VCF 9.1 API Access Series This post is part of an ongoing deep-dive series on VCF 9.1 programmatic access. Foundational Mechanics VCF 9.1 API Access (1): Basic VCF 9.1 API Access (2): Access Control Component Authentication & Token Exchange VCF 9.1 API Access (3): Using API Access Token for NSX and Operations API VCF 9.1 API Access …
Author: David Zhang
VCF Password Management Automation with the VCF Terraform Provider and HashiCorp Vault
Introduction In today's complex IT environments, managing passwords manually can be time-consuming, error-prone, and a significant security risk. This blog post will demonstrate how to automate VMware Cloud Foundation (aka VCF) password management using the VCF Terraform Provider and HashiCorp Vault. By leveraging these powerful tools, you can significantly simplify your password management operations, especially …
Setting up SSO with Okta in VCF5.1
SummaryPre-ReqOkta requirementsvCenter Server and Other RequirementsConfiguring SCIM 2.0 Application in OktaCreate the SCIM 2.0 Test App (OAuth Bearer Token) ApplicationSCIM 2.0 API IntegrationHAProxy ConfigConfigure the User and Group Provisioning to VCFConfiguring OIDC Application in OktaCreate OIDC ApplicationGenerate the Client SecretAssign users and groups to the OpenID Connect application.SDDC Manager IdP ConfigStep 1: OverviewStep 2: Select …
Using IPerf3 for Network Performance Testing
Iperf3 OverviewCommon Used Parameters for both TCP and UDPTCP Network Performance TestingUDP Network Performance Testing Iperf3 Overview Iperf3 is a tool for performing network performance testing. It allows you to test the bandwidth, latency, and packet loss across network links by sending and receiving streams of data between two hosts. iperf3 operates in a client-server …
Continue reading Using IPerf3 for Network Performance Testing
VMC NSX ALB Load Balancing with HCX Network Extension
IntroductionPlanning and ImplementationNSX ALB Cloud TypeNSX ALB Topology and HCX Network ExtensionNSX ALB and HCX MONNSX ALB Service Engine PlacementService Resilience Introduction Since VMware Cloud on AWS SDDC version 1.9, NSX Advanced Load Balancer has been available as a customer-managed solution. The NSX ALB controllers and SEs are manually deployed as VMs through vCenter in …
Continue reading VMC NSX ALB Load Balancing with HCX Network Extension
Make Thousands of NSX-T API Calls in Minute
Background As a network guy, network automation has always been my favourite topic. I needed to build an NSX-T environment to validate a specific function from time to time. When I got an NSX-T config, I used a straightforward Python script that makes the NSX-T API calls to import the config into a new lab …
Continue reading Make Thousands of NSX-T API Calls in Minute
Install wrk on Photon 4
wrk is a high-performance HTTP benchmarking tool that is designed to measure the performance of web applications and APIs. It is a flexible and customizable tool that allows users to simulate real-world scenarios and test the performance of their web servers under various loads. wrk is easy to use and can be run from the …
How to Set Up an L2VPN on Custom T1 in a VMware Cloud on AWS SDDC
PrefaceStep 1: Add an L2 VPN Server serviceStep 2: Create L2VPN Local EndpointStep 3: Create L2VPN SessionStep 4: Enable ConnectivityStep 5. On-Prem NSX Autonomous Edge Preface I wrote a blog in 2020 about setting up an L2VPN from on-premise to the VMC NSX T0 router. Since SDDC 1.18, VMware Cloud on AWS introduced the support …
Continue reading How to Set Up an L2VPN on Custom T1 in a VMware Cloud on AWS SDDC
Exploring the Lesser-Known Yet Powerful VMC-AWS Networking APIs
NSX API Access PointsAPI to Backup NSX ConfigAPI to Get the VMC Gateway Routing TableAPI to Request AWS Public IPAPI to Get the NSX Capacity Usage VMware NSX-T provides a programmatic API to automate management activities. The API follows a resource-oriented Representational State Transfer (REST) architecture, using JSON object encoding. Clients interact with the API …
Continue reading Exploring the Lesser-Known Yet Powerful VMC-AWS Networking APIs
Setting Up Federated Identity Management for VMC on AWS – Authentication with PingOne
The Federated Identity feature of VMware Cloud on AWS can be integrated with all 3rd party IdPs who support SAML version 2.0. In this integration model, the customer dedicated vIDM tenant will work as SAML Service Provider. If the 3rd party IdP is set up to perform multi-factor authentication (MFA), the customer will be prompted …
davidwzhang.com 