Service Installer For VMware Tanzu

TKO on vSphere VDS

TKO on vSphere VDS TKGs

Install the SIVT OVA

Download OVAs from Cloud Services Portal (CSP)

https://buildweb.eng.vmware.com/ob/21480482/

Change Service Installer Root Password. Your password should have at least one letter, one capital letter, one number, not a dictionary word. Password must be at least 4 characters. Password Cl0udFoundry!

NTP Server pool.ntp.org

Default Gateway The default gateway address for this VM. Leave blank if DHCP is desired. 192.168.20.1

Domain Name The domain name of this VM. Leave blank if DHCP is desired. sivt

Domain Search Path The domain search path (comma or space separated domain names) for this VM. Leave blank if DHCP is desired. homelab.io

Domain Name Servers The domain name server IP Addresses for this VM (comma separated). Leave blank if DHCP is desired. 192.168.10.5

Management Network IP Address The IP address for this interface. Leave blank if DHCP is desired. 192.168.20.12

Management Network Netmask The netmask or prefix for this interface. Leave blank if DHCP is desired. 255.255.255.0

  1. After the deployment is completed, power on the Service Installer for the VMware Tanzu bootstrap VM.

    You can access the Service Installer UI at http://192.168.10.20:8888/http://sivt.homelab.io:8888/#/ui.

    To access the Service Installer CLI, log in over SSH. Enter ssh root@192.168.10.20.

Configure Tanzu Supervisor cluster on vSphere

Infrastructure

DNS and NTP Settings

DNS SERVER/S: 192.168.10.5 DNS SEARCH DOMAIN: homelab.io NTP SERVER/S: pool.ntp.org

IaaS Provider

API_TOKEN: “mRJROYTklBzfbyAn1Qplye0_G4fZ784mudioP-HSDeqSojEroEDI8R1sLTIWBLCC”

https://downloads.avipulse.vmware.com/SoftwaresDownloads/Version-22.1.3/controller_sha1-22.1.3-9096.ova?Expires=1677558269&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9kb3dubG9hZHMuYXZpcHVsc2Uudm13YXJlLmNvbS9Tb2Z0d2FyZXNEb3dubG9hZHMvVmVyc2lvbi0yMi4xLjMvY29udHJvbGxlcl9zaGExLTIyLjEuMy05MDk2Lm92YSIsIkNvbmRpdGlvbiI6eyJEYXRlTGVzc1RoYW4iOnsiQVdTOkVwb2NoVGltZSI6MTY3NzU1ODI2OX19fV19&Signature=l0TiKdkq9T6xHKbyXbQXT7JD3iK8e2kkkPtapGWHWbqCNbA0LdWL2nL1TS-oSyVhSPhT2zdsAy~1XkBk7mLv9pz1soxD0ISCYVcB5fUoFDLljLQlqsR-gZH0eoFJmMq8u6LRkHgnG7HqBAFSPU3KS4J6B-mQrYg3RzQoFOoS0PbCWc6GZ58wpoWM8NFKoXApSbmWKIAbRwhuG9TIf-rclmJgy~LwROyLL96XH6eJhZvHDFekKQ7pvMGBkeAg2QBvkZUMi71eu41Z3jiImSh7IsexNGm6bO9FY5TX3H71JtR-alnDVHPY2iRU34zijP~Q8qDNvk06EwCxrQLikT33dw__&Key-Pair-Id=KVHPPUR9VX6BJ

To Enable Workload Control Plane

For Tanzu with vSphere(VDS):

    Enable WCP:
    arcas --env vsphere --file <path_to_input_file>
    [--avi_configuration][--avi_wcp_configuration][--enable_wcp]
    Create Namespace and Workload Cluster:
    arcas --env vsphere --file <path_to_input_file>
    [--create_supervisor_namespace][--create_workload_cluster][--deploy_extensions]
    Gracefully shutdown WCP:
    arcas --env vsphere --file <path_to_input_file>
    [--wcp_shutdown]
    Bring back up the WCP cluster:
    arcas --env vsphere --file <path_to_input_file>
    [--wcp_bringup]

arcas –env vsphere –file /opt/vmware/arcas/src/vsphere/vsphere-dvs-tkgs-wcp.json –avi_configuration –avi_wcp_configuration –enable_wcp –verbose

arcas –env vsphere –file /opt/vmware/arcas/src/vsphere/vsphere-dvs-tkgs-namespace.json –create_workload_cluster –verbose

