experience between public (AWS / VMware Cloud on AWS, Azure, GCP) and private (vSphere) cloud endpoints. It is designed to act as a conduit to consuming services from multiple cloud environments, with public cloud given more priority within the platform. The interface for Assembler is primarily focused on providing an ‘administrator’ view of the platform
Service Broker
It enables providers to aggregate native content from multiple clouds and platforms into a single catalog with role-based policies. It is focused on exposing service provisioning to end users: primarily cloud templates from Assembler and Amazon Cloud Formation templates. Its interface is focused on the ‘User’ view of the platform
Pipelines
It allows providers to help tenants speed software delivery and streamline troubleshooting with release pipelines and analytics. They can integrate development tools and automate code release. There are many possibilities to interact with virtually any system to make advanced pipelines for application and infrastructure delivery. Pipelines is mainly focused on the SRE/DevOps lead use cases.
Teams face several multi-cloud challenges that must be solved to achieve faster time-to-market and improved customer satisfaction, as well as increased throughput and business innovation capabilities. These challenges include*:
-
Application and Infrastructure Automation: The proliferation, integration and growth of a distributed development footprint of traditional and modern applications across clouds as well as growth in the use of software-defined infrastructure
-
Multi-cloud Service Brokering: The ability to manage services that originate from various cloud environments into a single, unified view; pre-existing compliance requirements and growing global security threats that seek entry points across large multi-cloud environments
- CI/CD Problem Identification and Resolution: Streamline problem identification across the automated CI/CD pipeline with analytics
TASKS
Before beginning this lab, please ensure you still have the API key you created in Lab 2, Task 3. If you didn't create this key, or cannot locate it follow the steps outlined in Lab 2 Task 3 steps 2 - 10 to create and save it, before proceeding with this lab.
- From your Virtual Desktop, launch the Web Browser (Google Chrome Preferred) to access the Cloud Console, if the window/tab is currently closed or you authentication has timed out. https://vmc.vmware.com/console/sddcs
You can also use the browser bookmark you created in the previous lab
NOTE: For instructions on accessing your Virtual Desktop please see "Lab 1 - Accessing the Environment"
- Login with your VMC on AWS console credentials provided by your instructor.
- Type <Your Assigned login Credentials> in the email address field i.e. vmcexpert#[email protected] (where # is your Environment ID, and XX is your assigned student number)
- Click NEXT
- Type VMware1! in the Password field
- Click SIGN IN
- Click the stacked squares in the upper right-hand
- Click VMware Aria Automation
- Click on the Assembler card to access Aria Automation Assembler service.
If Prompted again, login. - Bookmark this page for quick access in the future
- On the Guided setup Diagram page, Click Continue
- At the top of the page, Click Infrastructure
- In the left pane, scroll down, Click Cloud Proxies
- Click New
- Copy the Key and save it
- Click Done
You would typically download the OVA from here and deploy it into vCenter. In the case of this lab the OVA has been pre-staged in a content library in vCenter so we will use that for the deployment. We will however need this (OTK) key.
We will now deploy the Cloud Proxy into vCenter from the content library.
- Click your vCenter Brower tab. If the tab is no longer open or the authentication has timed out, open a new browser tab, click the vSphere - vCenter bookmark you created in lab 2 and login using the [email protected] account
- In the Host and Clusters Inventory View, right-click Compute-ResourcePool
- Click New Virtual Machine
- Choose Deploy from template, Click Next
- Select Aria Automation, Click Next
- Name the virtual Machine {Your_Login_Name}_aa-proxy (I.E. vmcexpert3-31_aa-proxy)
- Expand SDDC-Datacenter, Select CloudProxies, and click Next
- Click Next, on the Select a Compute Resource page
- Click Next on the Review details page
- Check I accept all license agreements on the license agreement page and click Next
- Select WorkloadDatastore on the select storage page and click Next
- Confirm sddc-cgw-network-1 network is selected and click Next on the Select network page
- On the Customize template page input the following values:
- VMware Cloud Service OTK: Paste in the OTK you copied in steps 12 - 14. If you no longer have the key repeat steps 2 - 14, where appropriate
- Cloud Proxy Display Name: AA-Proxy_{your student number} I.E. AA-Proxy_3-31
- Root Password: VMware1!
- Re-enter Root Password: VMware1!
- Leave all other fields blank
- Click Next
- Click Finish
- Allow the Appliance to deploy, and once completed, right-click it and Click Power --> Power-On
- Return to your Aria Assembler Browser tab, if the tab is no longer available, open an new tab and click the Cloud assembler bookmark.
