tag:blogger.com,1999:blog-59331079026891585232024-03-19T14:18:49.407+05:30vCloudNotes : Let's Learn TogetherWelcome to my blog...this blog focuses on day 2 day Cloud Ops & VMware virtualization stuff...keep learning :)Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.comBlogger158125tag:blogger.com,1999:blog-5933107902689158523.post-57682515923381351622022-03-02T14:40:00.003+05:302022-03-02T14:40:30.789+05:30VMware vExpert 2022 <p><span style="font-family: inherit;"><span style="background-color: white; color: #222222;">I am very honored to be named a </span><a href="https://vexpert.vmware.com/" style="background-color: white; color: #888888; text-decoration-line: none;" target="_blank">VMware vExpert</a><span style="background-color: white; color: #222222;"> again... and yeah it was announced on Feb 17, 2022 however at that time somehow missed that email ;)</span></span></p><p><span style="font-family: inherit;"><a href="https://blogger.googleusercontent.com/img/a/AVvXsEg0RfoxZ4IWujJYSDMNESkDnpj-TOgtXO0InaoCRVfnAGtApym6PiFTOjz5gGe_Ff2PPHPTJjqVDVMhDn8fnjeBXIjy1hnOab_9Q-Fgc0zC-8Czj57TpPo2wQqlHPJwNodZMCPCLp70i1Wq45FgQpJ-HvOB5NuF3ZlJ-3CNwxysBlvxY4ctlEd3-XUQKg=s1061" imageanchor="1" style="clear: left; display: inline !important; margin-bottom: 1em; margin-right: 1em; text-align: center;"><img border="0" data-original-height="717" data-original-width="1061" height="135" src="https://blogger.googleusercontent.com/img/a/AVvXsEg0RfoxZ4IWujJYSDMNESkDnpj-TOgtXO0InaoCRVfnAGtApym6PiFTOjz5gGe_Ff2PPHPTJjqVDVMhDn8fnjeBXIjy1hnOab_9Q-Fgc0zC-8Czj57TpPo2wQqlHPJwNodZMCPCLp70i1Wq45FgQpJ-HvOB5NuF3ZlJ-3CNwxysBlvxY4ctlEd3-XUQKg=w200-h135" width="200" /></a><a href="https://blogger.googleusercontent.com/img/a/AVvXsEjgsVxa1B88ohRzW9SZ26Ob1hTTwQhhnTMOK-GuBdYo8K8srNSlprZEbl5eGlqsJh-ZA5NJOlJXUMM5mrgGqIWp6tXLAiQHp_954vXBZXguA-_maMOMCw5K-sYoCaKanfEsp_0KUN1Lo_gS5XQm1-gpdkRCWtRAkYm4VTyf2FVKkT9HKU_elogY8Y1y2g=s1061" imageanchor="1" style="margin-left: 1em; margin-right: 1em; text-align: center;"><img border="0" data-original-height="717" data-original-width="1061" height="135" src="https://blogger.googleusercontent.com/img/a/AVvXsEjgsVxa1B88ohRzW9SZ26Ob1hTTwQhhnTMOK-GuBdYo8K8srNSlprZEbl5eGlqsJh-ZA5NJOlJXUMM5mrgGqIWp6tXLAiQHp_954vXBZXguA-_maMOMCw5K-sYoCaKanfEsp_0KUN1Lo_gS5XQm1-gpdkRCWtRAkYm4VTyf2FVKkT9HKU_elogY8Y1y2g=w200-h135" width="200" /></a></span></p><p><span style="background-color: white; color: #222222;"><span style="font-family: inherit;">I would like to Congratulations to all those who made in the vExpert 2022 list.</span></span></p><div class="separator" style="background-color: white; clear: both; color: #222222;"><span style="font-family: inherit;">VMware vExpert directory is available here.. <a href="https://vexpert.vmware.com/directory" style="color: #888888; text-decoration-line: none;">https://vexpert.vmware.com/directory</a></span></div><div dir="ltr" style="background-color: white; color: #222222;" trbidi="on"><div><span style="background-color: transparent;"><span style="font-family: inherit;"><br /></span></span></div><div><span style="font-family: inherit;">And my vExpert profile can be found <a href="https://vexpert.vmware.com/directory/355" style="color: #2288bb; text-decoration-line: none;" target="_blank">here</a>.</span></div><span style="font-family: inherit;"><br />Thank you, VMware... :)</span></div>Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com0tag:blogger.com,1999:blog-5933107902689158523.post-61553063083981269132021-03-28T15:12:00.006+05:302021-03-28T17:38:00.086+05:30AWS Single Sign-on and Azure AD Application Certification rotation<p>In this quick post would discuss the process and steps involved in rotating the expiring Azure AD application certification configured for AWS SSO login. </p><p>This is applicable where you have your AWS account SSO configured with Azure Active Directory and the associated application password is about to expire or maybe already expired.</p><p>Before you start, make sure to have the appropriate AWS IAM and Azure AD permission or involve the teams having the required access to create an application certificate (in Azure) and rotate the same in AWS.</p><p>Now, login to AWS and take the backup of currently used metadata.</p><p></p><ol style="text-align: left;"><li>Login to <b>AWS </b>=> Go to <b>IAM </b>=> Click on <b>Dashboard </b>or from the IAM menu, click on<b> Identity Provider</b></li><li>Click on <b>Azure AD => </b>From Metadata Document section, Download the current metadata file for backup purpose</li></ol><div>Now Login to Azure,</div><div><br /></div><div><ol style="text-align: left;"><li>Go to <b>Azure Active Directory</b> => Select <b>Enterprise applications</b> from left menu options</li><li>From the Enterprise applications section, Select the <b>correct </b>AWS Application used for SSO </li><li>No on the AWS Application screen, go to Single Sign-on option => SAML Signing Certificate and click Edit<div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg4hA6kTHqeABcE58ThW8NPDChlZkPb4fIsLaURPgQiQlRqxSZvYEcHwBg23fwi26adWkNWp31dcYN1g_VrALTk3uKFrrK3TS7qo8d3mnZ0mNZ7YbaH251ZTkKP6oP_u0pqb6TFxr_xb9S2/s1036/2.jpg" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="606" data-original-width="1036" height="234" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg4hA6kTHqeABcE58ThW8NPDChlZkPb4fIsLaURPgQiQlRqxSZvYEcHwBg23fwi26adWkNWp31dcYN1g_VrALTk3uKFrrK3TS7qo8d3mnZ0mNZ7YbaH251ZTkKP6oP_u0pqb6TFxr_xb9S2/w400-h234/2.jpg" width="400" /></a></div></li><li>On SAML Signing Certificate Page, Create a new Certificate, Save and mark it as Active, close the window<div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEibO9FJTJ7WmfTG_rT8VcUXn5nOvHjl1ZA1_fYW-kZ_pGiyiCJnGFRrS-MqW6adoQYic0bbg2os_fhfm6wJNXsow92lELFY5ItZaVMH-gT1n_9JHzCRPnDQFTkY2wzlth4BfEne-eKEikaf/s798/3.jpg" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="384" data-original-width="798" height="193" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEibO9FJTJ7WmfTG_rT8VcUXn5nOvHjl1ZA1_fYW-kZ_pGiyiCJnGFRrS-MqW6adoQYic0bbg2os_fhfm6wJNXsow92lELFY5ItZaVMH-gT1n_9JHzCRPnDQFTkY2wzlth4BfEne-eKEikaf/w400-h193/3.jpg" width="400" /></a></div></li><li>Now on SAML Signing Certificate Page, verify the certificate Expiry date and Download the <b>Federation Metadata XML<div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiVteQ3TA7NBgHBvVyK7Zb_iVylzUypyFPaFZMh_xm-ghg1o7xJ01mVT67kdAlvIFYjKJo5BPv74K4g1YQGI6cfnTZEeV5CnnWNmiwQxHS8H3k6eNhBWJL2hyhpSI0TzyuJ2yfWAwpfihm_/s726/4.jpg" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="241" data-original-width="726" height="133" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiVteQ3TA7NBgHBvVyK7Zb_iVylzUypyFPaFZMh_xm-ghg1o7xJ01mVT67kdAlvIFYjKJo5BPv74K4g1YQGI6cfnTZEeV5CnnWNmiwQxHS8H3k6eNhBWJL2hyhpSI0TzyuJ2yfWAwpfihm_/w400-h133/4.jpg" width="400" /></a></div><br /><br /></b></li><li>Go to <b>AWS account IAM Identity Provider</b> Section, Steps are mentioned above</li><li>Within the Metadata Document section, this time Click on Replace Metadata, on pop-up window Type replace and Click on Replace tab. Just in case if you didn't download the current metadata file earlier, do that so just in case of any issue you could revert<div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhARU0AUXs5s_NSvpMASljE75nE6CY4v65XbnRPRdp6U1hUUfgMBIACX-xgzt7Vq136ldUGMqJThTgXoCG57ZLioU1qhGrjLKe8RJBS0TTby5YWQRP_OhcahWvN4kVgdiWtgDu24otPpj-c/s681/5.jpg" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="348" data-original-width="681" height="205" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhARU0AUXs5s_NSvpMASljE75nE6CY4v65XbnRPRdp6U1hUUfgMBIACX-xgzt7Vq136ldUGMqJThTgXoCG57ZLioU1qhGrjLKe8RJBS0TTby5YWQRP_OhcahWvN4kVgdiWtgDu24otPpj-c/w400-h205/5.jpg" width="400" /></a></div></li><li>Now browse and select the Federation Metadata XML file downloaded after Azure AD application certificate rotation and click open</li><li>It would take the next few seconds and you are done.</li><li>Test your AWS Single Sign-on URL, you can also perform the testing from within the Azure Application SAML bases Single sign-on page.</li></ol><div><b>Note: </b>If you are using an AD account to replace the AWS Identity provider Metadata then make sure to log in prior to marking the newly created Azure application certificate active. Also, don't refresh the AWS login page until you replace the metadata.</div><div>To avoid this, simply use your AWS root account ;)</div><div><br /></div><div>Related Demo: </div><div class="separator" style="clear: both; text-align: center;"><iframe allowfullscreen="" class="BLOG_video_class" height="279" src="https://www.youtube.com/embed/EZp6o3vitxg" width="475" youtube-src-id="EZp6o3vitxg"></iframe></div><br /><div>That's it, thanks :)</div></div><p></p>Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com0tag:blogger.com,1999:blog-5933107902689158523.post-30362876394916359042021-02-12T17:00:00.004+05:302021-02-14T23:52:01.574+05:30VMware vExpert 2021 Announced<div style="text-align: left;"><span style="font-family: inherit;"><span style="background-color: white; color: #222222;">I am very honored to be named a </span><a href="https://vexpert.vmware.com/" style="background-color: white; color: #888888; text-decoration-line: none;" target="_blank">VMware vExpert</a><span style="background-color: white; color: #222222;"> again, this is my 7th…..Congratulations to all those who made in the vExpert 2021 list.</span></span></div><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiT0z7rWsiTn3t_PnEaD9CDvQd0l40eCRjl72o3XZuFhhwG6lSfK1QkA5CUiIXSAf_ql48S7a0ekTPGVbPTSA5m2KTdjjVf0JNaF9CuAnt-9Wi8KhCLuixQ2wEtfrCSbMmRKSeaMQVum-9t/s1061/generate.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="717" data-original-width="1061" height="135" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiT0z7rWsiTn3t_PnEaD9CDvQd0l40eCRjl72o3XZuFhhwG6lSfK1QkA5CUiIXSAf_ql48S7a0ekTPGVbPTSA5m2KTdjjVf0JNaF9CuAnt-9Wi8KhCLuixQ2wEtfrCSbMmRKSeaMQVum-9t/w200-h135/generate.png" width="200" /></a><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjcaMSLrJjTsyg7VehnqgESZhpPGkkZ7v_U8AmG5uUr014SB2qtaHvw4es98rebiooltlonFdcXod5I6utMHP9njhOyVgzENcmhGPZUIOBUANY6S7PsRKc3yumG1t9orli13HXX8LJMgTrK/s1061/stars.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="717" data-original-width="1061" height="135" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjcaMSLrJjTsyg7VehnqgESZhpPGkkZ7v_U8AmG5uUr014SB2qtaHvw4es98rebiooltlonFdcXod5I6utMHP9njhOyVgzENcmhGPZUIOBUANY6S7PsRKc3yumG1t9orli13HXX8LJMgTrK/w200-h135/stars.png" width="200" /></a></div><span style="font-family: inherit;"><br /></span><div class="separator" style="clear: both; text-align: left;"><span style="font-family: inherit;"><span style="color: #222222;">VMware vExpert directory is available here.. </span><a href="https://vexpert.vmware.com/directory" style="color: #888888; text-decoration-line: none;">https://vexpert.vmware.com/directory</a></span></div><div dir="ltr" style="background-color: white; color: #222222;" trbidi="on"><div><span style="background-color: transparent;"><span style="font-family: inherit;"><br /></span></span></div><div><span style="font-family: inherit;">And my vExpert profile can be found <a href="https://vexpert.vmware.com/directory/355" target="_blank">here</a>.</span></div><span style="font-family: inherit;"><br />Thank you, VMware... :)</span></div>Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com0tag:blogger.com,1999:blog-5933107902689158523.post-88407624592942125612021-01-27T01:30:00.006+05:302021-01-28T23:40:46.994+05:30How to add your custom domain name in Azure Active DirectoryIn this post would discuss about the use of a custom domain name in Azure AD and how we can add one.<br /><br />Before going into that, first talk about what is Azure Tenant. It's a dedicated and trusted instance of Azure AD that's automatically created when you or your organization signs up for a Microsoft cloud service subscription, such as Microsoft Azure, Microsoft Intune, or Microsoft 365. An Azure tenant represents a single organization.<br /><br />Now what is Azure AD, it is Microsoft’s cloud-based identity and access management service, which helps your employees sign in and access resources in:<br /><ul style="text-align: left;"><li><b>External resources</b>, such as Microsoft 365, the Azure portal, and thousands of other SaaS applications.</li><li><b>Internal resources</b>, such as apps on your corporate network and intranet, along with any cloud apps developed by your own organization.</li></ul>Every new Azure AD tenant comes with an initial domain name as given, <span style="font-size: x-small;"><b><domain-name>.onmicrosoft.com</b></span>. We can't change or delete this initial domain name, however can add a custom domain aligned and reflecting ones organization's name. Adding custom domain names helps you to create user names that are familiar to your users, such as abc@vCloudClass.com, where vCloudClass.com is a custom domain.<br /><br />Please note that, Only a Global Administrator can manage domains in Azure AD.<br /><br />This role is automatically assigned to whomever created the Azure AD tenant. Global administrators can do all of the administrative functions for Azure AD and any services that federate to Azure AD, such as Exchange Online, SharePoint Online, and Skype for Business Online. You can have multiple Global administrators, but only Global administrators can assign administrator roles (including assigning other Global administrators) to users.<br /><br />Now I assume that you have already created a domain name with a domain registrar such as godaddy etc. and logged in to your Azure Account with as Global administrator.<br /><br /><div><div><div>The process of adding a custom domain consists these three tasks, </div><div><br /></div><div><b>1. Add your custom domain name to Azure AD </b> </div><div>Login to Azure Portal using a account having Global Administrator Role assigned => Select Custom domain names => Add your domain on this page using add domain button => once the unverified domain is added => Click on the unverified domain and note down the TXT record </div><div><b><br /></b></div><div><b>2. Add your DNS information to the domain registrar </b> </div><div>Go back to your domain registrar and create a new TXT record for your domain based on your noted DNS information. Set the time to live (TTL) to 3600 seconds (60 minutes), and then save the record. </div><div><div><span style="font-size: x-small;"><b>Note</b>: You can register as many domain names as you want. However, each domain gets its own TXT record from Azure AD.</span></div><div><br /></div></div><div><b>3. Verify your custom domain name </b> </div><div><b style="font-size: small;">Note</b><span style="font-size: small;">: DNS records must propagate before Azure AD can verify the domain. This process can take an hour or more.</span></div><div><br /></div><div>After you've verified your custom domain name, now make it your primary domain.</div><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjmBqOydq-z9shCpqUagwRYCWziMR6nlfLSnXzywdkPSIO-tbYdfHYgN-LgOo6m35RyQz9qxMtAffIvoCqXaziNdmTER1IOeJiZ6tDWcI_epZ28DUYrlAc2k9oovbRfd8BZzgavtXpp-Cc9/s979/2021-01-28_23-29-20.jpg" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="517" data-original-width="979" height="211" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjmBqOydq-z9shCpqUagwRYCWziMR6nlfLSnXzywdkPSIO-tbYdfHYgN-LgOo6m35RyQz9qxMtAffIvoCqXaziNdmTER1IOeJiZ6tDWcI_epZ28DUYrlAc2k9oovbRfd8BZzgavtXpp-Cc9/w400-h211/2021-01-28_23-29-20.jpg" width="400" /></a></div><div>The primary domain is the default domain name for a new user when you create a new user. Setting a primary domain name streamlines the process for an administrator to create new users in your AD.</div><br /><b>You can make your domain primary</b> by completing the following steps,<br /><ol style="text-align: left;"><li>Sign in to the Azure Portal with an account that's a Global Administrator for the organization.</li><li>Now select Azure Active Directory <b>=> </b>Select Custom domain names <b>=></b> Select the name of the domain that you want to be the primary domain <b>=></b> Select the Make primary command, confirm.</li></ol></div><div>You can change the primary domain name for your organization to be any verified custom domain that isn't federated. Changing the primary domain for your organization won't change the user name for any existing users.