In VMware Cloud Foundation (VCF) 9.1, the platform offers flexible methods for programmatic access. This blog post explores how to exchange the IdP Access token for the Identity Broker access token. The Default Path: VIDB Token Exchange By default, VCF 9.1 supports using a VIDB token to exchange for an access token. The Mechanism: The …
Continue reading VCF 9.1 API Access: Balancing Operational Simplicity with IdP Governance
Unlocking the power of automation in VMware Cloud Foundation (VCF) 9.1 requires a solid understanding of how to manage programmatic access. By transitioning from manual administration to an API-first approach, you can ensure consistency, scalability, and security across your entire VCF fleet. This blog post helps you understand identity types in the context of VCF …
Since I have been working on the Terraform VCF Provider, I use it as an example. Build On my Mac, I built the Terraform provider for Windows. GOOS=windows GOARCH=amd64 go build -o terraform-provider-vcf.exe Install Terraform Step 1: From the download, extract the executable to a directory, for example c:\terraform Step 2: Add the folder to …
Continue reading Build and Run a Custom Build Terraform Provider on Windows
Introduction In today's complex IT environments, managing passwords manually can be time-consuming, error-prone, and a significant security risk. This blog post will demonstrate how to automate VMware Cloud Foundation (aka VCF) password management using the VCF Terraform Provider and HashiCorp Vault. By leveraging these powerful tools, you can significantly simplify your password management operations, especially …
SummaryPre-ReqOkta requirementsvCenter Server and Other RequirementsConfiguring SCIM 2.0 Application in OktaCreate the SCIM 2.0 Test App (OAuth Bearer Token) ApplicationSCIM 2.0 API IntegrationHAProxy ConfigConfigure the User and Group Provisioning to VCFConfiguring OIDC Application in OktaCreate OIDC ApplicationGenerate the Client SecretAssign users and groups to the OpenID Connect application.SDDC Manager IdP ConfigStep 1: OverviewStep 2: Select …
Iperf3 OverviewCommon Used Parameters for both TCP and UDPTCP Network Performance TestingUDP Network Performance Testing Iperf3 Overview Iperf3 is a tool for performing network performance testing. It allows you to test the bandwidth, latency, and packet loss across network links by sending and receiving streams of data between two hosts. iperf3 operates in a client-server …
Continue reading Using IPerf3 for Network Performance Testing
IntroductionPlanning and ImplementationNSX ALB Cloud TypeNSX ALB Topology and HCX Network ExtensionNSX ALB and HCX MONNSX ALB Service Engine PlacementService Resilience Introduction Since VMware Cloud on AWS SDDC version 1.9, NSX Advanced Load Balancer has been available as a customer-managed solution. The NSX ALB controllers and SEs are manually deployed as VMs through vCenter in …
Continue reading VMC NSX ALB Load Balancing with HCX Network Extension
Background As a network guy, network automation has always been my favourite topic. I needed to build an NSX-T environment to validate a specific function from time to time. When I got an NSX-T config, I used a straightforward Python script that makes the NSX-T API calls to import the config into a new lab …
Continue reading Make Thousands of NSX-T API Calls in Minute
wrk is a high-performance HTTP benchmarking tool that is designed to measure the performance of web applications and APIs. It is a flexible and customizable tool that allows users to simulate real-world scenarios and test the performance of their web servers under various loads. wrk is easy to use and can be run from the …
PrefaceStep 1: Add an L2 VPN Server serviceStep 2: Create L2VPN Local EndpointStep 3: Create L2VPN SessionStep 4: Enable ConnectivityStep 5. On-Prem NSX Autonomous Edge Preface I wrote a blog in 2020 about setting up an L2VPN from on-premise to the VMC NSX T0 router. Since SDDC 1.18, VMware Cloud on AWS introduced the support …
Continue reading How to Set Up an L2VPN on Custom T1 in a VMware Cloud on AWS SDDC
davidwzhang.com 