VMware ESXi 4.1 represents an evolution in the VMware hypervisor architecture through the removal of the service console and addition of agentless management capabilities. Key changes include running infrastructure services and agents directly within the hypervisor rather than in a separate operating system, and exposing management functionality through APIs rather than agents. This allows for more secure and centralized management of ESXi hosts through tools like vCLI and PowerCLI that interact with the hypervisor through these APIs, whether managed individually or through vCenter Server. The document provides details on how various management tasks like hardware monitoring, patching, user authentication and logging now function in the ESXi architecture.
VMware is transitioning its hypervisor architecture to exclusively use ESXi starting with the next release of vSphere. ESXi provides improvements over the previous ESX architecture such as a smaller code footprint that requires fewer patches, improved security since it runs without a separate operating system, and more streamlined deployment and management. The presented document reviews the architectural differences between ESX and ESXi, hardware monitoring and management capabilities in ESXi, security features, deployment options, command line interfaces, diagnostic tools, and addressing common questions about the transition.
This document provides an overview and summary of vSphere system administration:
- It describes the core vSphere components including ESX/ESXi hosts, vCenter Server, and the vSphere Client.
- It discusses how to start and stop the various vSphere components, use vCenter Server in linked mode, and navigate the vSphere Client interface.
- It also touches on key administrative tasks like configuring hosts and vCenter Server, managing the inventory, monitoring host health, and setting up users/groups/roles.
1) The document discusses 30 important interview questions about virtualization and VMware. It covers topics like the VMware kernel, ESX server networking, vMotion, snapshots, port groups, cloning templates, and more.
2) Each question is accompanied by an answer that provides details about the topic. For example, it explains that the VMware kernel is proprietary and works with the service console, while port groups separate network traffic types.
3) Common virtualization challenges and their solutions are also addressed, such as issues taking snapshots of VMs configured with physical LUN mappings that need to be changed to virtual first.
Www.vmware.com support developer_windowstoolkit_wintk10_doc_viwin_adminVenkata Ramana
This document provides instructions for getting started with the VI Toolkit (for Windows) 1.0 command-line interface. It introduces the VI Toolkit cmdlets for managing VMware Infrastructure components from PowerShell and describes how to launch the VI Toolkit console, list available cmdlets, get help for cmdlets, and connect to vCenter servers. It also outlines additional cmdlet categories for advanced usage.
VMware ESXi is a free bare-metal hypervisor that can be used to virtualize laptops. It has low resource usage which allows laptops to run virtual machines all day without overheating. The document provides instructions for installing ESXi on laptops and ensuring the network drivers are correctly configured by replacing the OEM file. Examples are given of running ESXi on different laptops and using it to virtualize an OpenSolaris environment.
The document provides details about installation, upgrade, hardware requirements, supported operating systems and databases for VMware ESX Server 3.0.1 and Virtual Center 2.0.1. It discusses the major components, minimum hardware requirements for VirtualCenter Server and Virtual Infrastructure Client. It also lists the supported databases, file extensions, differences between ESX and GSX, current ESX hardware version and various virtualization products.
This document provides sample interview questions for a VMware L3 Administrator position. It includes questions about daily activities, differences between VMware and Hyper-V, troubleshooting errors, port usage, commands, features like DRS and HA, storage types, and more technical configuration topics. A follow-up section provides additional questions for later rounds of an IBM technical interview, focusing on virtual infrastructure topology, cluster configuration, resource pools, ESX implementation advantages, management methods, datastore types, backup processes, and work experience. The document also provides steps for increasing a VMFS volume size in vSphere.
VMware is transitioning its hypervisor architecture to exclusively use ESXi starting with the next release of vSphere. ESXi provides improvements over the previous ESX architecture such as a smaller code footprint that requires fewer patches, improved security since it runs without a separate operating system, and more streamlined deployment and management. The presented document reviews the architectural differences between ESX and ESXi, hardware monitoring and management capabilities in ESXi, security features, deployment options, command line interfaces, diagnostic tools, and addressing common questions about the transition.
This document provides an overview and summary of vSphere system administration:
- It describes the core vSphere components including ESX/ESXi hosts, vCenter Server, and the vSphere Client.
- It discusses how to start and stop the various vSphere components, use vCenter Server in linked mode, and navigate the vSphere Client interface.
- It also touches on key administrative tasks like configuring hosts and vCenter Server, managing the inventory, monitoring host health, and setting up users/groups/roles.
1) The document discusses 30 important interview questions about virtualization and VMware. It covers topics like the VMware kernel, ESX server networking, vMotion, snapshots, port groups, cloning templates, and more.
2) Each question is accompanied by an answer that provides details about the topic. For example, it explains that the VMware kernel is proprietary and works with the service console, while port groups separate network traffic types.
3) Common virtualization challenges and their solutions are also addressed, such as issues taking snapshots of VMs configured with physical LUN mappings that need to be changed to virtual first.
Www.vmware.com support developer_windowstoolkit_wintk10_doc_viwin_adminVenkata Ramana
This document provides instructions for getting started with the VI Toolkit (for Windows) 1.0 command-line interface. It introduces the VI Toolkit cmdlets for managing VMware Infrastructure components from PowerShell and describes how to launch the VI Toolkit console, list available cmdlets, get help for cmdlets, and connect to vCenter servers. It also outlines additional cmdlet categories for advanced usage.
VMware ESXi is a free bare-metal hypervisor that can be used to virtualize laptops. It has low resource usage which allows laptops to run virtual machines all day without overheating. The document provides instructions for installing ESXi on laptops and ensuring the network drivers are correctly configured by replacing the OEM file. Examples are given of running ESXi on different laptops and using it to virtualize an OpenSolaris environment.