<br /><br /><b><span style="font-size: x-small;">Demo: </span></b><br /><div class="separator" style="clear: both; text-align: center;"><iframe allowfullscreen="" class="BLOG_video_class" height="270" src="https://www.youtube.com/embed/1GKGHN7wvcE" width="424" youtube-src-id="1GKGHN7wvcE"></iframe></div><br /><b><span style="font-size: x-small;">Related reads:</span></b></div><div><a href="https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/active-directory-whatis" target="_blank"><span style="font-size: x-small;">Azure Active Directory features, license types, and terminology</span></a></div><div><span style="font-size: x-small;"><a href="https://docs.microsoft.com/en-us/azure/active-directory/enterprise-users/domains-manage" target="_blank">Managing custom domain names in Azure AD</a><br /></span><br />That's it...Thanks :)<br /></div></div>Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com0tag:blogger.com,1999:blog-5933107902689158523.post-18393776227793565612021-01-23T14:26:00.010+05:302021-01-26T14:29:07.865+05:30How to Re-deploy an Azure VM from Portal/PowerShell or Azure CLI<div>In some circumstances, as part of troubleshooting, where you are having a connectivity-related issue or agent/extension status related issue and think that this could be related to the underlying host on which this VM is running we use VM redeployment option. This VM redeployment is nothing but a process of changing the physical host where your VM is currently running.</div><div><br /></div><div>When you redeploy a VM, Azure will shut down the VM, move the VM to a new host within the Azure infrastructure, and then power it back on, retaining all your configuration options and associated resources.</div><div><br /></div><div>If you are coming from VMware background then this might surprise you as there you can simply vMotion a running VM from one Esxi host to another however here this is the only option to so.</div><div><br /></div><div>The Azure redeploy operation does not impact any settings or configuration of the affected VM. However, you may lose the data on the temp drive and if using Dynamic IP then the same would also change. To avoid the IP change you can mark the assigned IP as static from vNIC settings. </div><div><br /></div><div>You can re-deploy a VM either directly from with VM blade on the Azure portal or using PowerShell and Azure CLI.</div><br /><b>Azure Portal: </b><br /><ol style="text-align: left;"><li>Go to affected VM</li><li>on VM blade look for VM redeploy option under Support & Troubleshooting</li><li>Redeploy the VM using the re-deploy option</li></ol><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjHKxrwsA4dygsRpKshNhoD-ssYl-Tn17eXYcO4awQQ8aG3TsxmukQP1hAh-Zgkp-6mwJqo2zQyUDUtEGGO7saJ8eOl8nZD5fwLn96F8wWhkQxFqXSUlG_SDV0ZlQAcCneQfXc8JQDC57By/s1184/vm.jpg" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="649" data-original-width="1184" height="229" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjHKxrwsA4dygsRpKshNhoD-ssYl-Tn17eXYcO4awQQ8aG3TsxmukQP1hAh-Zgkp-6mwJqo2zQyUDUtEGGO7saJ8eOl8nZD5fwLn96F8wWhkQxFqXSUlG_SDV0ZlQAcCneQfXc8JQDC57By/w419-h229/vm.jpg" width="419" /></a></div><br /><div><span style="background-color: #cfe2f3;"><b>PowerShell:</b></span> Use the following to re-deploy a VM.</div><pre class="brush: ps">#first you need to connect to your Azure account<br /><br />Connect-AzAccount<br /><br />#Get the list of Subscriptions availabe in your Azure account<br /><br />Get-AzSubscription <br /><br />#Set the desired subscription as default<br /><br />Select-AzSubscription -Subscription "Subscription name"<br /><br />#Set the required variable to make this scriprt reusable<br /><br />$rgName = read-host "Enter the resourceGroup name where this VM reside"<br /><br />$vmName = read-host "Enter the VM name"<br /><br />Set-AzVM -Name $vmName ResourceGroupName $rgName -redeploy</pre><br /><span style="background-color: #cfe2f3;"><b>Azure CLI:</b></span> First connect to your account, set the respective subscription as default,<br /><pre class="brush: ps">#first you need to connect to your Azure account</pre><pre class="brush: ps">az login</pre><pre class="brush: ps">#List Subscription in your Azure account</pre><pre class="brush: ps">az account list --output table</pre><pre class="brush: ps">#to set your Subscription as default for this session</pre><pre class="brush: ps">az account set --subscription "Name of your Subscription</pre><pre class="brush: ps">az vm redeploy -name "name of the VM" -group "resource group name"</pre>During VM redeployment operation the Status of the VM changes to Updating as the VM prepares to redeploy and then changes to Starting as the VM boots up on a new Azure host.<div><b><span style="font-family: inherit; font-size: x-small;"><br /></span></b></div><div><b><span style="font-family: inherit;">Related demo:</span></b> </div><div class="separator" style="clear: both; text-align: center;"><iframe allowfullscreen="" class="BLOG_video_class" height="271" src="https://www.youtube.com/embed/jjukSOCpLhM" width="422" youtube-src-id="jjukSOCpLhM"></iframe></div><div><br /></div><div>That's it...Thanks :)</div>Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com0tag:blogger.com,1999:blog-5933107902689158523.post-69273578739777720642021-01-19T23:56:00.002+05:302021-01-21T01:35:43.939+05:30 Azure recovery Services Vault overview and how to create one<p class="MsoNormal"><span style="font-family: inherit;"><span style="font-size: small;">In this blog post I would talk about Azure Recovery Services
vault; this is the central component for backup or DR planning in Azure or even
for on-prem if you are planning to use Azure Site recovery (ASR) for DR or
Azure Backup.</span></span></p><span style="font-family: inherit;"><span style="font-size: small;">
</span></span><p><span style="font-family: inherit;"><span style="font-size: small;">A Recovery Services vault is a storage entity
in Azure that houses data it stores the backups and recovery points created
over time. The Recovery Services vault also contains the backup policies that
are associated with the protected virtual machines. You can use Recovery
Services vaults to hold backup data for various Azure services such as IaaS VMs
(Linux or Windows) and Azure SQL databases. Recovery Services vaults support
System Center DPM, Windows Server, Azure Backup Server, and more. Recovery
Services vaults make it easy to organize your backup data, while minimizing
management overhead. </span></span></p><p><span style="font-family: inherit;"></span></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi1D88AUuxNexrmuE6WNW13o9NWuR7HKmmeOrnEFgtV07w9J0fCpq2iZpnWDAST1rDMfDmdijxHSzDztq7Ke8WkKV52yRnEqZReMHVFCBwEFDJiKulQi2JebrME6a418E3G6RKh6_eoH3vv/s1124/rsv.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="846" data-original-width="1124" height="301" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi1D88AUuxNexrmuE6WNW13o9NWuR7HKmmeOrnEFgtV07w9J0fCpq2iZpnWDAST1rDMfDmdijxHSzDztq7Ke8WkKV52yRnEqZReMHVFCBwEFDJiKulQi2JebrME6a418E3G6RKh6_eoH3vv/w400-h301/rsv.JPG" width="400" /></a></div><span style="font-size: small;">We can have up-to 500 vaults in a subscription
and 1000 Azure VMs can be backed up in a single vault with the frequency of
once a day. Here you need to keep one thing in mind that this Vault should be
in the same region as your VMs (for backup only).</span><p></p><span style="font-family: inherit;"><span style="font-size: small;">
</span></span><p><span style="font-family: inherit;"><span style="font-size: small;"><span> </span>Recovery
Services vaults are based on the Azure Resource Manager model of Azure, which
provides features such as:</span></span></p><ul style="text-align: left;"><li><span style="font-family: inherit;"><span style="font-size: small;"><span><span style="font-feature-settings: normal; font-kerning: auto; font-language-override: normal; font-optical-sizing: auto; font-size-adjust: none; font-stretch: normal; font-style: normal; font-variant: normal; font-variation-settings: normal; font-weight: normal; line-height: normal;"></span></span><b><span style="color: black; mso-color-alt: windowtext;">Enhanced
capabilities to help secure backup data</span></b><span style="color: black; mso-color-alt: windowtext;">: Enhanced security features for backup that allow
for data recovery even if production and backup servers are compromised</span></span></span></li></ul><ul style="text-align: left;"><li><span style="font-family: inherit;"><span style="font-size: small;"><span><span style="font-feature-settings: normal; font-kerning: auto; font-language-override: normal; font-optical-sizing: auto; font-size-adjust: none; font-stretch: normal; font-style: normal; font-variant: normal; font-variation-settings: normal; font-weight: normal; line-height: normal;"></span></span><b><span style="color: black; mso-color-alt: windowtext;">Central
monitoring for your hybrid IT environment</span></b><span style="color: black; mso-color-alt: windowtext;">: With Recovery Services vaults, you can monitor not
only your Azure IaaS VMs but also your on-premises asset backups (if configured) from a central portal. <br /></span></span></span></li></ul><span style="font-family: inherit;"><span style="font-size: small;">
</span></span><ul style="text-align: left;"><li><span style="font-family: inherit;"><span style="font-size: small;"><span><span style="font-feature-settings: normal; font-kerning: auto; font-language-override: normal; font-optical-sizing: auto; font-size-adjust: none; font-stretch: normal; font-style: normal; font-variant: normal; font-variation-settings: normal; font-weight: normal; line-height: normal;"></span></span><b><span style="color: black; mso-color-alt: windowtext;">Azure
role-based access control (Azure RBAC)</span></b><span style="color: black; mso-color-alt: windowtext;">: Recovery Services vaults are compatible with Azure
RBAC, which restricts backup and restore access to the defined set of user
roles.</span></span></span><span style="font-family: inherit;"></span><span style="font-family: inherit;"><span style="font-size: small;"><b> </b></span></span></li></ul><ul style="text-align: left;"><li><span style="font-family: inherit;"><span style="font-size: small;"><b>Soft
Delete</b>: With soft delete, even if a malicious actor
deletes a backup (or backup data is accidentally deleted), the backup data is
retained for 14 additional days, allowing the recovery of that backup item with
no data loss. The additional 14 days of retention for backup data in the
"soft delete" state don't incur any cost to you. </span></span></li></ul><ul style="text-align: left;"><li><span style="font-family: inherit;"><span style="font-size: small;"><b>Cross
Region Restore</b>: Cross Region Restore (CRR) allows you to
restore Azure VMs in a secondary region, which is an Azure paired region. If
Azure declares a disaster in the primary region, the data replicated in the
secondary region is available to restore in the secondary region to mitigate
real downtime disaster in the primary region for their environment. </span></span></li></ul><p><span style="font-family: inherit;"><span style="font-size: small;"><b>Storage settings in the Recovery Services vault</b>: Within Recovery Services Vault Azure Backup
automatically handles storage for the vault how as per our availability requirement
we can choose the storage redundancy as one of the following, <a data-linktype="relative-path" href="https://docs.microsoft.com/en-us/azure/storage/common/storage-redundancy#locally-redundant-storage"><span color="windowtext" style="text-decoration: none; text-underline: none;">local</span></a>, geo or zonal redundancy. As of now zonal
is not available in all regions.</span></span></p><span style="font-family: inherit;"><span style="font-size: small;">
</span></span><ul type="disc"><li class="MsoNormal" style="line-height: normal; mso-list: l0 level1 lfo2; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in;"><span style="font-family: inherit;"><span style="font-size: small;"><b>Locally
redundant storage (LRS)</b> copies your data synchronously three times
within a single physical location in the primary region. LRS is the least
expensive replication option but is not recommended for applications
requiring high availability.</span></span></li><li class="MsoNormal" style="line-height: normal; mso-list: l0 level1 lfo2; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in;"><span style="font-family: inherit;"><span style="font-size: small;"><b>Zone-redundant
storage (ZRS)</b> copies your data synchronously across three Azure
availability zones in the primary region. For applications requiring high
availability, Microsoft recommends using ZRS in the primary region, and
also replicating to a secondary region.</span></span></li><li class="MsoNormal" style="line-height: normal; mso-list: l0 level1 lfo2; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in;"><span style="font-family: inherit;"><span style="font-size: small;"><b>Geo-redundant storage (GRS)</b>
copies your data synchronously three times within a single physical
location in the primary region using LRS. It then copies your data
asynchronously to a single physical location in the secondary region.</span></span></li></ul><span style="font-family: inherit;"><span style="font-size: small;">
</span></span><p><span style="font-family: inherit;"><span style="font-size: small;"><b>Encryption settings in the Recovery Services
vault:</b> By default, all your data is encrypted using
platform-managed keys. You don't need to take any explicit action from your end
to enable this encryption. It applies to all workloads being backed up to your
Recovery Services vault.</span></span></p><span style="font-family: inherit;"><span style="font-size: small;">
</span></span><p><span style="font-family: inherit;"><span style="font-size: small;">You can choose to encrypt your data using
encryption keys owned and managed by you.</span></span></p><span style="font-family: inherit;"><span style="font-size: small;">
</span></span><p><span style="font-family: inherit;"><span style="font-size: small;"><b>Azure Site Recovery:</b> Site Recovery contributes to your business
continuity and disaster recovery (BCDR) strategy, by orchestrating and
automating replication of Azure VMs between regions, on-premises virtual
machines and physical servers to Azure, and on-premises machines to a secondary
datacenter.</span></span> </p><span style="font-family: inherit;"><span style="font-size: small;">
</span></span><p><span style="font-family: inherit;"><span style="font-size: small;">This Recovery service vault blade would become
the central point to configure enable and initiate the VM failover and fail
back. </span></span></p><span style="font-family: inherit;"><span style="font-size: small;">
</span></span><p><span style="font-family: inherit;"><span style="font-size: small;"><b>Note:</b> You can
also use the VM blade to configure replication for an individual VM however
here you can create recovery plan to orchestrate the failover of multiple VMs
part of a single application environment.</span></span></p><span style="font-family: inherit;"><span style="font-size: small;">
</span></span><p><span style="font-family: inherit;"><span style="font-size: small;">When you enable replication for a VM to set up
disaster recovery, the Site Recovery Mobility service extension installs on the
VM and registers it with Azure Site Recovery. During replication, VM disk
writes are sent to a cache storage account in the source region. Data is sent
from there to the target region, and recovery points are generated from the
data. When you failover a VM during disaster recovery, a recovery point is
used to restore the VM in the target region.</span></span></p><p><span style="font-family: inherit;"><span style="font-size: small;"><b>Demo:</b> </span></span></p><div class="separator" style="clear: both; text-align: center;"><span style="font-family: inherit;"><span style="font-size: small;"><iframe allowfullscreen="" class="BLOG_video_class" height="292" src="https://www.youtube.com/embed/e5ABF1hqLQA" width="508" youtube-src-id="e5ABF1hqLQA"></iframe></span></span></div><p></p><p><span style="font-family: inherit;"><span style="font-size: small;"><b>Related Reads: </b></span></span></p><span style="font-family: inherit;"><span style="font-size: small;">
</span></span><p><span style="font-family: inherit;"><a href="https://docs.microsoft.com/en-us/azure/backup/backup-azure-recovery-services-vault-overview" target="_blank"><span style="font-size: small;">Azure Recovery Service Vault Overview</span></a><br /></span></p><span style="font-family: inherit;"><span style="font-size: small;">
</span></span><p><span style="font-family: inherit;"><span style="font-size: small;"><a href="https://docs.microsoft.com/en-us/azure/backup/backup-support-matrix#vault-support">Backup Support Matrix</a><br />
</span></span></p><span style="font-family: inherit;"><span style="font-size: small;">
</span></span><p><span style="font-family: inherit;"></span></p><span style="font-family: inherit;"><span style="font-size: small;">
</span></span><p><span style="font-family: inherit;"><span style="font-size: small;"><a href="https://docs.microsoft.com/en-us/azure/site-recovery/" target="_blank">Azure Site recovery Documentation</a>, Azure to Azure or On-prem to Azure Scenario (AWS or any other Cloud to Azure would also fall in this category). <br />
</span></span></p><span style="font-family: inherit;"><span style="font-size: small;">
</span></span><p><span style="font-family: inherit;"><span style="font-size: small;">Also read the Backup and Site recovery FAQs.</span></span></p><p><span style="font-family: inherit;"><span style="font-size: small;">That's it for today....Thanks :) <br /></span></span></p><span style="font-family: inherit;"><span style="font-size: small;">
