GMCON's Posts

I am on vRealize 7.0.1 and I have plugin AD cleanup properties set for each domain and I of course have the password encrypted and it shows encrypted when I look at the properties.  Yet I just no... See more...
I am on vRealize 7.0.1 and I have plugin AD cleanup properties set for each domain and I of course have the password encrypted and it shows encrypted when I look at the properties.  Yet I just noticed that if you select a Machine on the Items tab and then "View Parent Details" go to the properties tab and it will show you the Password in Plain text.  This seems like a bad security flaw that you would keep it encrypted but then show it in plain text where every user can see it.  Anyone else see this?
This was confirmed as a bug and said a code change should be out in the next release.
I had used the workflow "Request a Catalog Item with Provisioning Request" workflow to create a workflow to be executed through a REST call with with vRealize 7 and vRO 7.  Everything was working... See more...
I had used the workflow "Request a Catalog Item with Provisioning Request" workflow to create a workflow to be executed through a REST call with with vRealize 7 and vRO 7.  Everything was working before, I could request on behalf of a user in different Business Groups and it would use the right entitlement for the user that was inserted in the on behalf of.  Of course it would show as being submitted by the service account I used to connect vRO with vRA through the plugin.  Now after upgrading to 7.0.1 for all components this workflow is not working properly anymore.  If the service account I was using is entitled to Blueprints in more then 1 business group at a time then it fails.  Troubleshooting narrowed it down to that the service account would have to have permissions in the BG that user you are requesting on behalf of is part of but no others.  This is not how it should be. Any ideas?
Since no one replied I can assume there is no way to do it natively.  So what I did to bypass is I created a property called BG and defined it for each Business Group and then triggered workflows... See more...
Since no one replied I can assume there is no way to do it natively.  So what I did to bypass is I created a property called BG and defined it for each Business Group and then triggered workflows based on that property.
GrantOrchardVMware answered in another thread that this is not available at this time.  He recommended creating an approval policy that could trigger it. vra7 how to configure subscription for... See more...
GrantOrchardVMware answered in another thread that this is not available at this time.  He recommended creating an approval policy that could trigger it. vra7 how to configure subscription for vm reconfigure action?
I am trying to make it so a workflow is triggered based on what Business Group is requesting a blueprint.  I have not found any documentation on this and it is not one of the default properties i... See more...
I am trying to make it so a workflow is triggered based on what Business Group is requesting a blueprint.  I have not found any documentation on this and it is not one of the default properties in the event broker tree.  Anyone know what I would use for this property?
Have you gotten this answered?  vRA7 passes a payload value so you have to include some extra values for it to pass the legacy inputs to vRO.
So I don't know if you are familiar with the new event broker in vRA7 but here is a primer if you are on how to get the information from the workflow for regular provisioning. If you follow the ... See more...
So I don't know if you are familiar with the new event broker in vRA7 but here is a primer if you are on how to get the information from the workflow for regular provisioning. If you follow the blog post below the only thing you really need to change is you need to make sure you get the information by using Extensibility.Lifecycle.Properties.CloudProvisioningWorkflow.BuildComplete or the couple other Lifecycle properties for Cloudprovisioning to feed the inputs into vRO.  Let me know if this helps. http://extendingclouds.com/enabling-the-event-broker/
I have actually run into the same problem.  I added AD groups to tenant admin and infrastructure admin and logged in but could not see any other tabs other then Home and Inbox if I logged in with... See more...
I have actually run into the same problem.  I added AD groups to tenant admin and infrastructure admin and logged in but could not see any other tabs other then Home and Inbox if I logged in with an AD account, but if I logged in with the local account I created I could see all tabs fine.  So to experiment I created a custom group like this user and added the AD group to that group and assigned all roles (even though I had assigned them to the AD group directly) and then when logging back in with my AD account I could see all tabs but when looking at Infra tab I only see Recent Events and that is it.  When logging back into the default with Administrator I go to tenants and see that the new custom group is in both the Tenant and IaaS groups so don't know what the problem is.
I am standing up a fresh dev lab with vRA7 and have run into an issue once AD logins are added.  I created a new subtenant with a local vsphere.local account added to the Tenant and IaaS admins g... See more...
I am standing up a fresh dev lab with vRA7 and have run into an issue once AD logins are added.  I created a new subtenant with a local vsphere.local account added to the Tenant and IaaS admins groups.  Login and added the directories, went back to the default login and added the AD group with my user account to the Tenand and IaaS admin groups.  When I go to login with that new tenant with the AD account I only see the Home and inbox tabs.  Do not see the Admin and Infra tabs, only for the AD accounts.  I made sure they were part of the right groups and even logged back in with the vsphere.local account on the sub tenant and added them to all the other groups like design etc.  Have any ideas?