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 #sivt

kubectl vsphere login –server 192.168.15.21 –insecure-skip-tls-verify –vsphere-username “administrator@vsphere.local

tdnf update -y

cat > /etc/yum.repos.d/gh.repo « “EOF” [gh-cli] name=packages for the GitHub CLI baseurl=https://cli.github.com/packages/rpm enabled=1 gpgkey=http://keyserver.ubuntu.com/pks/lookup?op=get&search=0xc99b11deb97541f0 EOF tdnf makecache tdnf repolist tdnf install gh –nogpgcheck -y

https://velp.eng.vmware.com/my/licenses https://customerconnect.vmware.com/account-registration https://www.vmware.com/account/secure/productRegistration.do?action=existingCustomer https://onevmw.sharepoint.com/teams/WWSSO-License-Management-Info/New%20License%20Management%20Request%20Portal%20to%20go%20live%20O/Forms/AllItems.aspx?id=%2Fteams%2FWWSSO%2DLicense%2DManagement%2DInfo%2FNew%20License%20Management%20Request%20Portal%20to%20go%20live%20O%2FInternal%5FUse%5FLicense%5FRequests%2DRev%2D3%2D24%2D2022%2Epdf&parent=%2Fteams%2FWWSSO%2DLicense%2DManagement%2DInfo%2FNew%20License%20Management%20Request%20Portal%20to%20go%20live%20O https://marketplace.cloud.vmware.com/services/?category=9540e0b5-5a3d-4449-89d4-4b3f5d0a9878 https://vault.vmware.com/group/nsx/avi-networks-technical-resources

Please check the Subscription details page for more details.

Navigate to Subscription details page to get the Subscription URL. Steps to create a subscribed catalog with this URL:

On the Catalogs tab, click Add Catalog.
Type a catalog name and optional description.
Select Subscribe to an external catalog.
Use the URL in Subscription URL text box.
Fill in other catalog settings and click Finish.

Note : On-Prem supports deployment in vSphere, vCD and VCF.

Services

systemctl list-unit-files –type=service grep enabled

netstat -lntp Active Internet connections (only servers) Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name tcp 0 0 127.0.0.1:8001 0.0.0.0:LISTEN 16472/kubectl tcp 0 0 0.0.0.0:5000 0.0.0.0: LISTEN 1010/python3 tcp 0 0 127.0.0.1:15051 0.0.0.0:LISTEN 1563/capengine tcp 0 0 0.0.0.0:587 0.0.0.0: LISTEN 1265/sendmail: acce tcp 0 0 127.0.0.1:17071 0.0.0.0:LISTEN 1562/ms_controller tcp 0 0 0.0.0.0:80 0.0.0.0: LISTEN 1224/nginx tcp 0 0 0.0.0.0:22 0.0.0.0:LISTEN 14470/sshd tcp 0 0 0.0.0.0:8888 0.0.0.0: LISTEN 1121/arcas-ui-servi tcp 0 0 0.0.0.0:25 0.0.0.0:LISTEN 1265/sendmail: acce tcp6 0 0 :::8000 ::: LISTEN 1562/ms_controller tcp6 0 0 ::1:8001 :::LISTEN 16472/kubectl tcp6 0 0 :::32771 ::: LISTEN 1015/java tcp6 0 0 :::5480 :::LISTEN 1404/vami-lighttpd tcp6 0 0 127.0.0.1:13033 ::: LISTEN 1015/java tcp6 0 0 :::22 :::LISTEN 14470/sshd tcp6 0 0 127.0.0.1:42713 ::: LISTEN 1015/java

systemctl stop arcas-ui systemctl disable arcas-ui

Clean up

arcas –env vsphere –file /opt/vmware/arcas/src/vsphere/vsphere-dvs-tkgs-wcp.json –cleanup –verbose