</span></span>Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com0tag:blogger.com,1999:blog-5933107902689158523.post-90125687457646859732021-01-18T13:14:00.004+05:302021-01-18T23:25:57.780+05:30Azure Resource Hierarchy and how to manage them effectively<p class="MsoNormal"><span style="font-family: inherit;">In this blog post, we would discuss about the Azure resource
hierarchy and how you can organize and manage them effectively from the point
of Security, management, and tracking the cost.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-family: inherit;">As we know that one needs to have an active Azure Subscription
to create any resource in Azure account and once you have that then need to
create a Resource Groups (RG) and then can create all other resources by
putting them in RGs.</span></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiEGVKp01UmOqrXea_sOYH2Au2c3fSxPtBR9854bpBNmZxHs-iClBJSwEeYSQhupkShjmKchnfj9tdTVMhWqbSLleas_vo6KHMg7n-xAd34ncOIuNFWT880jL-2LWcHf0-KPgDgvY82uXWn/s638/mgmt0.JPG" style="margin-left: 1em; margin-right: 1em;"><span style="font-family: inherit;"><img border="0" data-original-height="307" data-original-width="638" height="193" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiEGVKp01UmOqrXea_sOYH2Au2c3fSxPtBR9854bpBNmZxHs-iClBJSwEeYSQhupkShjmKchnfj9tdTVMhWqbSLleas_vo6KHMg7n-xAd34ncOIuNFWT880jL-2LWcHf0-KPgDgvY82uXWn/w400-h193/mgmt0.JPG" width="400" /></span></a></div><p class="MsoNormal"><span style="font-family: inherit;">Now think from the perspective of an Org having multiple
subscriptions, that is where you need a Scope above subscription to efficiently
manage them and that is where can use Azure Management Groups. Here we can
manage Access Policies & Compliance for these subscriptions as a single
entity and whatever access, policy, or compliance you would configure would
get inherited top-down.</span></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh55MXC9QsCSvYdeImKdPpXu2ZcvPgU2muaicB34RiELY7eS7Px6Xvgvg1Cd6Xmvlo9zJosoMcsPuFKMFeTlmH6JPW7Zo-VgM7Dl9tVST5rT3FWzgBjnHZGDknZHAUnVzhe3fkpFzf66INJ/s701/mgmt1.JPG" style="margin-left: 1em; margin-right: 1em;"><span style="font-family: inherit;"><img border="0" data-original-height="464" data-original-width="701" height="265" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh55MXC9QsCSvYdeImKdPpXu2ZcvPgU2muaicB34RiELY7eS7Px6Xvgvg1Cd6Xmvlo9zJosoMcsPuFKMFeTlmH6JPW7Zo-VgM7Dl9tVST5rT3FWzgBjnHZGDknZHAUnVzhe3fkpFzf66INJ/w400-h265/mgmt1.JPG" width="400" /></span></a></div><p class="MsoNormal"><span style="font-family: inherit;">How the four management-scope levels relate to each other</span></p><p class="MsoNormal"><span style="font-family: inherit;"><o:p></o:p></span></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-bottom: 0in; margin-left: 28.5pt; margin-right: 0in; margin-top: 0in; margin: 0in 0in 0in 28.5pt; mso-list: l1 level1 lfo1; tab-stops: list .5in; text-indent: -0.25in;"><!--[if !supportLists]--><span style="font-family: inherit;"><span style="color: #171717; font-size: 10pt;"><span style="mso-list: Ignore;">·<span style="font-size: 7pt; font-stretch: normal; font-style: normal; font-variant: normal; font-weight: normal; line-height: normal;">
</span></span></span><!--[endif]--><b><span style="color: #171717; mso-bidi-font-family: Calibri; mso-bidi-theme-font: minor-latin; mso-fareast-font-family: "Times New Roman";">Management
groups:</span></b><span style="color: #171717; mso-bidi-font-family: Calibri; mso-bidi-theme-font: minor-latin; mso-fareast-font-family: "Times New Roman";"> These
groups are containers that help you manage access, policy, and compliance for
multiple subscriptions. All subscriptions in a management group automatically
inherit the conditions applied to the management group.<o:p></o:p></span></span></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-bottom: 0in; margin-left: 28.5pt; margin-right: 0in; margin-top: 0in; margin: 0in 0in 0in 28.5pt; mso-list: l1 level1 lfo1; tab-stops: list .5in; text-indent: -0.25in;"><!--[if !supportLists]--><span style="font-family: inherit;"><span style="color: #171717; font-size: 10pt;"><span style="mso-list: Ignore;">·<span style="font-size: 7pt; font-stretch: normal; font-style: normal; font-variant: normal; font-weight: normal; line-height: normal;">
</span></span></span><!--[endif]--><b><span style="color: #171717; mso-bidi-font-family: Calibri; mso-bidi-theme-font: minor-latin; mso-fareast-font-family: "Times New Roman";">Subscriptions:</span></b><span style="color: #171717; mso-bidi-font-family: Calibri; mso-bidi-theme-font: minor-latin; mso-fareast-font-family: "Times New Roman";"> A subscription logically
associates user accounts and the resources that were created by those user
accounts. Each subscription has limits or quotas on the amount of resources you
can create and use. Organizations can use subscriptions to manage costs and the
resources that are created by users, teams, or projects.<o:p></o:p></span></span></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-bottom: 0in; margin-left: 28.5pt; margin-right: 0in; margin-top: 0in; margin: 0in 0in 0in 28.5pt; mso-list: l1 level1 lfo1; tab-stops: list .5in; text-indent: -0.25in;"><!--[if !supportLists]--><span style="font-family: inherit;"><span style="color: #171717; font-size: 10pt;"><span style="mso-list: Ignore;">·<span style="font-size: 7pt; font-stretch: normal; font-style: normal; font-variant: normal; font-weight: normal; line-height: normal;">
</span></span></span><!--[endif]--><b><span style="color: #171717; mso-bidi-font-family: Calibri; mso-bidi-theme-font: minor-latin; mso-fareast-font-family: "Times New Roman";">Resource
groups:</span></b><span style="color: #171717; mso-bidi-font-family: Calibri; mso-bidi-theme-font: minor-latin; mso-fareast-font-family: "Times New Roman";"> A a resource group is a logical container into which Azure resources like web apps,
databases and storage accounts are deployed and managed.<o:p></o:p></span></span></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-bottom: 0in; margin-left: 28.5pt; margin-right: 0in; margin-top: 0in; margin: 0in 0in 0in 28.5pt; mso-list: l1 level1 lfo1; tab-stops: list .5in; text-indent: -0.25in;"><!--[if !supportLists]--><span style="font-family: inherit;"><span style="color: #171717; font-size: 10pt;"><span style="mso-list: Ignore;">·<span style="font-size: 7pt; font-stretch: normal; font-style: normal; font-variant: normal; font-weight: normal; line-height: normal;">
</span></span></span><!--[endif]--><b><span style="color: #171717; mso-bidi-font-family: Calibri; mso-bidi-theme-font: minor-latin; mso-fareast-font-family: "Times New Roman";">Resources:</span></b><span style="color: #171717; mso-bidi-font-family: Calibri; mso-bidi-theme-font: minor-latin; mso-fareast-font-family: "Times New Roman";"> Resources are instances of
services that you create, like virtual machines, storage, or SQL databases.</span></span></p><p class="MsoNormal" style="background: white; line-height: normal; margin-bottom: 0in; margin-left: 28.5pt; margin-right: 0in; margin-top: 0in; margin: 0in 0in 0in 28.5pt; mso-list: l1 level1 lfo1; tab-stops: list .5in; text-indent: -0.25in;"><span style="background-color: transparent; font-family: inherit; text-indent: -0.25in;">Note: All Subscriptions within a single MG must the same AAD
Tenant.</span></p>
<p class="MsoNormal"><span style="font-family: inherit;">This was a simple example of Management group hierarchy; you
can create multiple Management Groups under Root Management Group for Azure
Actively Directory. The creation of other Management groups could be part of
your resource’s management planning to achieve one of the following,<o:p></o:p></span></p>
<p class="MsoListParagraphCxSpFirst" style="mso-list: l0 level1 lfo2; text-indent: -0.25in;"><!--[if !supportLists]--><span style="font-family: inherit;"><span style="mso-list: Ignore;">·<span style="font-size: 7pt; font-stretch: normal; font-style: normal; font-variant: normal; font-weight: normal; line-height: normal;">
</span></span><!--[endif]--><b>Group your subscriptions:</b> Easily manage
your Azure subscriptions by grouping them together and taking actions in bulk<o:p></o:p></span></p>
<p class="MsoListParagraphCxSpMiddle" style="mso-list: l0 level1 lfo2; text-indent: -0.25in;"><!--[if !supportLists]--><span style="font-family: inherit;"><span style="mso-list: Ignore;">·<span style="font-size: 7pt; font-stretch: normal; font-style: normal; font-variant: normal; font-weight: normal; line-height: normal;">
</span></span><!--[endif]--><b>Mirror your organization’s structure</b>:
Create a hierarchy of Azure management groups tailored to your organization to
efficiently manage your subscriptions and resources <o:p></o:p></span></p>
<p class="MsoListParagraphCxSpLast" style="mso-list: l0 level1 lfo2; text-indent: -0.25in;"><!--[if !supportLists]--><span style="font-family: inherit;"><span style="mso-list: Ignore;">·<span style="font-size: 7pt; font-stretch: normal; font-style: normal; font-variant: normal; font-weight: normal; line-height: normal;">
</span></span><!--[endif]--><b>Apply policies or access control to any
service</b> Use full platform integration to apply governance conditions such
as policies, access controls, or full-fledged blueprints to any Azure service</span></p><p class="MsoNormal"><span style="font-family: inherit;"><o:p></o:p></span></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhY0Psp2mgXomeJCsy3VoIqi_z1l1ECkEhJGfdNfVMIJ4uHlpqvT1hf0_a8vt46YUSg1IV5H4cDbUvF45-0K027cLg3ZuyRiLgCqrTZ-d0Gf9lUE7TlSH0YMC3YCr6Wgam23ctmU6wKSDW1/s981/mgmt2JPG.png" style="margin-left: 1em; margin-right: 1em;"><span style="font-family: inherit;"><img border="0" data-original-height="505" data-original-width="981" height="206" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhY0Psp2mgXomeJCsy3VoIqi_z1l1ECkEhJGfdNfVMIJ4uHlpqvT1hf0_a8vt46YUSg1IV5H4cDbUvF45-0K027cLg3ZuyRiLgCqrTZ-d0Gf9lUE7TlSH0YMC3YCr6Wgam23ctmU6wKSDW1/w400-h206/mgmt2JPG.png" width="400" /></span></a></div><p></p><p class="MsoNormal"><span style="font-family: inherit;">Each Directory is given a single top-level management group
called the “Root Management group”. This Root management group is built into
the hierarchy to have all subscriptions part of that directory fold into it.
This is used to assign the global policies and Azure role assignment at the directory level. To mange access at this scope the Azure AD Global
administrator need to elevate themselves to have User Access Administrator role
of this root group initially. Once you have the permission then can assign any
Azure role to other directory users or Groups to manage the access, compliance
and related aspects.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-family: inherit;">A management group tree can support up to six levels of
depth however this limit doesn’t include root or subscription level. Keep in
mind that each MG or subscription can have only one parent, and all these
are within a single hierarchy in each directory.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-family: inherit;"><b>Related Demo: </b>How-to Create and manage Azure
Management Groups and related hierarchy.<b> <o:p></o:p></b></span></p>
<div class="separator" style="clear: both; text-align: center;"><iframe allowfullscreen="" class="BLOG_video_class" height="294" src="https://www.youtube.com/embed/_ZA0QKsduYk" width="492" youtube-src-id="_ZA0QKsduYk"></iframe></div><p class="MsoNormal"><b><span style="font-family: inherit;">Related reads:</span></b></p><p class="MsoNormal"><a href="https://docs.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-setup-guide/organize-resources?tabs=AzureManagementGroupsAndHierarchy" target="_blank"><span style="font-family: inherit;">Azure Management Groups And Hierarchy</span></a></p><p class="MsoNormal"><a href="https://docs.microsoft.com/en-us/azure/governance/management-groups/overview"><span style="font-family: inherit;">Azure management groups</span></a></p>
<p class="MsoNormal"><span style="font-family: inherit;">That’s It….Thanks 😊</span></p>Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com0tag:blogger.com,1999:blog-5933107902689158523.post-90528703057755043602020-04-19T17:38:00.000+05:302020-04-20T01:11:47.672+05:30vSphere 7 Lab - Nested deployment of VCSA 7 on VMware Workstation<div dir="ltr" style="text-align: left;" trbidi="on">
In this post, I would talk about the changes noticed during the nested vSphere 7 Lab deployment and when tried to initially access the vCenter using WebClient.<br />
<br />
For direct nested deployment where you are deploying the VCSA directly on VMware Workstation 13.x or later, its a three-step process but before we go into that, extract the VCSA7 iso file and locate the vcsa folder, there you will find the VCSA appliance OVA file.<br />
<ul style="text-align: left;">
<li>Right-click on vcsa open virtualization archive (ova) file and select open with VMware workstation or double click on this ova file => in subsequent screens follow the screen instruction and then provide the required IP, DNS, Gateway, FQDN etc and deploy the actual appliance</li>
<li>Once the appliance is successfully deployed, set up its root password by accessing it through workstation console</li>
<li>Now go to <b style="font-family: georgia, "times new roman", serif;">https://vcsa_fqdn_or_ip:5480, </b><span style="font-family: inherit;">login with root</span><b style="font-family: georgia, "times new roman", serif;"> </b><span style="font-family: inherit;">and complete the rest of the configuration and deployment, vCenter PSC setup, create administrator password etc.</span></li>
</ul>
<strike>However, when I tried the same with VCSA 7 on the latest version on VMware Workstation 15.5.2, I was able to deploy and configure the appliance but was unable to access the vSphere WebClient.</strike><br />
<strike>I was able to access the vCenter Server Appliance Management Interface (VAMI) and complete the rest of the configuration however when tried to access the vSphere WebClient it simply failed.</strike><br />
<strike><br /></strike>
<span style="background-color: white;"><strike>Checked the status of the related services. found no issue however now I recall there was some error occurred during the VCSA appliance configuration however and there was no successfully completed message.</strike></span><br />
<br />
Then I thought to go with the standard lab deployment procedure, where we deploy VCSA on one of the already deployed ESXi hosts (double nested).<br />
<br />
Once the deployment completed then I was able to access the <span style="background-color: white; color: #222222; font-family: "arial" , "tahoma" , "helvetica" , "freesans" , sans-serif; font-size: 13.2px;">vCenter Server Appliance Management Interface (VAMI) by going to </span><b style="font-family: georgia, "times new roman", serif;">https://vcsa_fqdn_or_ip:5480 </b><span style="font-family: inherit;">and VCSA by going </span>to <span style="font-family: "georgia" , "times new roman" , serif;"><b>https://vcsa_fqdn_or_ip:443 </b>or just<b> </b></span><b><span style="font-family: "georgia" , "times new roman" , serif;">https://vcsa_fqdn_or_ip</span></b> however, <span style="background-color: white;">noticed that we no longer have flash-based WebClient client available (remember this url, </span><span style="background-color: #f4cccc;">https://fqdn_or_ip:9443/vsphere-client/</span><span style="background-color: white;">). </span><br />
<span style="background-color: white;"><br /></span><span style="background-color: white;">Now it is just HTML5 based WebClie</span><span style="background-color: white;">nt.</span><br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjwqokoaGAS8RnccrltgF1j-gWfVKuqE5qB7eMQdymg55My1_3xoWYMZGRbMk60_EA_I4xnrU12Xnyy28SYitiw5pyZxHtxKy13-Iso-pGLmwtXnSDANn4kM0Unrxk3nL32Hq0U5S-R53cu/s1600/v4.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="271" data-original-width="542" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjwqokoaGAS8RnccrltgF1j-gWfVKuqE5qB7eMQdymg55My1_3xoWYMZGRbMk60_EA_I4xnrU12Xnyy28SYitiw5pyZxHtxKy13-Iso-pGLmwtXnSDANn4kM0Unrxk3nL32Hq0U5S-R53cu/s400/v4.jpg" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
</div>
As you can see, unlike vCenter 6.x there is no Flex-based vSphere WebClient option available.<br />
<br />
One can access the vCenter Server by using the following url,<span style="font-family: "courier new" , "courier" , monospace;"> </span><b><span style="font-family: "georgia" , "times new roman" , serif;">https://vcsa_fqdn_or_ip/ui/</span></b><br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgxXdtPpDp_jLS5vnGgQopSHHV5_6M5HxoUvrI8vo3Itiog_BVO2NzqYFVobLNGH7K1cnf2ngoukj03SLXDSmIKIZJ-YgtDGovpG2kPxZpkv6TvCsjPcoVzP9DGfXU9NxcN_49T3q18GqiQ/s1600/v3.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="590" data-original-width="941" height="250" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgxXdtPpDp_jLS5vnGgQopSHHV5_6M5HxoUvrI8vo3Itiog_BVO2NzqYFVobLNGH7K1cnf2ngoukj03SLXDSmIKIZJ-YgtDGovpG2kPxZpkv6TvCsjPcoVzP9DGfXU9NxcN_49T3q18GqiQ/s400/v3.jpg" width="400" /></a></div>