Log in if prompted - In the Upper right-hand section of the page, Click Guided Setup, to view the setup step. You'll notice that the setup for Cloud Assembler begins with adding your Cloud Account(s) through Creating Cloud Template(s)
- Wait until your proxy shows up in the Cloud Proxies tab. Click the refresh circle as necessary.
- In the Left pane under Connections Click Cloud Accounts
- Click Add Cloud Account
- Click VMware Cloud on AWS
- Exit the wizard by selecting Create Cloud Account Manually in the blue box.
- Input the following values/selections to configure your cloud account:
- Name: {Your_Login_Name}_VMConAWS I.E. vmcexpert3-31_VMConAWS
- VMC API Token: Paste in the API Token you generated and save in lab 2
- Click Apply API Token
- SDDC Name: Select Your SDDC Note: Your SDDC Matched your Username
- vCenter Server Password: Paste in the vCenter Password
- Cloud Proxy: Choose the Cloud Proxy you deployed earlier
- Click Validate
- Allow Provisioning for theses Datacenters: Check the checkbox next to your SDDC (SDDC-Datacenter)
- Click Add.
This adds your VMC on AWS SDDC as a cloud account. Because the "Create a cloud zone for the selected datacenters" was checked. This process also created the cloud zone.
Cloud zones are specific to a region, you must assign them to a project. There is a many to many relationship between cloud zones and projects. Cloud Assembler supports deployment to the most popular public clouds including Azure, AWS and GCP as well as to vSphere.
- In the left pane under Configure, click Cloud Zones
- Identify your cloud zone tile and click Open
- Review the setting of the Summary tab
- In the Capabilities tags Field, Type platform:vmc and select it / Press Enter
- Click the Compute tab, and review the settings
- Click the drop-down, choose Manually select compute
- Click Add
- Select Cluster-1/Compute-ResourcePool
- Click Add
- Click Save
- Select Configure -> Cloud Zones
- Click New Cloud Zone
- Enter your Account/Region.
- If your account starts with vmcexpert2, then use AWS Cloud Account/us-west-2.
- If your account starts with vmcexpert3, then use AWS Cloud Account/EU-Central-1
- In the Name filled, Type {Your_Login_Name}_AWS i.e. vmcexpert3-31_AWS
- In the Capabilities tags Field, Type platform:aws and select it / Press Enter
- Select the Compute tab
- Change the selector menu from "Include all unassigned compute" to Manually select compute
- Click ADD
- Select your Availability Zone.
- For student accounts starting with vmcexpert2:
- If your student number is Even, select the US-west-2a Availability Zone.
- If your student number is Odd, select the US-west-2b Availability Zone
- For student accounts starting with vmcexpert3:
- If your student number is Even, select the EU-central-1a Availability Zone.
- If your student number is Odd, select the EU-central-1b Availability Zone
- For student accounts starting with vmcexpert2:
- Click ADD
- Click CREATE
At this point we have successfully created our Cloud Account, which instructs VMware Aria Automation cloud to use your VMC on AWS SDDC as a possible provisioning endpoint, and configured our Cloud Zone which further instructs VMware Aria Automation Cloud where in the SDDC (Folders, Clusters, Resource-Pools, etc...) It can provision to as well as any provisioning constraints. In the next task we will create a Project.
You create a project to which you add members and cloud zones so that the project members can deploy their cloud templates to the associated zones. As the Cloud Assembler administrator, you create a project for a development team. You can then assign a project administrator or you can operate as the project administrator.
When you create a cloud template, you first select the project to associate it with. The project must exist before you can create the cloud template
Prerequisites for a Project include:
- Configured Cloud Zone(s)
- Identify a designated Project Administrator
- If using Active Directory verify it has been configured
- In your VDI Desktop, return to your Cloud Assembler Browser tab, if the tab is no longer available, open an new tab and click the Cloud Assembler bookmark.
Log in if prompted - Under Infrastructure tab, Click Projects in the left pane
- Click New Project
- Name the Project {Your_Login_Name}_Multi-Cloud I.E. vmcexpert3-31_Multi-Cloud
- Click the Users tab
- Click Add Users
- Type in and select {Your Username} (e.g. [email protected])
- Check Administrator to assign the administrator role
- Click Add
- Click the Provisioning tab
- Click Add Zone --> Cloud Zone
- Select {Your_VMC-on-AWS_Cloud_Zone}
- Leave all other fields with their default value and click Add
- Repeat the steps 11 - 13 to Add your AWS Cloud Zone
- Click Create to create the your Project
Flavor mapping - Groups a set of target deployment sizings for a specific cloud account/region in VMware Aria Automation Cloud using natural language naming.