[root@sivt:~/workspace/tanzu-quickstart] # arcas --env vsphere --file /opt/vmware/arcas/src/vsphere/vsphere-dvs-tkgs-wcp.json --cleanup --verbose
Fetching deployed components from environment
INFO :Environment details captured successfully
INFO :Setting GOVC environment variables
INFO :Setting GOVC environment variables
INFO :Below is the list of all namespaces found in cluster - k8s-cluster
INFO :['supervisor-ns1']
INFO :Connecting to workload cluster...
INFO :logging into cluster - 192.168.15.21
INFO :Avi-se-fibxn is present in datacenter homelab-dc
INFO :Avi-se-fjykg is present in datacenter homelab-dc
INFO :tkg-vsphere-workload resource pool does not exist.
INFO :tkg-vsphere-shared-services resource pool does not exist.
INFO :tkg-vsphere-tkg-Mgmt resource pool does not exist.


    Skip cleanup of Content Libraries and Downloaded Kubernetes OVAs from vcenter env (Y/N) ? : y
Content-libraries and Kubernetes OVA will not be removed...



Below resources from environment will be Cleaned-up.


    For vSphere on Tanzu, cleanup is performed by disabling Workload Control Plane (WCP) on cluster

    Workload Control Plane (WCP) will be deactivated on cluster: [ k8s-cluster ]

    Namespaces: ['supervisor-ns1']

    Workload Clusters: ['shared-services']

    NSX Load Balancer VMs: ['avi.homelab.io', 'Avi-se-fibxn', 'Avi-se-fjykg']

    Resource Pools: ['tkg-vsphere-alb-components']

Please confirm if you wish to continue with cleanup (Y/N) ? : y
Proceeding with cleanup...
INFO :Environment details captured successfully
INFO :Setting GOVC environment variables
INFO :Setting GOVC environment variables
INFO :WCP is enabled and it's status is RUNNING
INFO :Proceeding to deactivate WCP on cluster - k8s-cluster
INFO :Fetching list of namespaces and clusters deployed
INFO :Below is the list of all namespaces found in cluster - k8s-cluster
INFO :['supervisor-ns1']
INFO :Connecting to workload cluster...
INFO :logging into cluster - 192.168.15.21
INFO :List of deployed workload clusters
INFO :['shared-services']
INFO :Checking WCP Status
INFO :Cluster config status REMOVING
INFO :Waited 20s, retrying
INFO :Cluster config status REMOVING
INFO :Waited 40s, retrying
INFO :Cluster config status REMOVING
INFO :Waited 60s, retrying
INFO :Cluster config status REMOVING
INFO :Waited 80s, retrying
INFO :Cluster config status REMOVING
INFO :Waited 100s, retrying
INFO :Cluster config status REMOVING

My Evaluations

https://customerconnect.vmware.com/eval

Products

VMware NSX 4.1.0.2 https://customerconnect.vmware.com/downloads/details?downloadGroup=NSX-4102&productId=1324

VMware NSX Data Center Enterprise Plus per Processor 852AP-VNK0K-G8TD0-0C30M-84F01

VMware NSX Advanced Load Balancer Enterprise: 1 Service Unit for 1 year term license. 90495-JD1E1-N8HM8-02A2P-C920J

My Licenses

You can find your available licenses below. There are only two rules in employee license club; do not use these for production and do not share them with others.