<br />
One more thing which I noticed that VMware Workstation 15.5.2 doesn't have ESXi 7 listed in supported OS list however I didn't see any issue when deployed it by selecting ESXi6.7. Hopefully, this would be available with the next update of the workstation.<br />
<br />
<b style="background-color: #d9ead3;">Update:</b><span style="background-color: white;"> Tried to re-deploy the VCSA 7 appliance directly on </span>VMware Workstation again and this time during post configuration deployment it got stuck at 70% with a page refresh error message however I waited for around 20 more minutes before hitting the browser refresh button which brought me to vCenter Server Appliance Management Interface (VAMI). Checked about the status of services and configuration and then tried to access it again using the <b style="font-family: georgia, "times new roman", serif;">https://vcsa_fqdn_or_ip </b><span style="font-family: inherit;">and voila getting started page opened with an option to launch vSphere Client (HTML5) like shown in the first screenshot.</span><br />
<br />
That's it for now...Thanks :)</div>
Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com0tag:blogger.com,1999:blog-5933107902689158523.post-79137835988325992082020-04-15T13:55:00.001+05:302021-01-18T13:17:59.030+05:30AWS Glue Vs. Azure Data Factory : Similarities and Differences.<div dir="ltr" style="text-align: left;" trbidi="on">
<span style="color: #333333; font-size: 12pt;"><span style="font-family: inherit;">In
today’s world emergence of PaaS services have made end user life easy in
building, maintaining and managing infrastructure however selecting the one
suitable for need is a tough and challenging task. We often tend to
select hybrid cloud solution for our customers thus providing them
the cost efficient solutions with cutting edge technologies.</span></span><br />
<div style="color: #333333; font-size: 12pt; margin-bottom: 18pt; margin-top: 0pt;">
<span style="background: white; font-family: inherit;">The fundamental building block of
any company is DATA , without which no organization can think of
survival. But to store and analyze this Data is the traditional approach of
warehouse is not fit well because of many reasons. It could be increasing cost
or infrastructure or over head of management ,but it does not fit well today.</span></div>
<div style="color: #333333; font-size: 12pt; margin-bottom: 18pt; margin-top: 0pt;">
<span style="background: white; font-family: inherit;">The other alternative we have is
Cloud , be it AWS / Azure /Google or any other. Each of these cloud offer
different solutions to problems that we have. But fundamental Question remain
same , which cloud to use and why.</span></div>
<div style="color: #333333; font-size: 12pt; margin-bottom: 18pt; margin-top: 0pt;">
<span style="background: white; font-family: inherit;">Take Data analytics itself , For
Running ETL jobs both AWS and Azure offer some solutions , but as architect we
need to deeply understand the similarity and differences between two , before
suggesting that to customer.</span></div>
<div style="color: #333333; font-size: 12pt; margin-bottom: 18pt; margin-top: 0pt;">
<span style="background: white; font-family: inherit;">I am here highlighting the some
fundamentals similarities and differences between two technologies hoping
that it might help the individuals who need to make solutions for customers .</span></div>
<div style="color: #333333; font-size: 12pt; margin-bottom: 18pt; margin-top: 0pt;">
<span style="background: white; font-family: inherit; font-style: italic; font-weight: bold;">Similar
Features for two services </span></div>
<div style="direction: ltr;">
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse; border-color: #A3A3A3; border-style: solid; border-width: 1pt; direction: ltr;" summary="" title="" valign="top">
<tbody>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.8486in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit; font-style: italic; font-weight: bold;">Attribute</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.6569in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit; font-style: italic; font-weight: bold;">AWS Glue</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.1006in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit; font-style: italic; font-weight: bold;">Data Factory </span></div>
</td>
</tr>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.8486in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Fully
Managed, Server-less ETL engines</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.6569in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.0729in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
</tr>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.8659in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Data
ingestion as both structured as well as unstructured data.</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.6569in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.0555in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
</tr>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.8486in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Auto
generation of code</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.6569in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.0729in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
</tr>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.868in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Underlying
technology stack: Spark</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.6569in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.0534in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
</tr>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.8486in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Trigger
type can be manual as well as automatic</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.6569in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.0729in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
</tr>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.868in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Enable
you to focus on building business logic and data transformation</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.6569in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.0534in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
</tr>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.868in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Perform
data cleaning, transformation and aggregation</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.6569in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.0534in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
</tr>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.8486in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Connects
to data warehouses. Data lakes?</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.6569in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes,
Support data to and from Redshift</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.1006in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes
: Support in and out from SQL DW</span></div>
</td>
</tr>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.8486in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Transparent
Pricing</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.6569in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.0729in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
</tr>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.8486in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Support
SLAs</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.6569in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.0729in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
</tr>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.8486in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Ability
for customers to add new data sources</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.6569in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Developers
can write custom Scala or Python code and import custom libraries and Jar
files into Glue ETL jobs to access data sources not natively supported by AWS
Glue.</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.0729in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes</span></div>
</td>
</tr>
</tbody></table>
</div>
<div style="margin-bottom: 18pt; margin-top: 0pt;">
<div style="color: #333333; font-size: 12pt;">
<span style="background-color: white; font-size: 12pt; font-style: italic; font-weight: bold;"><span style="font-family: inherit;"><br /></span></span></div>
<b><span style="font-family: "georgia" , "times new roman" , serif;">Differences between these two services</span></b></div>
<div style="direction: ltr;">
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse; border-color: #A3A3A3; border-style: solid; border-width: 1pt; direction: ltr;" summary="" title="" valign="top">
<tbody>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.8666in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit; font-style: italic; font-weight: bold;">Attributes</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.0687in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit; font-style: italic; font-weight: bold;">AWS Glue</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.6715in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit; font-style: italic; font-weight: bold;">Data Factory </span></div>
</td>
</tr>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.8666in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Main
Focus of service</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.0687in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">ETL,
data catalog</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.643in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">ETL</span></div>
</td>
</tr>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.8666in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Database
replication</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.0729in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Full
table; incremental via change data capture through AWS Database Migration
Service (DMS)</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.775in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Full
table; incremental via custom SELECT query</span></div>
</td>
</tr>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.8666in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">SaaS
sources</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.0687in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">None</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.775in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">About
20, with several more in preview</span></div>
</td>
</tr>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.8666in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Compliance,
governance, and security certifications</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.0687in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">HIPAA,
GDPR</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.6715in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">HIPAA,
GDPR, ISO 27001,</span></div>
</td>
</tr>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.8666in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Data
sharing</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.0687in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Yes,
within AWS</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.643in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">No</span></div>
</td>
</tr>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.8666in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Vendor
lock-in</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.0687in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">AWS
Glue is strongly tied to the AWS platform. Usage is billed monthly.</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.6715in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Month
to month</span></div>
</td>
</tr>
<tr>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.8666in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Developer
tools</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 3.0687in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">Only
python and Scala options are available.</span></div>
</td>
<td style="background-color: white; border-color: #A3A3A3; border-style: solid; border-width: 1pt; padding: 4pt 4pt 4pt 4pt; vertical-align: top; width: 1.6715in;"><div style="color: #333333; font-size: 12pt; margin: 0in;">
<span style="font-family: inherit;">REST
API, .Net and Python SDKs, PowerShell CLI</span></div>
</td>
</tr>
</tbody></table>
</div>
<span style="font-family: Georgia, Times New Roman, serif;"><br /> Thanks for Reading .Your Suggestions and feedback's are welcome.</span></div>
Kawalpreethttp://www.blogger.com/profile/17844192966488747776noreply@blogger.com0tag:blogger.com,1999:blog-5933107902689158523.post-82054105965611759332020-02-28T17:17:00.000+05:302020-02-28T19:09:52.211+05:30VMware vExpert 2020 Award Announced<div dir="ltr" style="text-align: left;" trbidi="on">
<div dir="ltr" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 14.52px;" trbidi="on">
<span style="font-family: "times" , "times new roman" , serif;">I am very honored to be named a <a href="https://vexpert.vmware.com/" style="color: #888888; text-decoration-line: none;" target="_blank">VMware vExpert</a> again, this is my sixth time…..Congratulations to all those who made in the vExpert 2020 list.</span></div>
<div dir="ltr" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 14.52px;" trbidi="on">
<span style="font-family: "times" , "times new roman" , serif;"><br /></span></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi68oMLvzwz85UI583pXReas0Koi45Bf0Ve9CF467F_5PwiBOzeFzkVxuCG1YwIbWb8VDL5_6-eoqbT_T_4_-Ud3_9Gp8eWGjpqrHDg3AfplxSLwpcSl3a7RTX2jUNy9g_d3sODJ1iPa6gT/s1600/vEx.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="717" data-original-width="1061" height="135" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi68oMLvzwz85UI583pXReas0Koi45Bf0Ve9CF467F_5PwiBOzeFzkVxuCG1YwIbWb8VDL5_6-eoqbT_T_4_-Ud3_9Gp8eWGjpqrHDg3AfplxSLwpcSl3a7RTX2jUNy9g_d3sODJ1iPa6gT/s200/vEx.png" width="200" /></a><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjV07eZIWT9T75Ab1DhBb2Y4BmZLsAOMRy5DOsDsq2BvI2nl3Xiw48iKmjQe06rO7YGRFbzIoptzfZ1npBJ69Hp0dQBa1TVOBXmkfKZpGcLzgb_BuZMeKbiy-ylE_NS7kTQKU17au9NBNLZ/s1600/vEx1.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="717" data-original-width="1061" height="135" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjV07eZIWT9T75Ab1DhBb2Y4BmZLsAOMRy5DOsDsq2BvI2nl3Xiw48iKmjQe06rO7YGRFbzIoptzfZ1npBJ69Hp0dQBa1TVOBXmkfKZpGcLzgb_BuZMeKbiy-ylE_NS7kTQKU17au9NBNLZ/s200/vEx1.png" width="200" /></a></div>
<div dir="ltr" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 14.52px;" trbidi="on">
<br />
<span style="background-color: transparent; font-family: "times" , "times new roman" , serif; font-size: 14.52px;">VMware vExpert directory is available here.. </span><a href="https://vexpert.vmware.com/directory" style="background-color: transparent; color: #888888; font-family: times, "times new roman", serif; font-size: 14.52px; text-decoration-line: none;">https://vexpert.vmware.com/directory</a><br />
<div>
<span style="background-color: transparent;"><span style="font-family: "times" , "times new roman" , serif;"><br /></span></span></div>
<div>
<span style="font-family: "times" , "times new roman" , serif;"><span style="background-color: transparent;">And my vExpert profile can be found <a href="https://vexpert.vmware.com/directory/355" target="_blank">here</a>.</span></span></div>
<span style="font-family: "times" , "times new roman" , serif;"><br />Thank you VMware... :)</span></div>
</div>
Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com0tag:blogger.com,1999:blog-5933107902689158523.post-87406349440298761412020-02-06T03:03:00.001+05:302020-02-06T03:03:14.439+05:30Amazon S3 Batch Operations related reads<div dir="ltr" style="text-align: left;" trbidi="on">
Collection of related links about how to configure Amazon S3 Batch Operations,<br />
<br />
<a href="https://docs.aws.amazon.com/AmazonS3/latest/dev/batch-ops.html">https://docs.aws.amazon.com/AmazonS3/latest/dev/batch-ops.html</a><br />
<br />
<a href="https://docs.aws.amazon.com/AmazonS3/latest/dev/batch-ops-iam-role-policies.html">https://docs.aws.amazon.com/AmazonS3/latest/dev/batch-ops-iam-role-policies.html</a><br />
<br />
<a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_permissions-to-switch.html">https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_permissions-to-switch.html</a><br />
<br />
<a href="https://docs.aws.amazon.com/AmazonS3/latest/dev/batch-ops-basics.html">https://docs.aws.amazon.com/AmazonS3/latest/dev/batch-ops-basics.html</a><br />