Flavor mapping lets you create a named mapping that contains similar flavor sizings across your account regions. For example, a flavor map named standard_small might contain a similar flavor sizing (such as 1 CPU, 2 GB RAM) for some or all available account/regions in your project. When you build a cloud template, you pick an available flavor that fits your needs.
Image mapping - Groups a set of predefined target operating system specifications for a specific cloud account/region in VMware Aria Automation Cloud by using natural language naming.
Cloud vendor accounts such as Microsoft Azure and Amazon Web Services use images to group a set of target deployment conditions together, including OS and related configuration settings. vCenter and NSX-based environments, including VMware Cloud on AWS, use a similar grouping mechanism to define a set of OS deployment conditions. When you build and eventually deploy and iterate a cloud template, you pick an available image that best fits your needs.
Task 3.1 - Create Flavor Mapping
- In your VDI Desktop, return to your Cloud Assembler Browser tab, if the tab is no longer available, open an new tab and click the Cloud Assembler bookmark.
- Log in if prompted
- Under Infrastructure tab, Click Flavor Mapping in the left pane
- Click New Flavor Mapping
- Define a Small Flavor Mapping to AWS and VMC on AWS as follows: Note, you will need to click the blue plus on the right hand side to create the second line in the mapping.
Key | Value |
---|---|
Name |
{Your_Login_User_Name}_Small I.E. vmcexpert3-31_Small |
Account / Region | Value |
---|---|
{Your_VMCExpert_AWS_Region} /us-west-2 if vmcexpert2 {Your_VMCExpert_AWS_Region} /eu-central-1 if vmcexpert3 |
t2.small |
{Your_VMConAWS_Cloud _Zone} | CPU Count: 1; Memory: 2GB |
- Click Create
Task 3.2 - Create Image Mappings
- Under Infrastructure tab, Click Image Mapping in the left pane
- Click New Image Mapping
- Define an Ubuntu Mapping to VMC on AWS as follows:
Key | Value |
---|---|
Name |
{Your_User_Name}_Linux-Desktop |
Account / Region | Image |
---|---|
{Your_VMConAWS_Cloud _Zone} | {Your_User_Name_Content_Library} / Ubuntu-21_Desktop |
- Click Create
- Click New Image Mapping
- Define another Ubuntu Mapping to VMC on AWS and Native AWS as follows:
Key | Value |
---|---|
Name |
{Your_User_Name}_Ubuntu |
Account / Region | Image |
---|---|
{Your_AWS_Cloud _Zone} | for vmcexpert2: ami-074251216af698218 for vmcexpert3: ami-042ad9eec03638628 |
{Your_VMC_AWS_Cloud _Zone} | vmc-content-library / Ubuntu |
- Click Create
Task 3.3 - Create Network Profiles
- Under Infrastructure tab, Click Network Profiles in the left pane
- Click New Network Profile
- Define an Existing SDDC Network to VMC on AWS as follows:
Account / Region |
---|
{Your_VMConAWS_Cloud _Zone} |
Key | Value |
---|---|
Name |
{Your_User_Name}_SDDC-Network-1 |
- In the Capability Tag field type platform:vmc, select it
- Click the Networks Tab
- Click Add Network
- Select Your SDDC Network (sddc-cgw-network-1)
- Click ADD
- Click CREATE
We will now create a network profile for AWS
- Click New Network Profile
- Define an Existing SDDC Network to AWS as follows:
Account / Region |
---|
{Your_AWS_Cloud _Zone} |
Key | Value |
---|---|
Name |
{Your_User_Name}_AWS_Network-1 |
- In the Capability Tag field type:
- platform:aws, select it
- network:vmcexpert#-xx, where # is your workshop environment number and xx is your student number (i.e network:vmcexpert2-31) Press the Return Key.
- Click the Networks Tab
- Click Add Network
- In the filter box on the top right, enter your student number (i.e. 2-31) and press the Return Key
- Select Your AWS Subnet (I.E. VMCEXPERT2-31) which matches the Zone that you selected previously. Ignore any other Network, if present.
- For student accounts starting with vmcexpert2:
- If your student number is Even, select the US-west-2a Availability Zone.