The document provides details about installation, upgrade, hardware requirements, supported operating systems and databases for VMware ESX Server 3.0.1 and Virtual Center 2.0.1. It discusses the major components, minimum hardware requirements for VirtualCenter Server and Virtual Infrastructure Client. It also lists the supported databases, file extensions, differences between ESX and GSX, current ESX hardware version and various virtualization products.
This document provides sample interview questions for a VMware L3 Administrator position. It includes questions about daily activities, differences between VMware and Hyper-V, troubleshooting errors, port usage, commands, features like DRS and HA, storage types, and more technical configuration topics. A follow-up section provides additional questions for later rounds of an IBM technical interview, focusing on virtual infrastructure topology, cluster configuration, resource pools, ESX implementation advantages, management methods, datastore types, backup processes, and work experience. The document also provides steps for increasing a VMFS volume size in vSphere.
Here are the key differences between vSphere 5.0 and earlier vSphere versions that affect installation and setup:
- ESXi no longer includes a Service Console. Configuration is done through ESXi Shell, vCLI, and PowerCLI commands.
- ESXi uses a single text-based installer for fresh installations and upgrades.
- vSphere Auto Deploy and ESXi Image Builder CLI allow deploying ESXi directly to memory.
- Partitions use GPT format for new installations over 2TB instead of MSDOS. VMFS5 is used.
- The vCenter Server Appliance provides an alternative to Windows-based vCenter Server.
- The vSphere Web Client provides browser-based
This document provides an overview and agenda for discussing what's new in vSphere 5 and Heartbeat 6.4. It first recaps vSphere and introduces vSphere 5's new infrastructure and application services for compute, storage, network, availability, security and scalability. Specific enhancements discussed include ESXi convergence, auto deploy, storage DRS, I/O controls, larger VMs, and the vCenter appliance. It then summarizes vCenter Heartbeat 6.4's high availability capabilities for vCenter Server and integration with vSphere 5.
This document provides an introduction to 100 questions about planning, installing, and managing VMware Server, Workstation, and ESX. It aims to answer the most common questions asked in forums and by customers. Each section addresses a different aspect of VMware and virtualization to help users become more successful with VMware products and solutions.
The purpose of this reference architecture is to build and demonstrate the functionality, performance, and scalability of virtual desktops enabled by EMC VNX series (NFS), VMware vSphere 5.0, VMware View 5.1, VMware View Persona Management, VMware View Storage Accelerator, and VMware View Composer 3.0.
VMware vSphere® 6.0 permet aux utilisateurs de virtualiser leurs applications verticales et horizontales en toute sécurité, redéfinit les besoins en disponibilité et simplifie la gestion du datacenter virtuel. Cette version majeure offre une infrastructure à la demande, hautement disponible et fiable qui constitue la base idéale pour tout environnement de Cloud Computing.
Horizon 6, la suite logicielle VDI de VMware, ajoute le support des postes de travail virtuels Linux, en plus de l’environnement Windows de Microsoft. L’éditeur de Palo Alto a lancé un programme d'accès précoce pour les clients désirant tester en avant-première Horizon 6 avec les distributions Linux de Red Hat et Ubuntu sur des ordinateurs distants et des terminaux mobiles.
Vtguru v mware-v-sphere-administration-trainingfosilalive2
This document outlines the modules and content covered in the VTguru VMware vSphere-4.1 Administration Training course. The course teaches students to install, configure, and manage VMware vSphere-4.1 which includes ESX Server and vCenter Server. Students will learn how to install and configure ESX Server and vCenter Server, manage virtual networks and storage, deploy and manage virtual machines, ensure high availability, and more. The course contains over 15 modules and covers all aspects of virtual infrastructure administration using VMware vSphere 4.1.
VMware ESXi 3.5 update 2 is a next generation, thin hypervisor that is available for free. It partitions servers to create robust virtual machine environments with improved security, reliability and simplified management compared to previous versions. The free version provides many of the features of VMware Infrastructure 3, including support for virtual appliances and virtual machines. It has received positive feedback from customers for its plug-and-play installation and configuration capabilities.
The VSA provides shared storage for SMB customers without requiring a separate SAN or NAS device. It deploys virtual storage appliances on each ESXi host that replicate data across hosts, providing resilience to failures. The VSA manager in vCenter automates deployment and management of the VSA cluster, mounting NFS datastores for use across all ESXi hosts. This allows features like vMotion and HA without a dedicated storage device.
The document contains 15 technical interview questions for a third round VMware interview at IBM. The questions cover topics such as the physical topology of vSphere infrastructure, configuration of clusters, hosts, and resource pools, advantages of resource pools, benefits of ESX over other VMware products, management methods for vSphere, differences in access methods, features of VMFS, supported datastore types, configuration of datastores, VMware Consolidated Backup, configuration of vSphere HA and DRS, experience with VM provisioning, alarm and event management, task scheduling, hardware compatibility lists, configuration of SANs and NAS with VMware, applications run on VMs, and troubleshooting ESX and vSphere server crashes.
This document discusses virtual machine creation and management topics including vNetwork, vStorage, vMotion, DRS, and high availability (HA). It covers virtual machine hardware configuration, the files that make up a virtual machine, VMware Tools, and virtual machine power options. It also summarizes storage protocols, thin and thick provisioning, methods for migrating virtual machines, and how vMotion and DRS work. Finally, it discusses HA features like protection at different availability levels, using NIC teaming or additional networks for redundancy, and how the HA cluster architecture functions with a master and slave agents.