<br />
<a href="https://docs.amazonaws.cn/en_us/AmazonS3/latest/dev/batch-ops.html">https://docs.amazonaws.cn/en_us/AmazonS3/latest/dev/batch-ops.html</a><br />
<br />
<a href="https://aws.amazon.com/blogs/storage/encrypting-objects-with-amazon-s3-batch-operations/">https://aws.amazon.com/blogs/storage/encrypting-objects-with-amazon-s3-batch-operations/</a><br />
<br />
<a href="https://aws.amazon.com/blogs/aws/new-amazon-s3-batch-operations/">https://aws.amazon.com/blogs/aws/new-amazon-s3-batch-operations/</a></div>
Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com0tag:blogger.com,1999:blog-5933107902689158523.post-87285302693003391782019-12-29T13:19:00.001+05:302020-06-04T22:34:17.255+05:30Domain Trust Relationship issue on a recently migrated server<div dir="ltr" style="text-align: left;" trbidi="on">
This is something you probably have seen where one is unable to login on a server due to domain trust relationship failure issue. Even I wrote a related post in past, can be found here, <a href="https://www.vcloudnotes.com/2015/06/the-trust-relationship-between-this.html" target="_blank">The-trust-relationship-between-this workstation.....</a><br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjoQLrVmj0hud6kXyTtgUcedpvWk-2UJ6kGXC1X2GQKCqtR7qf6zwsFyewPd8H5wf6zGanSPTzMudtXE1KdoZE1N3ZlgiXPFhb1RUQtsxlSmVJ7T4SnPLCku3ranfrNAdjdqom_v9PawZEM/s1600/trust.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="265" data-original-width="574" height="184" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjoQLrVmj0hud6kXyTtgUcedpvWk-2UJ6kGXC1X2GQKCqtR7qf6zwsFyewPd8H5wf6zGanSPTzMudtXE1KdoZE1N3ZlgiXPFhb1RUQtsxlSmVJ7T4SnPLCku3ranfrNAdjdqom_v9PawZEM/s400/trust.PNG" width="400" /></a></div>
<br />
This week I came across this same issue again, where my team was able to temporarily fix it by removing and then re-joining the server to domain however after a few hours the same issue re-occurred again and this happened two-three times in a week (computer account reset didn't work for this machine).<br />
<br />
While looking for the cause of the issue, the first thing checked was the dns and when tried to ping or nslookup dns server was not reachable.<br />
<br />
Then connected to one of the other machines in the network to check the name resolution, and found the IP assigned to this machine was non-existent and when checked with the host-name, found there is another machine in the network with the same name but a different IP address.<br />
<br />
When checked further, found this server was recently migrated from on-prem to Cloud and someone inadvertently started the on-prem servers (probably patching, etc) which caused the hostname conflict and as a result this DNS and trust relationship failure issue.<br />
<br />
Once we figured out the cause and powered off the on-prem server then fixing the issue was as waiting for some time to update the server name in DNS or force it by re-registering the server with dns using following cmd in elevated mode(run cmd as administrator),<br />
<br />
<span style="background-color: #d9ead3;"><span style="font-family: "courier new" , "courier" , monospace;">C:\ipconfig /registerdns</span> </span><br />
<span style="background-color: #d9ead3;"><br /></span>
<span style="background-color: white;">It may take a few minutes to let you login using the hostname\user.</span><br />
<span style="background-color: white;"><br /></span>
<span style="background-color: white;"><u>Update: 04/06/2020</u></span><br />
<span style="background-color: white;"><br /></span>
<span style="background-color: white;">While working on one related issues found some new PS commands added in our toolset to resolve this issue, related bold can be found here, </span><a href="https://theitbros.com/fix-trust-relationship-failed-without-domain-rejoining/">https://theitbros.com/fix-trust-relationship-failed-without-domain-rejoining/</a><br />
<span style="background-color: white;"><br /></span>
<span style="background-color: white;"><br /></span>
That's it... :)</div>
Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com0tag:blogger.com,1999:blog-5933107902689158523.post-34626492898836718922019-12-29T12:04:00.003+05:302019-12-29T12:29:30.707+05:30AmazonS3Exception: Access Denied errors and potential causes<div dir="ltr" style="text-align: left;" trbidi="on">
In last one month have seen this or related S3 access issues couple of times where either unable to upload a file to S3, unable to save S3 inventory report to another bucket or run an Athena query getting data from S3 and every time it took me some time to figure out the cause of the issue.<br />
So, thought of writing this post to make a note of this for future reference.<br />
<br />
Whenever we face any S3 access related issues, an obvious reason could be IAM or bucket policies where you don't have the desired access assigned.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjqp-prudc5D74MP-RThxGkliBR-pGVG8zwH04wf7Zhjs5URqcTS7DAXZpAsBxVownnkZbOr4eDtWqxFTMrMUXArdoC56yz-Rarm96DpO7kZaeKZoSy0mhpm6E27inY3Swb9ATvhOjvMkGM/s1600/s3.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="149" data-original-width="290" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjqp-prudc5D74MP-RThxGkliBR-pGVG8zwH04wf7Zhjs5URqcTS7DAXZpAsBxVownnkZbOr4eDtWqxFTMrMUXArdoC56yz-Rarm96DpO7kZaeKZoSy0mhpm6E27inY3Swb9ATvhOjvMkGM/s1600/s3.PNG" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
</div>
<br />
<b><span style="background-color: #f3f3f3;">Here are my two cents or to troubleshoot this issue</span>:</b><br />
<ul style="text-align: left;">
<li>First check the AWS IAM permissions, in order to perform any S3 action you should have the required policy defined</li>
<li>If desired IAM policy is there then check for the target bucket policy</li>
<li>If the above two are fine then check for the access to S3 encryption key</li>
<li>If the above three are fine then check for the AWS KMS key policy, as that need to be there for key access</li>
</ul>
<div>
<br /></div>
<div>
<b><u>Related reads</u></b>: </div>
<div>
<br /></div>
<div>
<a href="https://aws.amazon.com/blogs/security/iam-policies-and-bucket-policies-and-acls-oh-my-controlling-access-to-s3-resources/" target="_blank">IAM Policies and Bucket Policies and ACLs!</a></div>
<div>
<a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-policies.html" target="_blank">Overview of KMS Key Policies</a></div>
<div>
<br /></div>
<div>
In case there are any other scenario, which i'm missing then you're welcome to share and discuss the same in comment section.</div>
<div>
<br /></div>
<div>
That's it... :) </div>
</div>
Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com0tag:blogger.com,1999:blog-5933107902689158523.post-44405283945106199952019-12-15T13:36:00.000+05:302019-12-15T15:29:41.897+05:30Amazon EC2 related permission error during AWS RDS database restore<div dir="ltr" style="text-align: left;" trbidi="on">
Recently I came across this issue where the database team reported that while trying to restore the Oracle RDS database they are getting an EC2 related permission issue. To my surprise, they also said earlier they had the required permission and this is the first time they came across any such error however I was sure nothing changed from the permissions side.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEibWx_TW9DGc4rKZvvKO9DgjrJYti2jVvnwxGkqdOdDLbt0DguBNLM3gGuk4KSYct9C1jg0fWmQ657kVHdk-7QjEUiFbt7T9YhDA5jyob1rL902iwb99YdHdaR4KAH1HDQXqoJMsCndooJr/s1600/1.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="554" data-original-width="1007" height="220" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEibWx_TW9DGc4rKZvvKO9DgjrJYti2jVvnwxGkqdOdDLbt0DguBNLM3gGuk4KSYct9C1jg0fWmQ657kVHdk-7QjEUiFbt7T9YhDA5jyob1rL902iwb99YdHdaR4KAH1HDQXqoJMsCndooJr/s400/1.jpg" width="400" /></a></div>
<br />
Just to re-validate, checked for the associated IAM policy and found they have AWS RDSFullAccess policy assigned so logically should be able to restore the RDS database without any issue.<br />
<br />
As a second troubleshooting step, I checked CloudTrail logs for any restore failed events without luck then tried to replicate the issue in my test account however didn't encounter any error.<br />
<br />
<div class="" style="clear: both; text-align: left;">
At this point thought to give a deeper look at CloudTrail logs and checked for all the events during the period (when tried to restore the RDS database), interestingly there were a few <span style="background-color: #cccccc;">CreateSecurityGroup</span><span style="background-color: white;"> related events.</span> </div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEijBSgQnkhxBHDRMDKtQULvy1BOSEsXejxWdxrFdeF7sB_ytVQUIfvSR8Dl2Ii9xEf99wlH_CtwYDJoFqk7Sri17xSspHRnuPJ90txxCwqh5IdC_0DTJ0nDHHSFubx4OHqzD5xqq-H4JIyh/s1600/5.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="562" data-original-width="1058" height="211" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEijBSgQnkhxBHDRMDKtQULvy1BOSEsXejxWdxrFdeF7sB_ytVQUIfvSR8Dl2Ii9xEf99wlH_CtwYDJoFqk7Sri17xSspHRnuPJ90txxCwqh5IdC_0DTJ0nDHHSFubx4OHqzD5xqq-H4JIyh/s400/5.jpg" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
</div>
<div class="separator" style="clear: both; text-align: left;">
And when checked further,</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiNBkQPhR7GmSjcfKUFJwSoLpoogbqYEkeByUIaFbADmPbiQiYpbmNabb8BUHxILzEvfGBCfIRFpgtrKlIOvE8UfgT4_HziOGrs9AP8g46TMaiBPQS3NDXWQTLPUBz5-FNuCWQg0_Lx9vVD/s1600/3.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="630" data-original-width="1364" height="183" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiNBkQPhR7GmSjcfKUFJwSoLpoogbqYEkeByUIaFbADmPbiQiYpbmNabb8BUHxILzEvfGBCfIRFpgtrKlIOvE8UfgT4_HziOGrs9AP8g46TMaiBPQS3NDXWQTLPUBz5-FNuCWQg0_Lx9vVD/s400/3.jpg" width="400" /></a></div>
<div class="" style="clear: both; text-align: left;">
Now it was clear that while trying to restore the RDS database, they were selected to create a new security group instead of the desired option "Choose existing Security Group" option.</div>
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgON5Sb_DWH8vbpiqHV5EzqU8AMqHlUwPHd907iPm9XBpxMxceejBcYqTiwvdUN0kKZyabFJ77ZkmsXD8YmaQS4D3F-IGeBepCWktlPqF_9QXFaG3xSSE4vY2xyqnpHKd-FSJSrI-LUo-iY/s1600/4.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="191" data-original-width="815" height="91" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgON5Sb_DWH8vbpiqHV5EzqU8AMqHlUwPHd907iPm9XBpxMxceejBcYqTiwvdUN0kKZyabFJ77ZkmsXD8YmaQS4D3F-IGeBepCWktlPqF_9QXFaG3xSSE4vY2xyqnpHKd-FSJSrI-LUo-iY/s400/4.jpg" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="" style="clear: both; text-align: left;">
Post figuring this out, it was easy to make the database team understand that regardless of database vendor the core platform concepts would remain the same.</div>
<div class="" style="clear: both; text-align: left;">
<br /></div>
<div class="" style="clear: both; text-align: left;">
Some of you might think that why I didn't check CloudTrail logs even before trying to replicate the issue in the test environment and the reason is opinions from others and the name Oracle (now read the above paragraph again 😉).</div>
<div class="" style="clear: both; text-align: left;">
<br /></div>
<div class="" style="clear: both; text-align: left;">
That's it... 😊</div>
</div>
Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com0tag:blogger.com,1999:blog-5933107902689158523.post-57516728476005141112019-12-15T11:50:00.000+05:302019-12-15T11:54:23.367+05:30PowerCLI script to get HBA firmware and driver version for all ESXi hosts<div dir="ltr" style="text-align: left;" trbidi="on">
<div dir="ltr" style="text-align: left;" trbidi="on">
This is a follow-up post on one of my earlier post, <a href="http://www.vcloudnotes.com/2018/07/how-to-check-fc-hba-driver-firmware.html" target="_blank">How to check FC hba driver & firmware version on ESXi host.</a><br />
<br />
We can use the following PS script to find and list HBA firmware and driver versions for all ESXi hosts in a given Cluster.<br />
<br />
<span style="background-color: #cccccc;">You may need to change the HBA provider as one of the following per the hardware attached.</span><br />
For Emulex hba : lpfc<br />
Brocade hba : bfa<br />
Qlogic hba : qlnativefc or qla*<br />
<br />
<pre class="brush: ps">$HBAList = @()
# Start Loop to run command against all hosts in the Staging Cluster
foreach ($vmhost in ((get-cluster Cluster_Name)| get-vmhost))
{
# Pipe the Get-esxcli cmdlet into the $esxcli variable
$esxcli = $vmhost | get-esxcli
# I used this to gather the VMHost Name for the exported CSV file
$VMHostName = $vmhost.Name
# This is the ESXCLI command I ran to get the Driver Version out of the ESXCLI System Module Get DCUI Shell
$HBAList += $esxcli.system.module.get("lpfc") | Select-object @{N="VMHostName";E={$VMHostName}}, Module, Version
}
# Results are compiled and exported to a CSV file
$HBAList | export-csv -path E:\ben\vmware\HBA_info.csv -notypeinformation
</pre>
Referance: <span style="font-family: "times new roman";"><span style="white-space: normal;"><a href="https://communities.vmware.com/thread/572418" target="_blank">VMTN</a></span></span></div>
<br />
That's it... :)</div>
Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com2tag:blogger.com,1999:blog-5933107902689158523.post-10599361680873223072019-03-11T21:25:00.000+05:302019-03-11T21:26:35.788+05:30VMware vExpert 2019 Award Announced<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="post-header" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 10.8px; line-height: 1.6; margin: 0px 0px 1.5em;">
<div class="post-header-line-1">
</div>
</div>
<div class="post-body entry-content" id="post-body-3991504863450816687" itemprop="articleBody" style="line-height: 1.4; position: relative; width: 570px;">
<div dir="ltr" trbidi="on">
<span style="font-family: "times" , "times new roman" , serif;">I am very honored to be named a <a href="https://vexpert.vmware.com/" target="_blank">VMware vExpert</a> again, this is my fifth time…..Congratulations to all those who made it in the vExpert list.</span></div>
<div dir="ltr" trbidi="on">
<span style="font-family: "times" , "times new roman" , serif;"><br /></span></div>
<div dir="ltr" trbidi="on">
<div class="separator" style="background-color: white; clear: both; text-align: center;">
<span style="font-family: "times" , "times new roman" , serif;"><img border="0" data-original-height="180" data-original-width="534" height="133" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgg0cS4TYt8pR3avMglPUIc53lg-Tg3EmduE9iOy97yepllbRVevxY4qzlAnEaONz_kU2CjjPUhMsYRoIECFRlDotaekYq-jzPFgOK_TJsiVHN_OW3jNDIK6ahXJdxqWHObqULt7c5gM-QM/s400/vexpert.PNG" width="400" /></span></div>
<div style="background-color: white;">
<span style="background-color: transparent;"><span style="font-family: "times" , "times new roman" , serif;"><br /></span></span></div>
<div style="background-color: white;">
<span style="background-color: transparent;"><span style="font-family: "times" , "times new roman" , serif;">VMware vExpert directory is available here.. <a href="https://vexpert.vmware.com/directory">https://vexpert.vmware.com/directory</a></span></span></div>
<div style="background-color: white;">
<span style="background-color: transparent;"><span style="font-family: "times" , "times new roman" , serif;"><br /></span></span></div>
<div style="background-color: white;">
<span style="font-family: "times" , "times new roman" , serif;"><span style="background-color: transparent;">And my profile is listed here, </span><a href="https://vexpert.vmware.com/directory" target="_blank"><span style="background-color: transparent;">https://vexpert.vmware.com/directory/355</span><span style="background-color: transparent;"> </span></a></span></div>
<span style="font-family: "times" , "times new roman" , serif;"><br />Thank you... :)</span></div>
</div>
</div>
Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com0tag:blogger.com,1999:blog-5933107902689158523.post-1914319626577729272019-01-09T15:24:00.002+05:302019-01-09T22:05:59.751+05:30How to change the VM Guest OS type and version information<div dir="ltr" style="text-align: left;" trbidi="on">
As we all know that, we specify the guest operating system and its version during the VM creation. In case if you’ve specified the wrong operating system, version or upgrading the already installed guest OS then you will need to change the guest operating system version to reflect the same correctly in vCenter inventory. <br><br>Here in my case we just upgraded the operating system of our last remaining Server 2003 servers and want to correct the related guest OS info in vCenter inventory. <br><br><b><u>Prerequisites</u> </b><br><br>Power off the virtual machine. <br><br><b><u>Procedure</u> </b><br><ul style="text-align: left;">
<li>Right-click a virtual machine in the inventory and select Edit Settings. </li>
<li>Click the VM Options tab and expand General Options. </li>
<li>From the Guest OS drop-down menu, select the guest operating system family. </li>