Approvals come before the building machine state and with 6.2 you are supposed to be able to update any custom property during the approval process, plus as stated I already have a workflow to cr... See more...
Approvals come before the building machine state and with 6.2 you are supposed to be able to update any custom property during the approval process, plus as stated I already have a workflow to create a custom hostname but we are dictated that we have to use the pre-defined Hostname property. 
That worked perfectly thank you very much.
I am sure this is easy but have not been able to find what I need.  Have not gotten deeply into JavaScript and I need to find a way to take the owner attribute from vRA strip off the domain porti... See more...
I am sure this is easy but have not been able to find what I need.  Have not gotten deeply into JavaScript and I need to find a way to take the owner attribute from vRA strip off the domain portion and just feed the username portion in.  Here is what I have, I pull in al information on the system from vRA and map the ones I need so for the owner I have the scripting mapped to the attribute like this user = vCACVmProperties.get('__Legacy.Workflow.User'); Then I use the user property for an email content that sends it to Servicenow to create a ticket, as we do not have servicenow completely integrated.  The problem is the domain portions are different so what I need to do is strip off the domain portion so that it only feeds the username so instead of username@domain.com it only feeds username.  So I either need to take that user mapping that takes in the username and use it to script something to give the output of only username so I can feed that into the email instead.  Any help explaining would be greatly appreciated.
Curently we are just using the "Hostname" custom property to let users type in their own name as higher ups had decided they did not want to use the custom naming workflow in vCO to build it prop... See more...
Curently we are just using the "Hostname" custom property to let users type in their own name as higher ups had decided they did not want to use the custom naming workflow in vCO to build it properly.  We recently upgraded to vRA 6.2 and I wanted to let approvers change the Hostname if someone put something crazy in.  I tried just using Hostname in the custom approval field, it will show up but does not show what the user typed in and if you put something in that field it passes it on but does not change what the hostname actually is.  I was wondering if anyone else has tried this or if everyone else is just using vCO workflow or machine prefixes. 
I am currently using vRO 6.0 along with the PowerShell plug-in 1.0.5 and am having issues running workflows executing active directory command powershell scripts.  My plug-in and powershell host ... See more...
I am currently using vRO 6.0 along with the PowerShell plug-in 1.0.5 and am having issues running workflows executing active directory command powershell scripts.  My plug-in and powershell host are set up using kerberos authentication http.  I am able to successfully execute vRO powershell workflows for using the vSphere powercli to connect to ESXi hosts to do certain things and that works fine.  I need to create powershell scripts though so I can connect to multiple different domain controllers to create objects on specific servers to overcome replication times.  My scripts work fine, if I execute them locally on the host then everything is successful.  If I try and execute the same script calling it through vRO I get the error stack below from the logs window on the workflow and it fails within seconds.  I have seen some posts about using CredSSP but supposedly that is just if you can't use kerberos.  The host I am using is just a domain member not a DC but has the AD powershell modules loaded on it and as I said the script executes perfectly fine as long as it is not executed through vRO.  Any ideas would be greatly appreciated. PowerShellInvocationError: Errors found while executing script Microsoft.ActiveDirectory.Management.ADServerDownException: Unable to contact the server. This may be because this server does not exist, it is currently down, or it does not have the Active Directory Web Services running. ---> System.ServiceModel.CommunicationException: The socket connection was aborted. This could be caused by an error processing your message or a receive timeout being exceeded by the remote host, or an underlying network resource issue. Local socket timeout was '00:01:59.9970000'. ---> System.IO.IOException: The read operation failed, see inner exception. ---> System.ServiceModel.CommunicationException: The socket connection was aborted. This could be caused by an error processing your message or a receive timeout being exceeded by the remote host, or an underlying network resource issue. Local socket timeout was '00:01:59.9970000'. ---> System.Net.Sockets.SocketException: An existing connection was forcibly closed by the remote host    at System.Net.Sockets.Socket.Receive(Byte[] buffer, Int32 offset, Int32 size, SocketFlags socketFlags)    at System.ServiceModel.Channels.SocketConnection.ReadCore(Byte[] buffer, Int32 offset, Int32 size, TimeSpan