Virtualization allows multiple virtual machines to run on a single physical server. There are different types of virtualization including server, desktop, application, network and storage virtualization. Key virtualization concepts include the hypervisor, host and guest systems, and virtual components like CPUs, memory and disks. Licensing of guest operating systems is important. Virtualization provides benefits like server consolidation and high availability.
XenServer, Hyper-V, and ESXi - Architecture, API, and Coding_Humair_Ahmed_
XenServer, Hyper-V, and ESXi hypervisor comparison in regards to market share, architecture/installation, and APIs/coding. Technical details, demos, and code provided. Visit my blog at http://humairahmed.com/blog/.
Hyper-V and SCVMM 2008 provide virtualization capabilities for Microsoft. SCVMM 2008 allows for managing virtual machines across VMware and Hyper-V environments. It provides features like intelligent placement of VMs, conversion of physical to virtual machines, and delegated administration. SCVMM 2008 integrates with other System Center products and uses PowerShell for administration and monitoring of the virtualized environment.
System Center Virtual Machine Manager 2008 R2aralves
Virtual Machine Manager 2008 R2 is a centralized management solution that allows administrators to deploy, manage, and monitor virtual machines running on Hyper-V, Virtual Server, and VMware ESX servers. It provides features such as intelligent placement of VMs, conversion of physical to virtual machines and virtual to virtual machines, library management, and monitoring with Operations Manager. Version R2 adds additional capabilities such as managing Windows Server 2008 R2 Hyper-V, live migration, and storage improvements including support for multiple VMs per LUN.
Vmware Certified Professional 6 2V0-621 DumpsShamar41
pass4sureexam is a website which can help you save time and energy to rapidly and efficiently master the vmware certification 2v0-621d exam dumps.
https://www.pass4sureexam.com/2V0-621.html
Security Best Practices For Hyper V And Server Virtualizationrsnarayanan
The document summarizes information about Hyper-V virtualization. It provides an overview of Hyper-V architecture, including that the hypervisor partitions the hardware and manages guest partitions through the virtualization stack. It also discusses Hyper-V security, noting that guests are isolated from each other and the root to prevent attacks, and that delegated administration and role-based access control can be used to manage virtual machine access.
- VMware Tools is a suite of utilities that enhances performance and enables features for virtual machines. It includes services, device drivers, and user processes.
- Installing VMware Tools is recommended for new virtual machines. Upgrading to the latest version provides new features and compatibility.
- Installation and upgrade methods vary by guest operating system but generally involve mounting an ISO image containing the VMware Tools installer.
Oracle VM is Oracle's server virtualization solution. It provides several virtualization technologies including Oracle VM Server for x86 and SPARC servers, which allows consolidating applications by running multiple virtual machines on a single physical server. Oracle VM offers features such as live migration, high availability, dynamic resource scheduling, and storage connectivity. It provides a full-stack management solution with tools to deploy virtual machines quickly using templates and to manage thousands of VMs from a single console.
The document discusses various topics related to VMware administration interview questions and answers. It covers topics such as the VMkernel, port groups, vMotion licensing, virtual switches, snapshots, converting physical machines to virtual machines, and VMware consolidated backup.
VMware ESXi is a compact hypervisor architecture that operates independently without a general-purpose operating system. It comprises the VMkernel operating system, which manages hardware resources and runs processes like the virtual machine monitor. ESXi eliminates the need for a service console through new remote command line interfaces and adherence to management standards. The streamlined design focuses on rapid deployment and simplified management of virtual infrastructure.
VMware vCenter provides centralized management of VMware virtual infrastructures. It allows administrators to control and monitor all aspects of the virtual environment from a single console. Key features include centralized visibility and control over virtual machines, hosts, storage, and networks. vCenter also enables proactive management through features like patch management, energy efficiency controls, high availability, and migration tools. It can scale to manage large environments of up to 1,000 hosts and 10,000 virtual machines.
Here are the key differences between vSphere 5.0 and earlier vSphere versions that affect installation and setup:
- ESXi no longer includes a Service Console. Configuration is done through ESXi Shell, vCLI, and PowerCLI commands.
- ESXi uses a single text-based installer for fresh installations and upgrades.
- vSphere Auto Deploy and ESXi Image Builder CLI allow deploying ESXi directly to memory.
- Partitions use GPT format for new installations over 2TB instead of MSDOS. VMFS5 is used.
- The vCenter Server Appliance provides an alternative to Windows-based vCenter Server.
- The vSphere Web Client provides browser-based
This document provides an overview and agenda for discussing what's new in vSphere 5 and Heartbeat 6.4. It first recaps vSphere and introduces vSphere 5's new infrastructure and application services for compute, storage, network, availability, security and scalability. Specific enhancements discussed include ESXi convergence, auto deploy, storage DRS, I/O controls, larger VMs, and the vCenter appliance. It then summarizes vCenter Heartbeat 6.4's high availability capabilities for vCenter Server and integration with vSphere 5.
This document provides an introduction to 100 questions about planning, installing, and managing VMware Server, Workstation, and ESX. It aims to answer the most common questions asked in forums and by customers. Each section addresses a different aspect of VMware and virtualization to help users become more successful with VMware products and solutions.
The purpose of this reference architecture is to build and demonstrate the functionality, performance, and scalability of virtual desktops enabled by EMC VNX series (NFS), VMware vSphere 5.0, VMware View 5.1, VMware View Persona Management, VMware View Storage Accelerator, and VMware View Composer 3.0.
VMware vSphere® 6.0 permet aux utilisateurs de virtualiser leurs applications verticales et horizontales en toute sécurité, redéfinit les besoins en disponibilité et simplifie la gestion du datacenter virtuel. Cette version majeure offre une infrastructure à la demande, hautement disponible et fiable qui constitue la base idéale pour tout environnement de Cloud Computing.