<li>From the Guest OS Version drop-down menu, select the guest operating system version. </li>
</ul>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgG4RbNTq8vHdOXPwlUvid7_0FNJ9oXtuaC2Nb98rHQ4XBss_phfxcUu9stFi5ZOgK2yqxLJXgr2zpfNYk-9Ms5y_I39w1GUrPubh5frlaSqCxCih-1oXKvzu7Mfk8JujRVXPJP3EeTK67T/s1600/os.JPG" imageanchor="1"><img border="0" data-original-height="627" data-original-width="601" height="400" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgG4RbNTq8vHdOXPwlUvid7_0FNJ9oXtuaC2Nb98rHQ4XBss_phfxcUu9stFi5ZOgK2yqxLJXgr2zpfNYk-9Ms5y_I39w1GUrPubh5frlaSqCxCih-1oXKvzu7Mfk8JujRVXPJP3EeTK67T/s1600/os.JPG" width="400"></a></div>
<ul style="text-align: left;">
<li>If you select Other for the guest operating system family and Other (32-bit) or Other (64-bit) for the version, in the vSphere Web Client you are prompted to type a name for the operating system in the text box. </li>
<li>Click OK. </li>
</ul>
And you are done… <br><br><b style="font-family: sans-serif;"><u>Note</u>:</b><span style="font-family: sans-serif;"> When you change the guest operating system type in the virtual machine settings, you change the setting for the guest operating system in the virtual machine's configuration file. To change the guest operating system itself, you must install the new operating system in the virtual machine. </span><br style="font-family: sans-serif;"><br style="font-family: sans-serif;"><span style="font-family: sans-serif;">When you set the guest operating system type for a new virtual machine, vCenter Server chooses configuration defaults based on the guest type. Changing the guest operating system type after the virtual machine is created does not retroactively change those settings. It affects the recommendations and setting ranges offered after the change. </span></div><div dir="ltr" style="text-align: left;" trbidi="on"><br></div><div dir="ltr" style="text-align: left;" trbidi="on"><b><u>Why its important to select the Correct Guest OS Type/Version:</u></b></div><div dir="ltr" style="text-align: left;" trbidi="on">Incorrect configuration of Guest OS of the virtual machine can lead to; <br><ul style="text-align: left;">
<li>Reduction of performance</li>
<li>Different default type for the SCSI device</li>
<li>Different defaults of devices</li>
<li>Wrong VMware Tools presented to the Guest OS resulting in failure to install</li>
<li>Inability to select virtual hardware such as enhanced vmxnet, vmxnet3 or number of vCPUs.</li>
<li>Inability to activate features such as CPU and Memory Hot Add.</li>
<li>Inability to activate Fault Tolerance.</li>
<li>VM burning up 100% of CPU when idling (rare occasions) </li>
</ul>
<div>
<br></div>
Reference: <a href="http://frankdenneman.nl/2009/12/15/impact-of-mismatch-guest-os-type/">http://frankdenneman.nl/2009/12/15/impact-of-mismatch-guest-os-type/</a> <div>
<br></div>
<div>
<a href="http://www.yellow-bricks.com/2012/01/13/why-selecting-the-correct-os-when-creatingupgrading-a-vm-is-important/" target="_blank">http://www.yellow-bricks.com/2012/01/13/why-selecting-the-correct-os-when-creatingupgrading-a-vm-is-important </a><br><br> That's it... :)<br> </div>
</div>
Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com1tag:blogger.com,1999:blog-5933107902689158523.post-48973303692514703222018-10-17T23:53:00.001+05:302019-12-15T13:38:13.814+05:30VMware Update manager connection / plug-in error and how to fix it<div dir="ltr" style="text-align: left;" trbidi="on">
Recently for some reason we had to remove and then re-join our VMware update manager server to domain (here you might have a question, why but that’s a different story), once the server re-joined then when tried to connect to our vCenter server, got following pop-up, <br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiy7tzAjhegxnJ7CMCvE8jD4K4tyCnZDQpGH1RWDABBg_Gk-lFP8OMzSd3_SLwWwwefSLgn1X-Jjz4KSyfx_P4XLt8PALDySz_uv-y6kQ2HXnQuRTDiegfpr5kV-Pnk1T5Y35JnbtP0tjUA/s1600/u.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="157" data-original-width="401" height="125" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiy7tzAjhegxnJ7CMCvE8jD4K4tyCnZDQpGH1RWDABBg_Gk-lFP8OMzSd3_SLwWwwefSLgn1X-Jjz4KSyfx_P4XLt8PALDySz_uv-y6kQ2HXnQuRTDiegfpr5kV-Pnk1T5Y35JnbtP0tjUA/s320/u.JPG" width="320" /></a></div>
<span style="font-size: x-small;"><b>Note</b>: this is vCenter 6.0</span><br />
<span style="font-size: xx-small;"><br /></span>
We tried to enable the Update manager plug-in but no avail.<br />
<br />
And when checked from the Web client and tried to connect to Update manager got the following similar error message.<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjVclrJsKY58b3FWhzDHZBGbcAIej7hxqOugGD1ZwZRascwLAuJN5fdcfzi6lof32izV3bhV8Kl_0IMLDbZMmUQ1q5VO7DxS4l6prmvgWcsM9GzIaMyvph4VbwtW6DGDuWKny2FDTvoLyjX/s1600/vum1.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="135" data-original-width="406" height="132" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjVclrJsKY58b3FWhzDHZBGbcAIej7hxqOugGD1ZwZRascwLAuJN5fdcfzi6lof32izV3bhV8Kl_0IMLDbZMmUQ1q5VO7DxS4l6prmvgWcsM9GzIaMyvph4VbwtW6DGDuWKny2FDTvoLyjX/s400/vum1.JPG" width="400" /></a></div>
or<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEit7D4MJQ-m5g9uTdNiEChTpYjupUGM9gbTSFfI8WkOyk_ki9LSn18Iz_1_zaMI4ms1J6FxIVF_tgN11sNwxTQJmxcDfD2CaQKUAfAqGyiW6W3ZWtx5me_cFuw_0XQntI93Oi2hMqnP1e-b/s1600/vum2.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="103" data-original-width="408" height="100" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEit7D4MJQ-m5g9uTdNiEChTpYjupUGM9gbTSFfI8WkOyk_ki9LSn18Iz_1_zaMI4ms1J6FxIVF_tgN11sNwxTQJmxcDfD2CaQKUAfAqGyiW6W3ZWtx5me_cFuw_0XQntI93Oi2hMqnP1e-b/s400/vum2.JPG" width="400" /></a></div>
<br />
So, here it seems like domain re-join of VMware update manager broke the link between the Update Manager and vCenter and now the question is how we would fix that.<br />
<br />
To fix these errors, we need to re-validate the VMware Update manager configurations and to do that, <br />
<ul style="text-align: left;">
<li>First Stop the VMware Update manager Service, then</li>
<li>Go to Update Manager installation directory, C:\Program Files (x86)\VMware\Infrastructure\Update Manager</li>
<li>Now find and open the vci-integrity.xml file and look for the “<vpxdLocation>” tag and verify the vCenter connection URL / IP detail.</li>
</ul>
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiKKZgFgxOr4fwejiXZsNCt9TB_U-U5AoFwgzqfq8RSVn573UFXuTJDMGW1oDvpTYjVRRJ0i1nCRWHhICSnw3sjN5BqMiMdLwSZ8MDfkGqX0QNam2gyhRfKe06JBFcYWDLmDYM2kB0dBBHc/s1600/vum5.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="297" data-original-width="851" height="138" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiKKZgFgxOr4fwejiXZsNCt9TB_U-U5AoFwgzqfq8RSVn573UFXuTJDMGW1oDvpTYjVRRJ0i1nCRWHhICSnw3sjN5BqMiMdLwSZ8MDfkGqX0QNam2gyhRfKe06JBFcYWDLmDYM2kB0dBBHc/s400/vum5.JPG" width="400" /></a></div>
<br />
In my case, here my vCenter IP is mentioned correctly but not the port detail, notice the use of http/https.<br />
<ul style="text-align: left;">
<li>Change the port number mentioned here to 80 and now the URL should look like,</li>
</ul>
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiWtTcEojzSTPGPZbQ7xiuNvoA3wWFLTTJa-FgIKhNyAcrL_MVtLmMbqi2kzO5iDjUQwvTYvv10SJhT6oSJbeF0pcvxz0M2t1x7BwIvIzZEpZJkFUtsGxRhVcVcJPK3czi1TXqtm1S_BCTj/s1600/vum3.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="237" data-original-width="851" height="111" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiWtTcEojzSTPGPZbQ7xiuNvoA3wWFLTTJa-FgIKhNyAcrL_MVtLmMbqi2kzO5iDjUQwvTYvv10SJhT6oSJbeF0pcvxz0M2t1x7BwIvIzZEpZJkFUtsGxRhVcVcJPK3czi1TXqtm1S_BCTj/s400/vum3.JPG" width="400" /></a></div>
<br />
Now Start the VMware Update Manager Service<br />
<br />
Now you should be able to enable the VUM plug-in in #C client/access the VMware Update manager from the web client.<br />
<div>
<br /></div>
<div>
That’s it… 😊 </div>
</div>
Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com2tag:blogger.com,1999:blog-5933107902689158523.post-14296430538707079742018-10-17T22:40:00.000+05:302018-10-17T22:40:00.497+05:30An useful VMware learning resource for beginners<div dir="ltr" style="text-align: left;" trbidi="on">
Today while reading something on one of the VMware Blogs site, came across this interesting VMware learning resource site called <a href="https://vspherecentral.vmware.com/" target="_blank">vSphere Central</a>, as it seems really useful so thought of making a note of it.<br />
<br />
This site is a good place to find the detailed information of some the important features of the vSphere Products, vCenter, ESXi and vRealize Operations manager with related configuration walkthrough.<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh7WD_I1M6_aB26m0lo_bk7Vk_7Rl0z1CyY9Auco5iEgh29JtlN8x8wCs6tQ87tWQREAZamjOe28P4vo7t9BKBaXB7iA-7jkoutKbtCnm7hb2oKTy4c93_wMWTYj7qhZyRqtN72aUEqYoz-/s1600/123.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="666" data-original-width="1045" height="400" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh7WD_I1M6_aB26m0lo_bk7Vk_7Rl0z1CyY9Auco5iEgh29JtlN8x8wCs6tQ87tWQREAZamjOe28P4vo7t9BKBaXB7iA-7jkoutKbtCnm7hb2oKTy4c93_wMWTYj7qhZyRqtN72aUEqYoz-/s400/123.JPG" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj1wTNqRppIba0wTp0SUPn0W10VxznP6BV-YsY2u2nT3fPaCjg85Cjc8cMBlyFKlXGoaP0I4uzad-TGcGqrRcdxlY-aj8Khd-M9vrax2d6Ixy8ofyUeW5SJP4sPuknkbukke7yA100xm7Ry/s1600/234.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="467" data-original-width="1025" height="182" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj1wTNqRppIba0wTp0SUPn0W10VxznP6BV-YsY2u2nT3fPaCjg85Cjc8cMBlyFKlXGoaP0I4uzad-TGcGqrRcdxlY-aj8Khd-M9vrax2d6Ixy8ofyUeW5SJP4sPuknkbukke7yA100xm7Ry/s400/234.JPG" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiWwpOJUYNFp_Jw1Yjn5V-7JioVUPBG8nGXJhRbJ7vKRebwEf63DZ8wt8AfRZ0ahw2TsQbC88H28Hlh0wmQhHAUUmXz6LGv_8NCMG4i_pdQT2piJPSDsdIOqJZEt6lQwuf4GEY5lq-MkLo5/s1600/456.JPG" imageanchor="1"><img border="0" data-original-height="658" data-original-width="1021" height="400" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiWwpOJUYNFp_Jw1Yjn5V-7JioVUPBG8nGXJhRbJ7vKRebwEf63DZ8wt8AfRZ0ahw2TsQbC88H28Hlh0wmQhHAUUmXz6LGv_8NCMG4i_pdQT2piJPSDsdIOqJZEt6lQwuf4GEY5lq-MkLo5/s400/456.JPG" width="400" /></a></div>
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgTqMk9878rmpe50Ubdve6uQDDREWaACwvomW0CmYs8yfyWffgWsF1K2m379UZffJbL7kehjWDzQorVnIF5jR-ru6zmQv1tZ3jJUrUQxIUxm5-C1cVfJ4hM7Dws5009NKNhjK12wgW9PjfO/s1600/567.JPG" imageanchor="1"><img border="0" data-original-height="536" data-original-width="756" height="400" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgTqMk9878rmpe50Ubdve6uQDDREWaACwvomW0CmYs8yfyWffgWsF1K2m379UZffJbL7kehjWDzQorVnIF5jR-ru6zmQv1tZ3jJUrUQxIUxm5-C1cVfJ4hM7Dws5009NKNhjK12wgW9PjfO/s400/567.JPG" width="400" /></a></div>
etc...<br />
<br />
Hope it would be useful for others...That's it :)</div>
Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com2tag:blogger.com,1999:blog-5933107902689158523.post-4789417315930270882018-07-15T00:26:00.001+05:302018-07-15T10:42:29.389+05:30How to check and verify the I/O device firmware/driver compatibility with VMware HCL<div dir="ltr" style="text-align: left;" trbidi="on">
This is something, we as a VMware admin should be aware of because in case of any related issue this is where we check if the device is supported, if supported then what capabilities have been tested as well as the detail of device driver and compatible firmware version.<br />
<br />
In order to check about a IO device, browse to <b>VMware Compatibility Guide</b> site and select I/O devices from "What are you looking for drop-down".<br />
<br />
Or directly browse to https://www.vmware.com/resources/compatibility/search.php?deviceCategory=io<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg_PX2fs2wT78Vjqea26bsuqXzNZ_meqgEyoCkEcr2CIeqcgXjM35XYep-OYJR3BNs4fF0ROKMk8r5i9iTH2T9puxNoyS4ZQD-hE21hMBXJ_z5ex0QpionJS94oULu0Z066mjnSTDAjXEJi/s1600/did.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="507" data-original-width="1162" height="172" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg_PX2fs2wT78Vjqea26bsuqXzNZ_meqgEyoCkEcr2CIeqcgXjM35XYep-OYJR3BNs4fF0ROKMk8r5i9iTH2T9puxNoyS4ZQD-hE21hMBXJ_z5ex0QpionJS94oULu0Z066mjnSTDAjXEJi/s400/did.jpg" width="400" /></a></div>
<br />
In order to check the I/O cards detail we need to have highlighted information handy.<br />
<br />
VID: Vendor ID<br />
DID: Device ID<br />
SVID: Sub-Vendor ID<br />
SSID: Sub-Device ID<br />
<br />
We can get this detail on an ESXi host using <span style="font-family: "courier new" , "courier" , monospace;">vmkchd</span><span style="font-family: "courier new" , "courier" , monospace;">ev</span><span style="font-family: "courier new" , "courier" , monospace;"> </span>command as follows,<br />
<br />
<span style="font-family: "courier new" , "courier" , monospace;">#</span><span style="font-family: "courier new" , "courier" , monospace;">vmkchdev -l |grep I/O_device_name</span><br />
<div>
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjBR297B_-tgqpt9eFHrJ3D5lPZCid_XD9_bsh4dOOJTwcl2dbHyrwaK8XNlGCqsA8NFShyphenhyphenZdvOoLMqFX9qm9VwC9bJUJV5F7cwCfzU3LWwHe8F5eNyl0pslAcV9Rw0xj-cijx9b8EStKMz/s1600/vmnic.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="144" data-original-width="530" height="108" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjBR297B_-tgqpt9eFHrJ3D5lPZCid_XD9_bsh4dOOJTwcl2dbHyrwaK8XNlGCqsA8NFShyphenhyphenZdvOoLMqFX9qm9VwC9bJUJV5F7cwCfzU3LWwHe8F5eNyl0pslAcV9Rw0xj-cijx9b8EStKMz/s400/vmnic.jpg" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<span style="font-family: "courier new" , "courier" , monospace;"></span></div>
<span style="font-family: "courier new" , "courier" , monospace;">
</span>So, here in case of vmnic0,<br />
<br />
<span style="font-family: "courier new" , "courier" , monospace;">VID:DID SVID:SSID</span><br />
<span style="font-family: "courier new" , "courier" , monospace;">8086:100f 15ad:0750</span><br />
<br />
Same is true for any other connected I/O device.<br />
<br />
In case of hba, use<br />
<br />
#<span style="font-family: "courier new" , "courier" , monospace;">vmkchdev -l |grep vmhba</span><br />
<span style="font-family: "courier new" , "courier" , monospace;"><br /></span>
Now use this detail on "VMware Compatibility Guide for I/O device page" to get the required detail.<br />
<br />
<b>Note:</b> you may also use <span style="font-family: "courier new" , "courier" , monospace;">#</span><span style="font-family: "courier new" , "courier" , monospace;">vmkchdev -l | more </span><span style="font-family: inherit;">command to find</span><span style="font-family: "courier new" , "courier" , monospace;"> </span><span style="font-family: "courier new" , "courier" , monospace;">VID:DID SVID:SSID </span><span style="font-family: inherit;">detail of all connected PCI devi</span>ces or filter the information using the grep command.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhf3J2hSIRCPabKTT7PNcnSL6dTi_A5GD1pngCtannrkkN9HjWpZ0bjleGGJB7GQVeS8jVBp318gLv9I9DpfeBmWIqMpCB69OAp4cq3YKWzcxbrjOhga0A1e5dB2AZI1lf50gaxBWmrv0zI/s1600/vmkch.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="472" data-original-width="805" height="233" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhf3J2hSIRCPabKTT7PNcnSL6dTi_A5GD1pngCtannrkkN9HjWpZ0bjleGGJB7GQVeS8jVBp318gLv9I9DpfeBmWIqMpCB69OAp4cq3YKWzcxbrjOhga0A1e5dB2AZI1lf50gaxBWmrv0zI/s400/vmkch.jpg" width="400" /></a></div>
<br />
That's it... :)</div>
</div>
Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com0tag:blogger.com,1999:blog-5933107902689158523.post-45679966869519491592018-07-08T14:58:00.001+05:302018-07-14T10:22:17.192+05:30How to check FC hba driver & firmware version on ESXi host<div dir="ltr" style="text-align: left;" trbidi="on">
Lately while storage team was planning to upgrade the storage system OS, during initial checks they found there are some ESXi hosts in the environment having an old version of hba driver so, they sent their recommendation to upgrade the hba driver to a minimum supported version or later.<br />
<br />
Now here is the point, while planning to upgrade the hba or any other device driver always make sure to check and upgrade the firmware of the device to a compatible version as well otherwise you might face some serious performance and related issues (better to upgrade the device driver and firmware at same time).<br />
<br />
One can check and verify the IO devices firmware/driver compatibly and ESXi support information on VMware Compatibility Guide Site.<br />
<br />
Now here are the steps to check the installed firmware/driver version of any connected hba device.<br />
<br />
First check what type of hba driver is being used on the server by running one of the following cmd,<br />
<br />
# <span style="font-family: "courier new" , "courier" , monospace;">esxcfg-scsidevs -a </span><br />
<br />
Or<br />
<div>
<br /></div>
<div>
# <span style="font-family: "courier new" , "courier" , monospace;">esxcli storage core adapter list</span><br />
<br />
The second column of the output shows the driver that is configured for the HBA.<br />
<br />