- If your student number is Odd, select the US-west-2b Availability Zone
- For student accounts starting with vmcexpert3:
- If your student number is Even, select the EU-central-1a Availability Zone.
- If your student number is Odd, select the EU-central-1b Availability Zone
- For student accounts starting with vmcexpert2:
- Click ADD
- Click ADD
- Click CREATE
Task 3.4 - Create Storage Profile
Storage Profiles describe the kind of storage to be deployed. Storage is usually profiled according to characteristics such as service level or cost, performance, or purpose, such as backup.
A storage profile defines cloud-specific properties used to customize a disk. Tags in the profile describe disk storage capabilities.
Storage profiles are regional settings. Establish baseline storage configurations in each cloud.
Consume Storage Based Policy Management (SBPM) for vSAN. Establish IOPS expectations in public cloud environments.
- Under Infrastructure tab, Click Storage Profiles in the left pane
- Click New Storage Profile
- Define an Existing SDDC Network to VMC on AWS as follows:
Field | Value/Selection |
Account/Region | {Your_VMC _on_AWS Region} |
Name |
{Your_User_Name}_SDDC_StorageProfile I.E. vmcexpert2-31_SDDC_StorageProfile |
Storage Policy |
VMC Workload Storage Policy - Cluster-1 |
Datastore / Cluster | WorkloadDatastore |
- Click CREATE
Deployments begin with cloud templates, formerly called blueprints, which are encoded specifications that define machines, applications, and services to create on cloud resources by way of Cloud Assembler.
Templates can target specific cloud vendors or be cloud agnostic. The cloud zones assigned to your project determine which approach you might take. Check with your cloud administrator so that you know what kind of resources make up your cloud zones.
Cloud Assembler template creation is an infrastructure-as-code process. You start by adding resources in the design canvas. Then, you complete the details using the code editor. The code editor allows you to type code directly or enter values in a form.
- In your VDI Desktop, return to your Cloud Assembler Browser tab, if the tab is no longer available, open an new tab and click the Cloud Assembler bookmark.
- Log in if prompted
- Under Design tab, Click New From --> Blank Canvas in the left pane
- Define the Cloud template as follows:
- Name: {Your_User_Name}_Linux-Desktop
- Project: {Select_Your_Project}
- Click Create
- From the left pane drag the following items onto the Canvas:
- Under vSphere - Machine
- Under vSphere - Network
- Mouse over the left edge on the vSphere Machine on the canvas. When a dot appears,
select and drag it to the cloud_vSphere network to connect the Machine to the Network - In the right pane make the following changes:
- Under resources rename Cloud_vSphere_Machine_1 to Desktop-{studentNumber} (i.e. Desktop-2-31)
- Change the image setting from '' to {Your_User_Name}_Linux-desktop
- Change the totalMemoryMB from 1024 to 2048
- Under resources rename Cloud_vSphere_Machine_1 to Desktop-{studentNumber} (i.e. Desktop-2-31)
- Click Test to validate the template
- Click Deploy
- Name the Deployment {Your_User_Name}_Ubuntu-Test
- Click Deploy
- After about 60 seconds the VM should begin it's deployment in vCenter
- Switch over to your vCenter browser tab or open an new tab to vCenter and login as [email protected] if required
- In the Inventory you should see the Machine being provisioned
- Continue monitoring the deployment in VMware Aria Automation and wait until it is successful
- In vSphere, feel free to open console to the Virtual Machine and poke around
- Back in the Cloud Assembler Browser tab, Click Close
- Click the Design Tab and Click Close
- Click the Infrastructure Tab, then Activity->Requests in the left pane
- Click your Machine Provisioning request to view its details
- Review the Steps of the Machine provisioning process
- Move the Dev Mode Slider, to view the individual tasks
Click Close
Conclusion
VMware Cloud Assembler is used to connect to your public and private cloud providers so that you can deploy machines, applications, and services that you create to those resources. You and your teams develop cloud-templates-as-code in an environment that supports an iterative workflow, from development to testing to production. At provisioning time, you can deploy across a range of cloud vendors. The service is a managed VMware SaaS and NaaS-based framework.
Cloud Assembler is a cloud template development and deployment service. You and your teams use the service to deploy machines, applications, and services to your cloud vendor resources.
As a Cloud Assembler administrator, generally referred to as a cloud administrator, you set up the provisioning infrastructure and create the projects that group users and resources.
0 Comments
Add your comment