timeout, Boolean closing)    --- End of inner exception stack trace ---    at System.ServiceModel.Channels.SocketConnection.ReadCore(Byte[] buffer, Int32 offset, Int32 size, TimeSpan timeout, Boolean closing)    at System.ServiceModel.Channels.SocketConnection.Read(Byte[] buffer, Int32 offset, Int32 size, TimeSpan timeout)    at System.ServiceModel.Channels.ConnectionStream.Read(Byte[] buffer, Int32 offset, Int32 count)    at System.Net.FixedSizeReader.ReadPacket(Byte[] buffer, Int32 offset, Int32 count)    at System.Net.Security.NegotiateStream.StartFrameHeader(Byte[] buffer, Int32 offset, Int32 count, AsyncProtocolRequest asyncRequest)    at System.Net.Security.NegotiateStream.StartReading(Byte[] buffer, Int32 offset, Int32 count, AsyncProtocolRequest asyncRequest)    at System.Net.Security.NegotiateStream.ProcessRead(Byte[] buffer, Int32 offset, Int32 count, AsyncProtocolRequest asyncRequest)    --- End of inner exception stack trace ---    at System.Net.Security.NegotiateStream.ProcessRead(Byte[] buffer, Int32 offset, Int32 count, AsyncProtocolRequest asyncRequest)    at System.Net.Security.NegotiateStream.Read(Byte[] buffer, Int32 offset, Int32 count)    at System.ServiceModel.Channels.StreamConnection.Read(Byte[] buffer, Int32 offset, Int32 size, TimeSpan timeout)    --- End of inner exception stack trace --- Server stack trace:    at System.ServiceModel.Channels.StreamConnection.Read(Byte[] buffer, Int32 offset, Int32 size, TimeSpan timeout)    at System.ServiceModel.Channels.ClientFramingDuplexSessionChannel.SendPreamble(IConnection connection, ArraySegment`1 preamble, TimeoutHelper& timeoutHelper)    at System.ServiceModel.Channels.ClientFramingDuplexSessionChannel.DuplexConnectionPoolHelper.AcceptPooledConnection(IConnection connection, TimeoutHelper& timeoutHelper)    at System.ServiceModel.Channels.ConnectionPoolHelper.EstablishConnection(TimeSpan timeout)    at System.ServiceModel.Channels.ClientFramingDuplexSessionChannel.OnOpen(TimeSpan timeout)    at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)    at System.ServiceModel.Channels.ServiceChannel.OnOpen(TimeSpan timeout)    at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)    at System.ServiceModel.Channels.ServiceChannel.CallOnceManager.CallOnce(TimeSpan timeout, CallOnceManager cascade)    at System.ServiceModel.Channels.ServiceChannel.EnsureOpened(TimeSpan timeout)    at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout)    at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)    at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)
Actually if you are looking to just get the health badges into vRA from vROPS you don't need a pack, if you are running vRA 6.2 and vROPS 6.0 then you just go to vRA, Administration tab and under... See more...
Actually if you are looking to just get the health badges into vRA from vROPS you don't need a pack, if you are running vRA 6.2 and vROPS 6.0 then you just go to vRA, Administration tab and under tenant machines you configure the Metrics provider.
Echo is correct, in 6.0 or 6.1 you can't edit the email templates.   Supposedly if you upgrade to 6.2 there is a way to edit default templates.  I don't know if this is adding back the functional... See more...
Echo is correct, in 6.0 or 6.1 you can't edit the email templates.   Supposedly if you upgrade to 6.2 there is a way to edit default templates.  I don't know if this is adding back the functionality from version 5 or what as there is no real documentation on this yet.
There is a way to do this but you have to create the way for them to select which one using custom properties.  Here is a tutorial on one way to make this happen. http://vcdx56.com/2014/01/14/... See more...
There is a way to do this but you have to create the way for them to select which one using custom properties.  Here is a tutorial on one way to make this happen. http://vcdx56.com/2014/01/14/vcloud-automation-center-network-selection-during-vm-request/
I think you really need to look at what you can do with vCAC itself instead of vCO.  The things you mention deploying VM's adding RAM etc are all things you can already do natively from within vC... See more...
I think you really need to look at what you can do with vCAC itself instead of vCO.  The things you mention deploying VM's adding RAM etc are all things you can already do natively from within vCAC so there is honestly no reason to duplicate that in vCO unless you have some sort of unique need.
I would say one way to do it is create two separate custom attributes one for windows and one for linux like vmplacement.windows and vmplacement.linux and then set the network.windows and network... See more...
I would say one way to do it is create two separate custom attributes one for windows and one for linux like vmplacement.windows and vmplacement.linux and then set the network.windows and network.linux to be dependent on those that way for the network that way it only has the attributes needed for each OS type.  Or if vmplacement has the same values for both linux and windows then use just vmplacement but then use the network.windows and network.linux to rely on vmplacement but for each of the attributes again only put the networks for linux and windows into each of those sub attributes.