<span style="background-color: #d9ead3;"><b>For native hba driver</b></span>, use following cmds to get the driver/firmware detail: <br />
<br />
# <span style="font-family: "courier new" , "courier" , monospace;">/usr/lib/vmware/vmkmgmt_keyval/vmkmgmt_keyval -d </span><br />
<br />
Here you can see the names of connected HBAs, suppose they’re: <span style="font-family: "courier new" , "courier" , monospace;">vmhba0</span> and <span style="font-family: "courier new" , "courier" , monospace;">vmhba2</span><br />
<br />
<br />
# <span style="font-family: "courier new" , "courier" , monospace;">/usr/lib/vmware/vmkmgmt_keyval/vmkmgmt_keyval -l -i vmhba0/Emulex </span> (type the <span style="font-family: "courier new" , "courier" , monospace;">hba/vender_name</span> correctly as it’s case sensitive)<br />
<br />
The output of the cmd will show you the installed hba firemware & driver version.<br />
<br />
<br />
<span style="background-color: #d9ead3;"><b>To check the information when legacy driver is being in use</b></span>. <br />
<br />
Go to <span style="font-family: "courier new" , "courier" , monospace;">/proc/scsi</span> directory and look for <span style="font-family: "courier new" , "courier" , monospace;">lpfc</span> (for emulex) or <span style="font-family: "courier new" , "courier" , monospace;">qla </span>(for qlogic) or <span style="font-family: "courier new" , "courier" , monospace;">bfa</span> (for brocade and sometime for qlogic as well).<br />
<br />
Now, change the directory to appropriate hba model dir, if its <span style="font-family: "courier new" , "courier" , monospace;">lpfc</span> then:<br />
<br />
# <span style="font-family: "courier new" , "courier" , monospace;">cd /proc/scsi/lpfc#### </span><br />
<br />
Where #### is the model of the Emulex hba<br />
<br />
Run the cmd the content of this dir,<br />
<br />
# <span style="font-family: "courier new" , "courier" , monospace;">ls -lia</span><br />
<br />
Now check the files available here (with the names as a number), in case there is a file named 6 then:<br />
<br />
# <span style="font-family: "courier new" , "courier" , monospace;">Cat 6 </span><br />
<br />
You would get an output similar to, <br />
<br />
<span style="font-family: "courier new" , "courier" , monospace;">Chip Revision: Rev-D<br />Manufacturer: QLogic<br />Model Description: QLogic-###<br />Instance Num: 0<br />Serial Num: ALX0xxxxxxxx<br />Firmware Version: 5.4.x.x<br />Hardware Version: Rev-D<br />Bios Version: x.x.x.x<br />Optrom Version: x.x.x.x<br />Port Count: 1<br />WWNN: xxxxxxxxxxxxxxxxx<br />WWPN: xxxxxxxxxxxxxxxxxx</span></div>
<div>
<span style="font-family: "courier new" , "courier" , monospace;"><br /></span>
<b>To quickly check the HBA Driver in use:</b><br />
<br />
1. Open a console to the ESXi/ESX host.<br />
<br />
2. Run this command to obtain the driver type that the Host Bus Adapter is currently using:<br />
<br />
# <span style="font-family: "courier new" , "courier" , monospace;">esxcfg-scsidevs -a </span><br />
<br />
Or</div>
<div>
<br /></div>
<div>
# <span style="font-family: "courier new" , "courier" , monospace;">esxcli storage core adapter list</span><br />
<br />
<b>Note:</b> The second column shows the driver that is configured for the HBA.<br />
<br />
1. Run this command to view the driver version in use:<br />
<br />
# <span style="font-family: "courier new" , "courier" , monospace;">vmkload_mod -s HBADriver | grep Version </span></div>
<div>
<span style="font-family: "courier new" , "courier" , monospace;"><br /></span></div>
<div>
For example, run this command to check the <span style="font-family: "courier new" , "courier" , monospace;">vmkata </span>driver:<br />
<br />
# <span style="font-family: "courier new" , "courier" , monospace;">vmkload_mod -s <span style="font-family: "courier new" , "courier" , monospace;">vmkata | </span>grep Version </span></div>
<div>
<span style="font-family: "courier new" , "courier" , monospace;"><br /></span></div>
<div>
or you may also use following cmd.<br />
<div>
<span style="font-family: "courier new" , "courier" , monospace;"><br /></span></div>
<div>
# <span style="font-family: "courier new" , "courier" , monospace;">esxcli software vib list | egrep </span><span style="font-family: "courier new" , "courier" , monospace;">vmkata</span></div>
<br />
This will show you the driver version of hba.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEggt5Vc13mr9zFupvWyNT620Gig0AZblMkQ0y9dz71qruM6vKUFdbtSeUEzBsJa_nNMvNk8w-Ntb3S3M-XMigolTZfhZ0kBPJSRiDSjzW-PwaiMTVfzPRG2VB3dgZxtVc4UOpXJ4May0XV1/s1600/hba.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="488" data-original-width="843" height="230" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEggt5Vc13mr9zFupvWyNT620Gig0AZblMkQ0y9dz71qruM6vKUFdbtSeUEzBsJa_nNMvNk8w-Ntb3S3M-XMigolTZfhZ0kBPJSRiDSjzW-PwaiMTVfzPRG2VB3dgZxtVc4UOpXJ4May0XV1/s400/hba.jpg" width="400" /></a></div>
<div style="text-align: center;">
<br /></div>
To obtain the driver version for all HBAs in the system:<br />
<br />
# <span style="font-family: "courier new" , "courier" , monospace;">for a in $(esxcfg-scsidevs -a |awk '{print $2}') ;do vmkload_mod -s $a |grep -i version ;done</span><br />
<br />
That's all... :)</div>
</div>
Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com6tag:blogger.com,1999:blog-5933107902689158523.post-46601328812854972692018-07-02T21:50:00.000+05:302018-07-02T23:31:37.150+05:30How to check ESXi vmnic driver and firmware detail<div dir="ltr" style="text-align: left;" trbidi="on">
<div>
This is something which you may need to check while troubleshooting a network card related issue on ESXi host and want to cross verify the vmnic driver / Firmware version compatibility with VMware HCL.</div>
<div>
</div>
<div>
In order the check the required vmnic driver/firmware detail, first connect the to the desired ESXi host over ssh using Putty or you may also connect to DCUI, </div>
<div>
<br></div>
<div>
Now use following command to get detail of connected network cards,</div>
<div>
<br></div>
# <span style="font-family: "courier new" , "courier" , monospace;">esxcli network nic list </span><br>
<br>
There is also a legacy command to get the same information,<br>
<br>
# <span style="font-family: "courier new" , "courier" , monospace;">esxcfg-nics -l </span><br>
<div>
<span style="font-family: "courier new" , "courier" , monospace;"><br></span></div>
Once you identified the required vmnic name, then use one of the below command to get firmware and driver detail.<br>
<div>
<br></div>
<div>
<div>
# <span style="font-family: "courier new" , "courier" , monospace;">ethtool -i vmnic_name </span><br>
<br>
Or </div>
<div>
<br></div>
<div>
# <span style="font-family: "courier new" , "courier" , monospace;">esxcli network nic get -n vmnic_name</span></div>
<div>
<span style="font-family: "courier new" , "courier" , monospace;"><br></span></div>
<div>
Refer to following screenshot to see the same in action,<span style="font-family: "courier new" , "courier" , monospace;"> </span><br>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjhiKlVLgOwCN1xg2fEkMAbBEbIg1JwbfTLDj5bZWZbS8GGr-uSxVKGsOo8qE_Lv9_g-j3oOq5W7BFdTJChMVaUvlD1nGpJJjbo0b8p1-J3bExPfIm3nV4Pf2JGOFiSdoT8fcFJePQdu3hU/s1600/vmnic.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="728" data-original-width="1364" height="212" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjhiKlVLgOwCN1xg2fEkMAbBEbIg1JwbfTLDj5bZWZbS8GGr-uSxVKGsOo8qE_Lv9_g-j3oOq5W7BFdTJChMVaUvlD1nGpJJjbo0b8p1-J3bExPfIm3nV4Pf2JGOFiSdoT8fcFJePQdu3hU/s400/vmnic.jpg" width="400"></a></div>
Here the Firmware version is listed as N/A just because the screenshot is taken from my nested lab.</div>
</div>
<div>
<br></div>
<div>
That's it... :)</div>
</div>
Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com0tag:blogger.com,1999:blog-5933107902689158523.post-35102647020816754652018-06-24T14:16:00.002+05:302018-06-25T09:59:39.400+05:30ESXi upgrade, ValueError: Cannot merge VIBs...<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="MsoNormal">
Recently while upgrading one of the VMhost from ESXi 6.0 U2 to U3 using VMware update
manager, one of my colleague first encountered following error during remediation,<o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<span style="font-family: "courier new" , "courier" , monospace;">“Cannot
execute upgrade script on host”</span><o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
And when
he tried to upgrade the VMhost by manually booting it up using the HPE custom ESXi
6.0 U3 image, he got stuck with following error,<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgGNLCXhwGO3Qg9tizQICmKRV6rZzFx8webzMQMoEys2nLJcKFVXM5vG-3qk-vO44SCOcW13Hie78jKWQxNXILDAulw0LGyFrThs1Lfq-zFO6ESKQoMeLvQ27J0nRy31vXnNZUjjzlvF0v6/s1600/12.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="89" data-original-width="1027" height="34" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgGNLCXhwGO3Qg9tizQICmKRV6rZzFx8webzMQMoEys2nLJcKFVXM5vG-3qk-vO44SCOcW13Hie78jKWQxNXILDAulw0LGyFrThs1Lfq-zFO6ESKQoMeLvQ27J0nRy31vXnNZUjjzlvF0v6/s400/12.png" width="400" /></a></div>
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
</div>
<div class="separator" style="clear: both; text-align: center;">
</div>
<div class="separator" style="clear: both; text-align: left;">
</div>
<div class="MsoNormal">
<!--[if gte vml 1]><v:shapetype
id="_x0000_t75" coordsize="21600,21600" o:spt="75" o:preferrelative="t"
path="m@4@5l@4@11@9@11@9@5xe" filled="f" stroked="f">
<v:stroke joinstyle="miter"/>
<v:formulas>
<v:f eqn="if lineDrawn pixelLineWidth 0"/>
<v:f eqn="sum @0 1 0"/>
<v:f eqn="sum 0 0 @1"/>
<v:f eqn="prod @2 1 2"/>
<v:f eqn="prod @3 21600 pixelWidth"/>
<v:f eqn="prod @3 21600 pixelHeight"/>
<v:f eqn="sum @0 0 1"/>
<v:f eqn="prod @6 1 2"/>
<v:f eqn="prod @7 21600 pixelWidth"/>
<v:f eqn="sum @8 21600 0"/>
<v:f eqn="prod @7 21600 pixelHeight"/>
<v:f eqn="sum @10 21600 0"/>
</v:formulas>
<v:path o:extrusionok="f" gradientshapeok="t" o:connecttype="rect"/>
<o:lock v:ext="edit" aspectratio="t"/>
</v:shapetype><v:shape id="Picture_x0020_1" o:spid="_x0000_i1026" type="#_x0000_t75"
alt="cid:image001.png@01D40987.0CABFD20" style='width:770.25pt;height:66.75pt;
visibility:visible;mso-wrap-style:square'>
<v:imagedata src="file:///C:/Users/NOOR~1.MOH/AppData/Local/Temp/msohtmlclip1/01/clip_image001.png"
o:title="image001.png@01D40987"/>
</v:shape><![endif]--><!--[if !vml]--><!--[endif]--><o:p></o:p></div>
<div class="MsoNormal">
On
checking <span style="font-family: "courier new" , "courier" , monospace;">/var/log/vua.log</span> file on host, found similar entries there.</div>
<div class="MsoNormal">
<o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
Here it
looks like the Intel_bootbak_intelcim_provider_0.5-3.3 has been released more
than once, with different sizes.</div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
So, here to
fix this upgrade issue we need to remove the conflicting <b>intelcim_provider </b>vib. Before trying to remove it, make sure the <b>CIM Server</b> service is in stopped state otherwise you would get an error like, "<span style="font-family: "courier new" , "courier" , monospace;">Can't remove....device or resource busy</span>" while trying to remove it.<br />
<o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
Sometimes
it may look like in Stopped state however as set to Start and Stop with Host,
you would get an error when try to remove it. In such case, set this Service to
start and Stop manually and once done, then you would be able to remove the <b>intelcim_provider </b>vib.</div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
Refer to following screenshots for steps about how to Stop the CIM Server service or change its Startup type.</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj2IwijQAGBGcM0g7d9gSarIWrm5ie1I-F-tKNr8FaIVkFg02YcAaSN_hZ9fhzwZlztKLktS7NmqhWNr88j8yCfBiU8ueM1Z36S8mjYDpk80paOFDoiKk887_dbc3n56qdqUDyGLO7o7wGJ/s1600/cim.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="602" data-original-width="1104" height="217" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj2IwijQAGBGcM0g7d9gSarIWrm5ie1I-F-tKNr8FaIVkFg02YcAaSN_hZ9fhzwZlztKLktS7NmqhWNr88j8yCfBiU8ueM1Z36S8mjYDpk80paOFDoiKk887_dbc3n56qdqUDyGLO7o7wGJ/s400/cim.jpg" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
</div>
<div class="MsoNormal">
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhUewAaxfydwOY8exs_w5hnvFU3W4BZ2aDuRL_lQTefCG7XOw0mRL_FzWEyvcwpOSepZHXwn-tXdHaQ1uc5vVU4etQZYX3TMBoCrGdb1dgTCD-rHBdn2zo_9ixu0Zt1lalqPzKTBuOBzd5q/s1600/cim2.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="510" data-original-width="727" height="280" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhUewAaxfydwOY8exs_w5hnvFU3W4BZ2aDuRL_lQTefCG7XOw0mRL_FzWEyvcwpOSepZHXwn-tXdHaQ1uc5vVU4etQZYX3TMBoCrGdb1dgTCD-rHBdn2zo_9ixu0Zt1lalqPzKTBuOBzd5q/s400/cim2.jpg" width="400" /></a></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
Now, you can
remove the conflicting vib using the following cmd after connecting to host over ssh using putty:<o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<span style="font-family: "courier new" , "courier" , monospace;">esxcli
software vib remove -n intelcim-provider</span> <span style="font-size: x-small;">(A
reboot may be required, check the cmd output reboot required parameter value)</span><o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
Once
done now you can re-run the ESXi upgrade again and hopefully this time it will get
through as well as install the correct version of intelcim-provider.<o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<b>Note</b>: Don't forget to change the Startup type of CIM Server service post ESXi upgared/host reboot.</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiuemXVIasNifz5sxR0QMTjjfbeVCR0hm5gZvrKgmNG44iWNT8MbeTzucZbwcKVKSJzG4mfgTCCkFTiLZkQXJDhFbA_pxqC8wYzyoCL5f3T7f_r410gdIOb4yjorkVl3Jq8v0WM8daL7ifD/s1600/cim3.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="507" data-original-width="727" height="278" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiuemXVIasNifz5sxR0QMTjjfbeVCR0hm5gZvrKgmNG44iWNT8MbeTzucZbwcKVKSJzG4mfgTCCkFTiLZkQXJDhFbA_pxqC8wYzyoCL5f3T7f_r410gdIOb4yjorkVl3Jq8v0WM8daL7ifD/s400/cim3.jpg" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
That's it... :)</div>
</div>
Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com0tag:blogger.com,1999:blog-5933107902689158523.post-17107297450148944212018-05-09T22:07:00.000+05:302018-05-09T23:12:34.980+05:30Inconsistent LUN mapping related issues on ESXi hosts<div dir="ltr" style="text-align: left;" trbidi="on">
Lately came across this issue, where for some reason storage team unmapped and re-mapped few RDM LUNs to VM host group (from Storage array side) and now the respective RDM disks connected to VMs get disappeared.<br />
We had already re-scanned the hosts to storage change and Luns were showing as mounted on all the hosts and after spending two hours with VMware support we had also rebooted the host but that didn't make any difference.<br />
<br />
Finally when we rebooted the cluster nodes then I found this has something to do with consistent mapping of rdm Luns across VM hosts (where the cluster nodes residing).<br />
<br />
In order to check if a LUN is consistently mapped on all VM hosts in cluster, one need to have a look at Lun's canonical name's (naa.id) corresponding vmd.id<br />
<br />
One can check the naa.id's corresponding vml.id by running following cmd on host (over ssh, using putty),<br />
<span style="font-family: "courier new" , "courier" , monospace;">esxcli storage core device list -d naa.id</span><br />
<br />
So, if the naa.id is <span style="font-family: "courier new" , "courier" , monospace;">naa.60060480000190104063533030353445</span> then the command would be,<br />
<br />
<span style="font-family: "courier new" , "courier" , monospace;">esxcli storage core device list -d naa.60060480000190104063533030353445</span><span style="font-family: "courier new" , "courier" , monospace;"><span style="font-size: x-small;"><br /></span></span>
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEippumM5-FirKBNwQ3heOf9tp4g2n25NS3-iziWZmzzIy_oHSFe42_zpZgkGlnBWOpnW9wERCgInouSJTjCLaC0VwDTBkFRoAH-T5plR7j0lpe1Emc_lkjabHe1fVL2FgOzs9HrwjtObmca/s1600/aaa.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="540" data-original-width="700" height="307" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEippumM5-FirKBNwQ3heOf9tp4g2n25NS3-iziWZmzzIy_oHSFe42_zpZgkGlnBWOpnW9wERCgInouSJTjCLaC0VwDTBkFRoAH-T5plR7j0lpe1Emc_lkjabHe1fVL2FgOzs9HrwjtObmca/s400/aaa.JPG" width="400" /></a></div>
<br />
For example, <span style="font-family: "courier new" , "courier" , monospace;">vml.0200<span style="background-color: lime;"><b>05</b></span></span><span style="font-family: "courier new" , "courier" , monospace;">00006006048000019010406353303035344553594d4d4554</span><br />
<br />
One need to look at the fifth and sixth digits (see highlighted) of vml.id, this is hexadecimal number which represents the LUN number. On converting to decimal it should match to actual Lun number.<br />
<br />
<div class="MsoNormal" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;">
