Académique Documents
Professionnel Documents
Culture Documents
Module 2
3-5
2015 VMware Inc. All rights reserved.
Learner Objectives
By the end of this lesson, you should be able to meet the following
objectives:
Describe vSphere components used in vCenter Single Sign-On
List supported identity store technologies used with vCenter Single Sign-On
Describe the Platform Services Controller
Discuss vCenter Server deployment modes
5
Certificate
Authority
6
VMware
Directory
Service
vCenter Single
Lookup Service
Sign-On
Directory Service
vCenter Server
Virtual or Physical
Machine
vCenter Server
Sites that will use Enhanced Linked Mode should use an external
Platform Services Controller:
Load balancers are recommended for high availability.
The number of Platform Services Controllers is determined by the size of the
environment:
Between 2 and 4 VMware solutions: Use a single Platform Services Controller, or two
Platform Services Controllers behind a single load balancer to provide high
availability.
Between 4 and 8 VMware solutions: Use two Platform Services Controllers, or four
Platform Services Controllers behind two load balancers for high availability.
Between 8 and 10 VMware solutions: Use three Platform Services Controllers, or six
Platform Services Controllers behind three load balancers for high availability.
3-17
2015 VMware Inc. All rights reserved.
Learner Objectives
By the end of this lesson, you should be able to meet the following
objectives:
Explain the requirements for upgrading a vSphere environment to the current
vSphere version
List the necessary steps to prepare for upgrading vCenter Server
Outline the process for upgrading vCenter Server
List the necessary operations to perform after upgrading vCenter Server
3-24
2015 VMware Inc. All rights reserved.
Learner Objectives
By the end of this lesson, you should be able to meet the following
objectives:
Configure the ESXi firewall by enabling and disabling services
Enable and disable lockdown mode on an ESXi host
Configure user logins to authenticate with directory services
3-33
2015 VMware Inc. All rights reserved.
Learner Objectives
By the end of this lesson, you should be able to meet the following
objectives:
Define a permission
Describe the rules for applying permissions
Create a custom role
Create a permission
Users who are in the AD group ESX Admins are automatically assigned
the Administrator role.
Greg: Read-Only
Greg: Administrator
Group1: Administrator
Group2: Read-Only
3-49
2015 VMware Inc. All rights reserved.
Learner Objectives
By the end of this lesson, you should be able to meet the following
objectives:
Summarize methods for hardening vCenter Server systems
Discuss recommendations for ESXi host security
Discuss general virtual machine protection
Summarize strategies to secure the vSphere network
Topic Resource
VMware security
http://www.vmware.com/security/
policy
Corporate security http://www.vmware.com/support/policies/security_response
response .html
Virtualization and
http://www.vmware.com/go/security/
security
http://www.vmware.com/support/support-resources/hardeni
Hardening guides
ng-guides.html
Third-party
http://www.vmware.com/support/policies/
software support