Horizon 6, la suite logicielle VDI de VMware, ajoute le support des postes de travail virtuels Linux, en plus de l’environnement Windows de Microsoft. L’éditeur de Palo Alto a lancé un programme d'accès précoce pour les clients désirant tester en avant-première Horizon 6 avec les distributions Linux de Red Hat et Ubuntu sur des ordinateurs distants et des terminaux mobiles.
Vtguru v mware-v-sphere-administration-trainingfosilalive2
This document outlines the modules and content covered in the VTguru VMware vSphere-4.1 Administration Training course. The course teaches students to install, configure, and manage VMware vSphere-4.1 which includes ESX Server and vCenter Server. Students will learn how to install and configure ESX Server and vCenter Server, manage virtual networks and storage, deploy and manage virtual machines, ensure high availability, and more. The course contains over 15 modules and covers all aspects of virtual infrastructure administration using VMware vSphere 4.1.
VMware ESXi 3.5 update 2 is a next generation, thin hypervisor that is available for free. It partitions servers to create robust virtual machine environments with improved security, reliability and simplified management compared to previous versions. The free version provides many of the features of VMware Infrastructure 3, including support for virtual appliances and virtual machines. It has received positive feedback from customers for its plug-and-play installation and configuration capabilities.
The VSA provides shared storage for SMB customers without requiring a separate SAN or NAS device. It deploys virtual storage appliances on each ESXi host that replicate data across hosts, providing resilience to failures. The VSA manager in vCenter automates deployment and management of the VSA cluster, mounting NFS datastores for use across all ESXi hosts. This allows features like vMotion and HA without a dedicated storage device.
The document contains 15 technical interview questions for a third round VMware interview at IBM. The questions cover topics such as the physical topology of vSphere infrastructure, configuration of clusters, hosts, and resource pools, advantages of resource pools, benefits of ESX over other VMware products, management methods for vSphere, differences in access methods, features of VMFS, supported datastore types, configuration of datastores, VMware Consolidated Backup, configuration of vSphere HA and DRS, experience with VM provisioning, alarm and event management, task scheduling, hardware compatibility lists, configuration of SANs and NAS with VMware, applications run on VMs, and troubleshooting ESX and vSphere server crashes.
This document discusses virtual machine creation and management topics including vNetwork, vStorage, vMotion, DRS, and high availability (HA). It covers virtual machine hardware configuration, the files that make up a virtual machine, VMware Tools, and virtual machine power options. It also summarizes storage protocols, thin and thick provisioning, methods for migrating virtual machines, and how vMotion and DRS work. Finally, it discusses HA features like protection at different availability levels, using NIC teaming or additional networks for redundancy, and how the HA cluster architecture functions with a master and slave agents.
Virtualization allows multiple virtual machines to run on a single physical server. There are different types of virtualization including server, desktop, application, network and storage virtualization. Key virtualization concepts include the hypervisor, host and guest systems, and virtual components like CPUs, memory and disks. Licensing of guest operating systems is important. Virtualization provides benefits like server consolidation and high availability.
XenServer, Hyper-V, and ESXi - Architecture, API, and Coding_Humair_Ahmed_
XenServer, Hyper-V, and ESXi hypervisor comparison in regards to market share, architecture/installation, and APIs/coding. Technical details, demos, and code provided. Visit my blog at http://humairahmed.com/blog/.
Hyper-V and SCVMM 2008 provide virtualization capabilities for Microsoft. SCVMM 2008 allows for managing virtual machines across VMware and Hyper-V environments. It provides features like intelligent placement of VMs, conversion of physical to virtual machines, and delegated administration. SCVMM 2008 integrates with other System Center products and uses PowerShell for administration and monitoring of the virtualized environment.
System Center Virtual Machine Manager 2008 R2aralves
Virtual Machine Manager 2008 R2 is a centralized management solution that allows administrators to deploy, manage, and monitor virtual machines running on Hyper-V, Virtual Server, and VMware ESX servers. It provides features such as intelligent placement of VMs, conversion of physical to virtual machines and virtual to virtual machines, library management, and monitoring with Operations Manager. Version R2 adds additional capabilities such as managing Windows Server 2008 R2 Hyper-V, live migration, and storage improvements including support for multiple VMs per LUN.
Vmware Certified Professional 6 2V0-621 DumpsShamar41
pass4sureexam is a website which can help you save time and energy to rapidly and efficiently master the vmware certification 2v0-621d exam dumps.
https://www.pass4sureexam.com/2V0-621.html
Security Best Practices For Hyper V And Server Virtualizationrsnarayanan
The document summarizes information about Hyper-V virtualization. It provides an overview of Hyper-V architecture, including that the hypervisor partitions the hardware and manages guest partitions through the virtualization stack. It also discusses Hyper-V security, noting that guests are isolated from each other and the root to prevent attacks, and that delegated administration and role-based access control can be used to manage virtual machine access.
- VMware Tools is a suite of utilities that enhances performance and enables features for virtual machines. It includes services, device drivers, and user processes.
- Installing VMware Tools is recommended for new virtual machines. Upgrading to the latest version provides new features and compatibility.
- Installation and upgrade methods vary by guest operating system but generally involve mounting an ISO image containing the VMware Tools installer.
Oracle VM is Oracle's server virtualization solution. It provides several virtualization technologies including Oracle VM Server for x86 and SPARC servers, which allows consolidating applications by running multiple virtual machines on a single physical server. Oracle VM offers features such as live migration, high availability, dynamic resource scheduling, and storage connectivity. It provides a full-stack management solution with tools to deploy virtual machines quickly using templates and to manage thousands of VMs from a single console.