Now to fix this issue what we can do is, remove the affected RDM disk from the both nodes and then delete the RDM pointer file from Datastore (this doesn’t affect your actual data on LUN). Now after re-scanning the hosts for Datastores, re-add the LUN as RDM drive on both nodes. Now you would be able to power on the affected node.</div>
<div class="MsoNormal" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;">
<br /></div>
<div class="MsoNormal" style="color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;">
<span style="background-color: #9fc5e8;">If due to any reason above doesn’t work then</span><span style="background-color: white;"> as above after removing the affected RDM drives from both nodes, follow these steps,</span></div>
<ol start="1" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;" type="1">
<li class="MsoNormal" style="margin: 0px 0px 0.25em; padding: 0px;">Note the NAA_ID of the LUN.</li>
<li class="MsoNormal" style="margin: 0px 0px 0.25em; padding: 0px;">Detach RDM using vSphere client.</li>
<li class="MsoNormal" style="margin: 0px 0px 0.25em; padding: 0px;">Un-present the LUN from host on storage array. </li>
<li class="MsoNormal" style="margin: 0px 0px 0.25em; padding: 0px;">Rescan host storage. </li>
<li class="MsoNormal" style="margin: 0px 0px 12pt; padding: 0px;">Remove LUN from detached list using these commands:<br /><br /><span lang="EN" style="font-family: "courier new"; font-size: 10pt;">#esxcli storage core device detached list<br />#esxcli storage core device detached remove -d naa.id</span></li>
<li class="MsoNormal" style="margin: 0px 0px 0.25em; padding: 0px;">Rescan the host storage. </li>
<li class="MsoNormal" style="margin: 0px 0px 0.25em; padding: 0px;">Re-present LUN to host. </li>
<li class="MsoNormal" style="margin: 0px 0px 0.25em; padding: 0px;">Now again rescan the hosts for datastores</li>
</ol>
<div>
<span style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;">Now cross check the vml.id on hosts and it should be same and after adding the RDM drive on nodes you will be able to power on the VM nodes.</span></div>
<div>
<span style="background-color: white; color: #222222; font-family: arial, tahoma, helvetica, freesans, sans-serif; font-size: 13.2px;"><br /></span></div>
<div class="MsoNormal" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;">
<span lang="EN"><b>Note:</b> If the LUN has been flagged as perennially reserved, this can prevent the removal from succeeding and step 5 would fail.<br /><br />Run this command to remove the flag:</span></div>
<div class="MsoNormal" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;">
<span lang="EN"><br /></span><span lang="EN" style="font-family: "courier new"; font-size: 10pt;">#esxcli storage core device setconfig -d <i>naa.id</i> --perennially-reserved=false</span><span lang="EN"><br /><br />Now the command to remove the device should work.</span></div>
<div class="MsoNormal" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;">
<span lang="EN"><br /></span><span lang="EN" style="font-family: "courier new"; font-size: 10pt;"># esxcli storage core device detached remove -d <i>naa.id</i></span></div>
<div class="MsoNormal" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;">
<br /></div>
<div class="MsoNormal" style="background-color: white; color: #222222; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13.2px;">
<br /></div>
<span style="font-family: "georgia" , "times new roman" , serif;">I had faced a related issue in past and discussed about that in following post, </span><br />
<br />
<a href="http://www.vcloudnotes.com/2016/06/after-unexpacted-host-reboot-powering.html" target="_blank"><span style="font-family: "georgia" , "times new roman" , serif;">After unexpacted host reboot, Powering on a RDM attached virtual machine fails with the error: Incompatible device backing specified for device '0</span></a><br />
<br />
That's it... :)</div>
Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com2tag:blogger.com,1999:blog-5933107902689158523.post-10393807913218013392018-04-06T00:55:00.001+05:302018-04-06T01:20:34.612+05:30AWS Public IP vs Elastic IP and how can we assign one to EC2 instance<div dir="ltr" style="text-align: left;" trbidi="on">
<a href="http://www.vcloudnotes.com/2018/04/launching-your-first-aws-ec2-instance.html" target="_blank">In my previous post</a> I mentioned that in order to make an EC2 instance internet accessible, it should have a Public or Elastic IP assigned. Here anyone new to AWS may wonder that, what is this Elastic IP and How its different from Public IP.<br />
<br />
In this post we will discuss about the similarities and differences between these two and how one can assign a Public or Elastic IP to an EC2 instance.<br />
<br />
If you are looking from a functional point of view then they both are
publicly routable IP addresses and can be used to connect your instance to
internet but are different how they persist and the way you can assign one
to your instance.<br />
<div class="MsoNormal">
<o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
A <span style="font-family: inherit;"><b style="-webkit-text-stroke-width: 0px; font-variant-caps: normal; font-variant-ligatures: normal; mso-bidi-font-weight: normal; orphans: 2; text-decoration-color: initial; text-decoration-style: initial; widows: 2; word-spacing: 0px;">public IP</b><span style="-webkit-text-stroke-width: 0px; float: none; font-variant-caps: normal; font-variant-ligatures: normal; orphans: 2; text-decoration-color: initial; text-decoration-style: initial; widows: 2; word-spacing: 0px;"> address is assigned to your instance from </span>Amazon's<span style="-webkit-text-stroke-width: 0px; float: none; font-variant-caps: normal; font-variant-ligatures: normal; orphans: 2; text-decoration-color: initial; text-decoration-style: initial; widows: 2; word-spacing: 0px;"> pool of </span>public<span style="-webkit-text-stroke-width: 0px; float: none; font-variant-caps: normal; font-variant-ligatures: normal; orphans: 2; text-decoration-color: initial; text-decoration-style: initial; widows: 2; word-spacing: 0px;"> IPv4 addresses,
and is not associated with your </span>AWS<span style="-webkit-text-stroke-width: 0px; float: none; font-variant-caps: normal; font-variant-ligatures: normal; orphans: 2; text-decoration-color: initial; text-decoration-style: initial; widows: 2; word-spacing: 0px;"> account. When a </span>public IP<span style="-webkit-text-stroke-width: 0px; float: none; font-variant-caps: normal; font-variant-ligatures: normal; orphans: 2; text-decoration-color: initial; text-decoration-style: initial; widows: 2; word-spacing: 0px;"> address is
disassociated from your instance, it is released back into the </span>public<span style="-webkit-text-stroke-width: 0px; float: none; font-variant-caps: normal; font-variant-ligatures: normal; orphans: 2; text-decoration-color: initial; text-decoration-style: initial; widows: 2; word-spacing: 0px;"> IPv4 address
pool, and you cannot reuse it</span>. <o:p></o:p></span></div>
<div class="MsoNormal">
<span style="font-family: inherit;"><br /></span></div>
<div class="MsoNormal">
<span style="font-family: inherit;">If we put it in simple word then, <b style="mso-bidi-font-weight: normal;">Public IP addresses</b> are dynamic, which means if you stop/start your
instance you get reassigned a new public IP however it would persist if you
just reboot the ec2 instance.<o:p></o:p></span></div>
<div class="MsoNormal">
<span style="font-family: inherit;"><br /></span></div>
<div class="MsoNormal">
<span style="font-family: inherit;">Public IP addresses are free and you will not be charged
anything for using them.<o:p></o:p></span><br />
<span style="font-family: inherit;"><br /></span>
<span style="background-color: white;">An <b>Elastic IP address</b> is a static public IPv4 address, </span><span style="background-color: white;">designed for dynamic cloud computing.</span><span style="background-color: white;"> If your instance does not have a public IPv4 address, you can associate an Elastic IP address with your instance to enable communication with the internet.</span></div>
<div class="MsoNormal">
<span style="font-family: inherit;"><br /></span></div>
<div class="MsoNormal" style="background: white; line-height: 18.0pt; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto;">
<span style="font-family: inherit;">An Elastic IP address is associated with your AWS
account and with it, you can mask the failure of an instance or
software by rapidly remapping the address to another instance in your account.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: 18.0pt; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto;">
<span style="background-color: transparent; font-family: inherit;">While your instance is running, you are not charged for one
Elastic IP address associated with the instance, but you are charged for any
additional Elastic IP addresses which is not in use</span><span style="color: #444444; font-family: inherit; font-size: 12pt;">.</span></div>
<div class="MsoNormal">
<o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal" style="background: white; margin-bottom: 19.5pt;">
<b style="mso-bidi-font-weight: normal;">Now let’s look at the difference between
these two IP types</b>.<br />
<span style="background-color: transparent;"><br /></span>
<span style="background-color: transparent;">1. Elastic IPs are assigned to AWS accounts which you can attach to instances. Public IPs assigned to instances directly.</span></div>
2. You cannot manually attach or detach public IP from the instance. It’s auto allocated from the pool. Elastic IP can be manually attached and detach from the instance.<br />
<br />
3. When an instance is stopped and started again, public IP gets changed. But if the instance is assigned with elastic IP, it will remain the same even if the instance is stopped and started again.<br />
<br />
4. If elastic IP is allocated to your account and not in use then you will be charged for it on an hourly basis.<br />
<br />
5. Public IP released once your instance is stopped so no question of getting charged for not using it.<br />
<br />
6. You won’t be able to re-use same public IP since its allocated from free IP pool. You can always re-use, re-attach elastic IP to other instance when it is released from current instance.<br />
<br />
7. You can have maximum 5 elastic IP to your account per region. But, you can have as many public IPs as EC2 instances you spin up.<br />
<br />
8. You can have either of them for an instance. If you assign elastic IP to instance then its currently assigned public IP will be released to the free pool.<br />
<br />
<b>How would be assign Public or Elastic IP to an instance: </b><br />
<b><br /></b>
<b><u style="background-color: #b6d7a8;">Public IP</u>: </b>It can be assigned to an instance only during the instance creation time and there are two ways of doing that.<br />
<div class="separator" style="clear: both; text-align: center;">
</div>
<br />
<ul style="text-align: left;">
<li><span style="background-color: #d9ead3;">Edit the Subnet setting and enable Auto-assign Public IP to any EC2 instanced launched in this Subnet.</span></li>
</ul>
<br />
To do so, From AWS Console => Under Networking & Content Delivery, Select VPC => Now Click on Subnet Tab => Select the intended Subnet and either right Click or from Actions => Select Modify auto-assign IP address<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi3lKshPgUvm2HepV2xilpqXHwAiYzRc4y2JjKMm_9oW1A8-1xv999ytopFMTMI8WDqJhuFGs08XyiQHfHrcCs1Io0WL_WWiSNjdq2KDn1cJhlFyRlHxa1AUVXhOQ1VfWOKKRPq8i5zRuqO/s1600/2.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="566" data-original-width="1103" height="205" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi3lKshPgUvm2HepV2xilpqXHwAiYzRc4y2JjKMm_9oW1A8-1xv999ytopFMTMI8WDqJhuFGs08XyiQHfHrcCs1Io0WL_WWiSNjdq2KDn1cJhlFyRlHxa1AUVXhOQ1VfWOKKRPq8i5zRuqO/s400/2.jpg" width="400" /></a></div>
<br />
<div>
That will open the following Modify auto-assign IP address pop-up, now as shown enable auto-assigning Public IP address.</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgOPyFPSQ6ooG9Q67W2LJ7wxKyIXThvemH9mjclvv7svuBG2eYCf3czMypHoFu8-W73C0WIkyztCUaHKyijQfOR12P7u3nJB71ssNxj0aCafSKmL1zcc0AycSGGbjaQxQnZqKeBefywsmeY/s1600/3.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="468" data-original-width="946" height="197" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgOPyFPSQ6ooG9Q67W2LJ7wxKyIXThvemH9mjclvv7svuBG2eYCf3czMypHoFu8-W73C0WIkyztCUaHKyijQfOR12P7u3nJB71ssNxj0aCafSKmL1zcc0AycSGGbjaQxQnZqKeBefywsmeY/s400/3.jpg" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
Now any EC2 instance which would be launched in this subnet would have a public IP assigned.</div>
<br />
<ul style="text-align: left;">
<li><span style="background-color: #d9ead3;">You can also assign the Public IP during EC2 instance launch time</span>, you can also alter the default public IP assignment in a subnet from here.</li>
</ul>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhUJUF5Ucu8g7iTN9FamPhqtxzE3qHPNWz2AU99Fn6_HiBDjJz6POSPFxDd8DD2ztpJQRXr3xBbjKSyTQQSyLGSw7YjjgzWHU0tC5BPeFeq8P0oGAPWoX9zSYR2sTVE-_iuui6Ani2ItWh_/s1600/1.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="566" data-original-width="1098" height="205" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhUJUF5Ucu8g7iTN9FamPhqtxzE3qHPNWz2AU99Fn6_HiBDjJz6POSPFxDd8DD2ztpJQRXr3xBbjKSyTQQSyLGSw7YjjgzWHU0tC5BPeFeq8P0oGAPWoX9zSYR2sTVE-_iuui6Ani2ItWh_/s400/1.jpg" width="400" /></a></div>
<div>
<br /></div>
<div>
Whatever you select here would over right the default IP assignment settings.</div>
<div>
<br /></div>
<div>
<u style="background-color: #b6d7a8; font-weight: bold;">Elastic IP</u><b>:</b> We need to allocate the Elastic IP address to our AWS account before making use of it.</div>
<div>
<br /></div>
<div>
You can go to Elascic IP windows either from EC2 instance or VPC Dashboard, once you are there then => Select Elastic IP address => Allocate new address</div>
<div>
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgffXXZQS_KrMVWUBtY5r2szkwjGlyPGWLZcHD3xDxk4WTF0PqZAaBXDJbI6gSaZYQYtorPx1DyJ72jSbgKBcUAyTVt9B6dkVnD2v9cnlyFF77lK7ZIRehpv0eEAZmoePeun8eItW8ByY9e/s1600/4.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="694" data-original-width="1365" height="202" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgffXXZQS_KrMVWUBtY5r2szkwjGlyPGWLZcHD3xDxk4WTF0PqZAaBXDJbI6gSaZYQYtorPx1DyJ72jSbgKBcUAyTVt9B6dkVnD2v9cnlyFF77lK7ZIRehpv0eEAZmoePeun8eItW8ByY9e/s400/4.jpg" width="400" /></a></div>
<br />
There is not much to discuss here, once you would click on allocate in next screen, It would allocate you an Elastic IP.<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjTqylngZwSit9rpCAWCzusO-nvopt7TqzzpdGxgHzs0LKf-XBoPSTU7iGMPF76PYJGLTltVnlvFcM0hiYQssfo5gJZuBuW-6MNEV89oN_WdKfFndGsWItSbfXMflbUTxh6mk90zn_fLb2c/s1600/5.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="265" data-original-width="1034" height="102" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjTqylngZwSit9rpCAWCzusO-nvopt7TqzzpdGxgHzs0LKf-XBoPSTU7iGMPF76PYJGLTltVnlvFcM0hiYQssfo5gJZuBuW-6MNEV89oN_WdKfFndGsWItSbfXMflbUTxh6mk90zn_fLb2c/s400/5.jpg" width="400" /></a></div>
<br />
Now if you want to assign this IP to any instance, just select it and either click on Actions or Right click on it and Select Allocate address.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgidfJ4M2IFyK4fDzbr2daLMyH17RKZx_Q-a3Tmphd5acBKkOQohN1H6ltbrCzWoXt4cjVQMVeOFx5TV-uFvCWcifNJZUQ9AcW2vrtCCNeJgBF23GyoyXi8SRuaylVSWFfXVvyAKSpv8CN-/s1600/6.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="295" data-original-width="1037" height="113" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgidfJ4M2IFyK4fDzbr2daLMyH17RKZx_Q-a3Tmphd5acBKkOQohN1H6ltbrCzWoXt4cjVQMVeOFx5TV-uFvCWcifNJZUQ9AcW2vrtCCNeJgBF23GyoyXi8SRuaylVSWFfXVvyAKSpv8CN-/s400/6.jpg" width="400" /></a></div>
<div>
<br /></div>
That would open the following Associate Address window, from here you can select the intended EC2 instance or specific network interface.<br />
<div>
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiXXo2w5-PFZWrCplcq7WtShSOEcrJltEc1FAmAg074pX4l-uFIz0A18AwExYWcoq9j4xwNnVgc3-QENvab3XF5DqLPjONc0VVvpwXZXu4snGPyi2e12zGlw6iDrIypwK7srsv-PT9EQgk_/s1600/7.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="636" data-original-width="1366" height="185" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiXXo2w5-PFZWrCplcq7WtShSOEcrJltEc1FAmAg074pX4l-uFIz0A18AwExYWcoq9j4xwNnVgc3-QENvab3XF5DqLPjONc0VVvpwXZXu4snGPyi2e12zGlw6iDrIypwK7srsv-PT9EQgk_/s400/7.jpg" width="400" /></a></div>
<br />
Once select the intended instance, the elastic IP would get associated with the selected instance.</div>
<div>
<br /></div>
<div>
Note: As mentioned in above screenshot, if you associate an Elastic IP address to an EC2 instance which already has a public IP assigned, the public IP is released.</div>
<div>
<br /></div>
<div>
That's it ... :)</div>
</div>
Noor Mohammadhttp://www.blogger.com/profile/00713305824089212932noreply@blogger.com0