Preparation for Scanning VMware VSAN
StorageGuard collects VMware VSAN configuration data by connecting to VMware vCenter and running read-only Virtual Infrastructure (VI) API calls through HTTPS.
The following table lists the requirements for scanning VMware VSAN:
# | Description |
1 | Provide the name or IP address of each vCenter system. |
2 | Provide a read-only username and password for each vCenter system. |
3 | Make sure that IP connectivity through HTTPS (port 443) is available between the StorageGuard server and each vCenter system. |
Creating a User Account for Scanning VMware VSAN
Creating a local user account
The following suggested method can be used to create a local user account with appropriate privileges:
- Log into the vCenter appliance shell as a user who has a super administrator role.
- Enter the command: localaccounts.user.add --role operator --username <username> --password
- Enter and confirm the password of the new local user when prompted.
Adding an AD/LDAP user account
The following suggested method can be used to add an AD/LDAP user account with appropriate privileges:
- Log into the vCenter web UI as a user who has a super administrator role.
- Assign the user with the “Read Only” role.
- Enter and confirm the password of the new local user when prompted.
Comments
0 comments
Please sign in to leave a comment.