The document discusses various topics related to VMware administration interview questions and answers. It covers topics such as the VMkernel, port groups, vMotion licensing, virtual switches, snapshots, converting physical machines to virtual machines, and VMware consolidated backup.
VMware ESXi is a compact hypervisor architecture that operates independently without a general-purpose operating system. It comprises the VMkernel operating system, which manages hardware resources and runs processes like the virtual machine monitor. ESXi eliminates the need for a service console through new remote command line interfaces and adherence to management standards. The streamlined design focuses on rapid deployment and simplified management of virtual infrastructure.
VMware vCenter provides centralized management of VMware virtual infrastructures. It allows administrators to control and monitor all aspects of the virtual environment from a single console. Key features include centralized visibility and control over virtual machines, hosts, storage, and networks. vCenter also enables proactive management through features like patch management, energy efficiency controls, high availability, and migration tools. It can scale to manage large environments of up to 1,000 hosts and 10,000 virtual machines.
This document provides an overview of virtualization components and tools used in VMware vSphere. It discusses key concepts like virtualization types, hypervisors, computer clusters, VMware ESXi, vCenter Server, VMware vMotion, Distributed Resource Scheduler (DRS), High Availability (HA), and Distributed Power Management (DPM). The document aims to explain how these various virtualization technologies can help implement an organizational strategy in the workplace.
This document provides an overview of VMware virtualization solutions including ESXi, vSphere, and vCenter. It describes what virtualization and hypervisors are, lists VMware's product lines, and summarizes key features and capabilities of ESXi, vSphere, and vCenter such as centralized management, monitoring, high availability, and scalability.
This document compares and contrasts VMWare ESX and Microsoft Hyper-V. It discusses their definitions, hardware requirements, versions and management tools, features and limitations, and licensing. VMWare ESX is a hypervisor developed by VMWare that runs on top of hardware to enable virtualization. Microsoft Hyper-V is a virtualization platform introduced in Windows Server 2008 that can be installed as a role within Windows. The document provides details on specifications for each like supported RAM, storage, CPUs and more. It also reviews their management interfaces and licensing models.
Virtualization is a technology that allows multiple operating systems and applications to run on a single physical machine simultaneously. It provides a layer of abstraction between the physical hardware and the applications running on top of it. The document discusses concepts of virtualization like partitioning, full virtualization, paravirtualization, and VMware's product portfolio for data center, desktop, and mobile virtualization.
Virtualization allows multiple operating systems, called guest operating systems, to run concurrently on a single host machine. There are different types of virtualization including desktop, server, network, and storage virtualization. Virtualization software like VMware and Hyper-V use a hypervisor to allocate host resources dynamically among virtual machines. Server virtualization can be software-based or hardware-based using virtualization-aware hardware. Key VMware technologies allow live migration of running virtual machines between hosts without downtime.
Virtualization allows multiple operating systems, called guest operating systems, to run concurrently on a single host machine. There are different types of virtualization including desktop, server, network, storage and application virtualization. Virtualization software like VMware, Microsoft, and Citrix allow for virtual machines that have virtual hardware which the guest operating systems see as real. Server virtualization can be software-based or hardware-based using a hypervisor. Benefits of virtualization include cost savings, simplified management, and capabilities like live migration of virtual machines between hosts.
Virtualization allows multiple operating systems, called virtual machines, to run concurrently on a single host computer. There are different types of virtualization including desktop, server, network, and storage. Virtualization software like VMware and Hyper-V use a hypervisor to allocate hardware resources dynamically among virtual machines while preventing them from disrupting each other. Server virtualization can be software-based or hardware-based using a hypervisor directly on the physical hardware. Key virtualization techniques in VMware include VMotion for live migration of running virtual machines, Storage VMotion to move virtual machine storage, and High Availability clusters that restart virtual machines across hosts in case of failure.
Virtualization allows multiple operating systems, called guest operating systems, to run concurrently on a single host machine. There are different types of virtualization including desktop, server, network, storage and application virtualization. Virtualization software like VMware, Microsoft, and Citrix allow for virtual machines that have virtual hardware which the guest operating systems see as real. Server virtualization can be software-based or hardware-based using a hypervisor. Benefits of virtualization include cost savings, simplified management, flexibility and high availability of systems.
Virtualization allows multiple operating systems, called guest operating systems, to run concurrently on a single host machine. There are different types of virtualization including desktop, server, network, and storage virtualization. Virtualization software like VMware and Hyper-V use a hypervisor to allocate host resources dynamically among virtual machines. Server virtualization can be software-based or hardware-based using virtualization-aware hardware. Key VMware technologies allow live migration of running virtual machines between hosts without downtime.
This document discusses different levels and approaches to virtualization including instruction set architecture level, hardware abstraction level, operating system level, library support level, and user-application level virtualization. It also covers virtualization of CPU, memory, I/O devices, and virtual clusters. Key points include hardware-assisted virtualization using features like VT-x, two-stage memory mapping using EPT, different approaches to I/O virtualization, and live VM migration involving transferring memory and synchronizing state changes.
Exploring VMware APIs by Preetham GopalaswamyAlan Renouf
This document provides an overview and summary of the various APIs and tools available for managing and automating VMware vSphere environments. It discusses the vSphere Web Services SDK, hardware health monitoring via CIM SMASH, command line interfaces like vCLI and PowerCLI, language-specific SDKs for Perl, .NET and Java, and APIs for interacting with virtual machines like the Guest SDK and VIX. The document provides examples and explanations of how to use these various interfaces to configure, monitor and automate vSphere.