Name License Key Date Added All New Product Licenses starting with vSphere 8 will be put in your Customer Connect Account one week after enrollment on this portal! 4V03M-1WL50-27RL2-AJ3NH-9H9K4 2023-04-27 19:27:05 HCX-AD-NXEPL-C-VMware HCX Enterprise 32 Processor-Exp-August_31_2023 RJ6C7-MX081-281E9-0K0AH-28365 2023-06-26 10:12:33 HZ7-AP-ADC-C-VMware Horizon Apps Advanced, v7 100 Concurrent User-Exp-August_31_2023 DJ091-HR281-E8LCJ-0872H-90H7J 2023-06-26 10:17:07 HZ7-ENC-C-VMware Horizon 7 Enterprise 500 Concurrent User-Exp-August_31_2023 U0693-KY504-E8LAT-0CWR2-0R2JN 2023-06-26 10:19:13 VR8-ATADO25-AD-C VMware vRealize Automation SaltStack SecOps add-on to vRealize Automation per OSI (1)Exp-August_31_2023 MN295-MC0D0-58LLC-0U9HH-84Z4M 2023-06-26 10:22:25 ST6-EN-C-VMware Virtual SAN 6 Enterprise for 32 processors-Exp-August_31_2023 RN61M-RJJD6-V83A0-0V2RK-0XY21 2023-06-26 10:23:18 VRNIU-SUB-1Y-C - VMware vRealize Network Insight Universal - 32 CPU-Exp-August_31_2023 E168J-MKL0K-188M1-0R1KH-015PJ 2023-06-26 10:24:09 VR7-OENO-C-VMware vRealize Operations 7 Enterprise (100 OSI)-Exp-August_31_2023 32 CPU-Exp-August_31_2023 T1084-K8191-L8KEJ-085K0-8RR3M 2023-06-26 10:30:29 VR-LIS8-OSI-C-VMware vRealize Log Insight 8 (100 OSI)-Exp-August_31_2023 W1037-PG012-R8RCJ-0H626-3EQ35 2023-06-26 10:32:58 VR7-ATEN-C-VMware vRealize Automation 7 Enterprise (100 OSI)-Exp-August_31_2023 EJ626-M8145-E8KAT-0V6U2-0E43H 2023-06-26 10:39:59 HZ8-AP-ADC-C-VMware Horizon Apps Advanced, v8 100 Concurrent User-Exp-August_31_2023 854CJ-M705M-K8TJR-0V4A6-0XU20 2023-06-26 11:00:07 NX-ALB-SC-C VMware NSX Advanced Load Balancer - 32 Service Core-Exp-August_31_2023 9M487-HZH1P-28KE1-021U6-3RCN1 2023-06-26 11:00:56 TEL-CLD-AUTO-C - VMware Telco Cloud Automation per processor (32 CPU)-Exp-August_31_2023 WJ292-MK0DL-K82K0-0H1R6-0DMJH 2023-06-26 11:01:37 VCA-CDA4-VC-C VMware Cloud Director Availability version 4 for 32 CPU - Exp-August_31_2023 8N6AJ-MQ310-68HH9-0L8UK-AXRQ0 2023-06-26 11:02:18 VCS6-STD-C-VMware vCenter Server 6 Standard for vSphere 6 (2 Instances)-Exp-August_31_2023 MN4A0-RCJEH-G8V9E-09CAH-C9KMP 2023-06-26 11:03:12 VR8-ATEN-C-VMware vRealize Automation 8 Enterprise (100 OSI)-Exp-August_31_2023 X5682-M3113-780FJ-0268M-CM03N 2023-06-26 11:03:58 VR8-ATSTDP-C VMware vRealize Automation 8 Standard Plus per OSI (100) - Exp - August_31_2023 8H60Q-ME0D0-J8VLR-036HH-9EGMM 2023-06-26 11:05:10 VR8-OAMAD-C-VMware vRealize Operations 8 Application Monitoring Add-On (32 PLU)-Exp-August_31_2023 D548N-M4083-K8TG9-0H9AK-0N9JJ 2023-06-26 11:05:52 VS6-EPL-C-VMware vSphere 6 Enterprise Plus for 32 processors-Exp-August_31_2023 E1220-MY2D3-Z8V88-0U30H-CDU0R 2023-06-26 11:06:36 WS16-PRO-C VMware Workstation 16 Pro for Linux and Windows, ESD-Exp-August_31_2023 5H63J-WGK8H-P8NJ3-0JCK0-0NXQN 2023-06-27 11:25:21

This project is for educational and home lab purposes.