Virtualization provides abstraction between hardware and software. It allows multiple virtual machines to run on a single physical machine, sharing resources. There are two approaches - hosted virtualization runs on a standard OS, while hypervisor architecture installs directly on hardware for better efficiency. VMware offers virtualization software for data centers, desktops, and mobile devices to optimize resource use across hardware, storage, and networks. Standards like OVF and VMDK help define virtual machine packaging and disk formats.
VMware's virtual networking components allow virtual machines to connect to each other and external networks through virtual switches and virtual ethernet adapters. Virtual switches are similar to physical switches but have some key differences, like not requiring spanning tree protocol. Virtual machines connect to virtual switches using virtual ethernet adapters that emulate physical network adapters. Virtual switches provide isolation between virtual networks and allow virtual machines to be configured into port groups and connected to external physical networks through uplinks.
This document discusses several key VMware vSphere technologies including: ESXi, vCenter Server, vSphere Update Manager, vSphere Virtual SMP, vMotion and Storage vMotion, vSphere DRS, SDRS, SIOC, NIOC, SBPM, vSphere HA, FT, vSphere Storage APIs, vSAN, vSphere Replication, and vSphere Content Library. It provides details on how vCenter Server provides centralized management of ESXi hosts and VMs, how VUM manages updates, and how vSphere Virtual SMP allows VMs to utilize multiple virtual CPUs.
Virtualization allows multiple operating systems to run simultaneously on a single computer by dividing the physical hardware resources into virtual machines. This improves server utilization and offers benefits to both desktop users, who can run different operating systems without rebooting, and administrators, who can segment servers to support multiple users. Common virtualization software includes VMware Workstation, Microsoft Virtual PC, and Citrix XenDesktop.
There are three main virtual machine architectures: hypervisor/VMM architecture, host-based virtualization, and para-virtualization. The hypervisor/VMM architecture inserts a virtualization layer between the hardware and operating system to allow multiple operating systems to run simultaneously on the same physical machine. Host-based virtualization builds a virtualization layer on top of the host operating system, which still manages the hardware. Para-virtualization requires modifying guest operating systems and provides APIs for improved performance over full virtualization. KVM is an example of para-virtualization that uses the existing Linux kernel for scheduling and memory management.
Getting Started with ESXServer3iEmbedded aktivfinger
- The document provides instructions for setting up and configuring ESX Server 3i Embedded for the first time, including adding the host to the network, deploying the VI Client to connect to a single host, deploying virtual machines, and deploying VMware Infrastructure with VirtualCenter to manage multiple hosts.
- It describes the key components of VMware Infrastructure including the VI Client, VirtualCenter Server, datacenter, host, and virtual machines. It compares managing a single host versus managing multiple hosts with VirtualCenter.
- The steps explained include configuring the administrative password and management network on the ESX Server 3i host using the direct console before installing the VI Client software.
2. VMware ESXi 4.1 Migration Guide
Introduction
The hypervisor architecture of VMware® vSphere™ 4.1 (“vSphere”) plays a critical role in the management of the virtual infrastructure.
The introduction of the bare-metal VMware ESX® (ESX) architecture in 2001 significantly enhanced performance and reliability, which
in turn enabled customers to extend the benefits of virtualization to their mission-critical applications. The introduction of the VMware
ESXi™ (ESXi) architecture represents a similar leap forward in reliability and virtualization management. Less than 5 percent as large as
ESX, ESXi runs independently of an operating system and improves hypervisor management in the areas of security, deployment and
configuration, and ongoing administration. Yet none of this comes at the cost of functionality. All of the features offered by VMware
vSphere 4.0, such as VMware vMotion™ (vMotion), VMware Storage vMotion (Storage vMotion), VMware High Availability (VMware
HA), VMware Fault Tolerance (VMware FT), and VMware Distributed Resource Scheduler (VMware DRS), are fully supported on the
ESXi architecture.
This paper describes the architecture of ESXi and then explains how various management tasks are performed in ESXi. This
information can be used to help plan a migration to the ESXi architecture from the legacy ESX framework.
Architecture
In the original ESX architecture, the virtualization kernel (vmkernel) is augmented by a management partition known as the console
operating system (COS) or service console. The primary purpose of the COS is to provide a management interface with the host.
Various VMware management agents are deployed in the COS, along with other infrastructure service agents (for example, name
service, time service, logging, and so on). In this architecture, many customers deploy other agents from third parties to provide a
particular functionality, such as hardware monitoring and system management. Furthermore, individual administrative users log into
the COS to run configuration and diagnostic commands and scripts.
hardware system
monitoring management
agents agents
CLI commands VMware infrastructure
for config and management agents VM VM VM
support agents (NTP, Syslog)
service console
virtual machine
support and resource
management
VMkernel
Figure 1. Architecture of ESX
In the ESXi architecture, the COS has been removed, and all of the VMware agents run directly on the vmkernel. Infrastructure services
are provided natively through modules included in the vmkernel. Other authorized third-party modules, such as hardware drivers
and hardware monitoring components, can run in the vmkernel as well. Only modules that have been digitally signed by VMware are
allowed on the system, creating a tightly locked-down architecture. Preventing arbitrary code from running on the ESXi host greatly
improves the security of the system.
T E C H N I C A L W H I T E PA P E R / 2
3. VMware ESXi 4.1 Migration Guide
CLI commands for
config and support
agentless agentless
systems hardware VM VM VM
management monitoring
virtual machine
VMware common infrastructure support and
management information agents resource
framework model (NTP, Syslog) management
VMkernel local support consoles
Figure 2. Architecture of ESXi
Management
The management functionality that was provided by agents in the ESX architecture is now exposed via APIs in the ESXi architecture.
This allows for an “agent-less” approach to hardware monitoring and system management. VMware also created remote command
lines, such as the VMware vSphere 4 Command Line Interface (vCLI) and VMware vSphere 4 Power CLI) (PowerCLI), to provide
command and scripting capabilities in a more controlled manner. These remote command line sets include a variety of commands for
configuration, diagnostics and troubleshooting. For low-level diagnostics and the initial configuration, menu-driven and command-line
interfaces are available on the local console of the server. The following sections discuss individual management topics and describe
how tasks are performed in the ESXi architecture.
New and Improved Paradigm for ESX Management
Service Console (COS)
Management Agents Agentless vAPI-based
Hardware Agents Agentless CIM-based
vCLI, PowerCLI
Commands for
configuration and
diagnostics
Local Support Console
Infrastructure CIM API vSphere API
Service Agents Native Agents:
hostd, vpxa, NTP,
“Classic” VMware ESX Syslog, SNMP, etc.
VMware ESXi
Figure 3. New and Improved Paradigm for ESX Management
T E C H N I C A L W H I T E PA P E R / 3
4. VMware ESXi 4.1 Migration Guide
Scripting
To automate the management of an ESXi deployment, VMware has created easy-to-use scripting tools for managing day-to-day
operations. Users can write scripts with the same functionality as the vSphere client to automate manual tasks, enabling efficient
management of small- to large-scale environments. These tools work well with both ESXi and ESX hosts, empowering users to
administer mixed environments easily.
PowerCLI is a robust command-line tool for automating all aspects of vSphere management, including host, network, storage, virtual
machine, guest OS and more. PowerCLI is distributed as a Windows PowerShell snap-in, and includes more than 150 PowerShell
cmdlets, along with documentation and samples. PowerCLI seamlessly blends the vSphere platform with Windows and .NET, which
means you can use PowerCLI by itself or within many different third-party tools.
vCLI is a set of more than 30 command-line utilities that help users provision, configure and maintain ESX and ESXi hosts. There
are commands that can completely automate the initial configuration of an ESXi host, and others that provide troubleshooting and
diagnostic capabilities. VMware provides vCLI packages for installation on both Windows and Linux systems.
vCLI has numerous commands for troubleshooting, including:
• vmkfstools
• vmware-cmd
• resxtop
In vSphere 4.1, important enhancements make the vCLI more powerful:
• Performs host operations, such as rebooting and entering or exiting maintenance mode, using the “vicfg-hostops” command
• Configures Microsoft Active Directory using the “vicfg-authconfig” command
• Configures IPsec with “vicfg-ipsec”
• Forcibly terminates a virtual machine, even when it is not responding to normal shutdown commands, using the “esxcli vms”
command
• Configures storage to a greater extent, including various software iSCSI parameters and storage plug-ins, using a series of new
options to the “esxcli” command
• Employ additional diagnostic capabilities for networking and storage, including:
– The “esxcli network” command, which lists active connections or active ARP table entries
– New options for “resxtop,” which show NFS statistics.
Both PowerCLI and vCLI are built on the same interfaces as the vSphere client. They can be pointed directly at an ESXi host or at
vCenter. When pointed at a host, they can execute commands directly on an ESXi host, similar to the way a command in the COS of
ESX operates on only that host. Local authentication is required in this case. Alternatively, when communicating through vCenter, the
vCLI and PowerCLI commands benefit from the same authentication (for example, Active Directory) roles and privileges and event
logging occurs as vSphere client interactions. This provides for a much more secure and auditable management framework.
NOTE: Certain commands can be executed only directly on an ESXi host, not through vCenter Server. These are documented in the
vSphere Command Line Interface Installation and Scripting Guide.
The VMware vSphere 4.1 Management Assistant (vMA) is a virtual appliance that brings together all the tools users need to
manage vSphere. vMA packages the vCLI, the VMware vSphere SDK for Perl, as well as a logging module (called “vi-logger”) and
authentication modules for unattended script execution (called “vi-fastpass”) into one convenient bundle.
T E C H N I C A L W H I T E PA P E R / 4
5. VMware ESXi 4.1 Migration Guide
Hardware Monitoring
The Common Information Model (CIM) is an open standard that defines a framework for agentless, standards-based monitoring of
hardware resources for ESXi. This framework consists of a CIM object manager, often called a CIM broker, and a set of CIM providers.
CIM providers are the mechanisms that provide management access to device drivers and underlying hardware. Hardware vendors,
including server manufacturers and specific hardware device vendors, can write providers to supply monitoring and management
of their particular devices. VMware also writes providers that implement monitoring of server hardware, ESXi storage infrastructure
and virtualization-specific resources. These providers run inside the ESXi system and are designed to be extremely lightweight and
focused on specific management tasks. The CIM broker takes information from all CIM providers and presents it to the outside world
via standard APIs, the most common one being WS-MAN. Any software tool compatible with one of these APIs, such as HP SIM or Dell
OpenManage, can read this information, monitoring the hardware of the ESXi host.
One consumer of the CIM information is VMware vCenter. Through a dedicated tab in the vSphere client, users can view the hardware
status of any ESXi host in their environment, providing a single view of the physical and virtual health of their systems. Users can also
set vCenter alarms to be triggered on certain hardware events, such as temperature or power failure and warning states.
Figure 4. Hardware Monitoring in vCenter Server
ESXi also exposes hardware status information via SNMP for other management tools that rely upon that standard. SNMP traps are
available from both the ESXi host and vCenter. ESXi 4.1 currently supports SNMPv2, and it can be configured using the vCLI command
“vicfg-snmp.”
Systems Management and Backup
Systems management and backup products integrate with ESXi via the vSphere APIs, which have been significantly enhanced in
vSphere 4.1 through agentless partner integration. The API-based partner integration model significantly reduces management
overhead by eliminating the need to install and manage agents in the COS.
VMware has worked extensively with our ecosystem to transition all partner products to the API-based integration model of ESXi. As a
result, the majority of systems management and backup vendors in the VMware ecosystem support ESXi today. Partners such as BMC,
CA, HP, IBM, EMC, NetIQ, Quest Software, Commvault, Vizioncore, Double-Take Software, SteelEye and Symantec are among the many
partners that have systems management or backup products that support ESXi. If you are using an agent-based partner solution to
integrate with ESX, check with your vendor to see if a newer version of the product supports ESXi.
T E C H N I C A L W H I T E PA P E R / 5
6. VMware ESXi 4.1 Migration Guide
VMware also includes backup capability with the vSphere product suite. VMware Data Recovery is a robust, simple-to-deploy backup
and recovery solution that businesses should consider using when they virtualize their infrastructure to provide the first line of data
protection for their virtual environment.
VMware Data Recovery enables:
• Full image backup of virtual machines
• Full and incremental recovery of virtual machines, plus recovery of individual files and directories
Patching and Updating
Patching and updating of ESXi allows flexibility and control. During the patching process, only the specific modules being updated
are changed, letting the administrator preserve any previous updates to other components. Whether installed on disk or embedded
flash memory, ESXi employs a “dual-image” approach, with both the current and prior version present. When a patch is installed, the
new image is constructed and overwrites the prior image. The current version becomes the prior version and the system boots off
the newly written image. If there is a problem with the image or the administrator wishes to revert to the prior one, the host is simply
rebooted off the recent good image.
VMware vCenter Update Manager (Update Manager) is a vCenter plug-in patch-management solution for vSphere. Update Manager
enables centralized, automated patch and version management for vSphere and offers support for ESX/ESXi hosts, virtual machines
and virtual appliances, enabling administrators to make their virtual infrastructure compliant with baselines they define. Updates
that users specify can be applied to operating systems, as well as to applications on ESX/ESXi hosts, virtual machines and virtual
appliances that can be scanned. With Update Manager, users can perform the following tasks:
• Scan for compliance and apply updates for guests, appliances and hosts.
• Directly upgrade hosts, virtual machine hardware, VMware Tools and virtual appliances.
• Install and update third-party software on hosts.
Update Manager 4.1 empowers users to apply offline bundle patches. These are patches that are downloaded manually from a VMware
or third-party Web site, not hosted in an online depot. This is especially relevant to ESXi, because many important components, such
as third-party driver updates and CIM provider updates, are often distributed only as offline bundles.
An alternative to Update Manager is the vCLI command “vihostupdate.” This command applies software updates to ESX/ESXi
images, and installs and updates ESX/ESXi extensions such as vmkernel modules, drivers and CIM providers. Unlike Update Manager,
“vihostupdate” works only on an individual host and does not monitor for compliance to baselines. However, “vihostupdate” does not
require vCenter Server to function. Table 1 gives a summary of ESXi patching and updating options.
PATC H I N G A N D WHEN TO USE
U P DAT I N G TO O L
vCenter Update • Use when hosts are managed by vCenter Server as Update Manager is integrated with vCenter
Manager
• Use when monitoring for compliance against patching baselines is required.
• Use when coordination with host maintenance mode is needed for VMware DRS to perform an
orderly evacuation of virtual machines from existing hosts.
“vihostupdate” • Use for one-off host upgrades.
• Use in remote situation in which vCenter Server is not accessible.
• Use when ESX/ESXi hosts not managed by vCenter Server.
Table 1.
T E C H N I C A L W H I T E PA P E R / 6
7. VMware ESXi 4.1 Migration Guide
User Authentication
Although day-to-day operations are done on vCenter, there are instances when users must work with ESXi directly, such as with
configuration backup and log file access. To control access to the host, you can have local users on an ESXi system. With ESXi 4.1, you
can configure the host to join an Active Directory domain, and any user trying to access the host will automatically be authenticated
against the centralized user directory. You can also have local users defined and managed on a host-by-host basis and configured
using the vSphere client, vCLI or PowerCLI. This second method can be used in place of, or in addition to, the Active Directory
integration.
Users can also create local roles, similar to vCenter roles, which define things that the user is authorized to do on the host. For instance,
a user can be granted read-only access, which allows them only to view host information; or they can be granted administrator access,
which allows them both to view and to modify host configuration. If the host is integrated with Active Directory, local roles can also
be granted to Active Directory users and groups. For example, an Active Directory group can be created to include users who should
have an administrator role on a subset of ESXi servers. On those servers, the administrator role can be granted to that Active Directory
group; for all other servers, those users would not have an administrator role. ESXi 4.1 also automatically grants administrator access to
the Active Directory group named “ESX Admins,” which allows the creation of a global administrators group.
The only user defined by default on the system is the root user. The initial root password is typically set using the Direct Console User
Interface (DCUI). It can be changed afterward using the vSphere client, vCLI or PowerCLI. The root user is only defined locally; in other
words, the root password is not managed by Active Directory.
Logging
Logging is important for both troubleshooting and compliance. ESXi exposes logs from the host agent (hostd), vCenter agent (vpxa)
and vmkernel (messages) by using a host syslog capability. Users can configure syslog to write logs onto a file on any datastore
accessible to the ESXi host; in ESXi 4.1, the system is automatically configured to write log files to the scratch partition of the host.
Users can also configure syslog to forward log messages to a syslog server for enterprise central logging.
Log files for certain capabilities, such as VMware HA, are not managed through the syslog facility. These log files are stored only on the
local ESXi host’s in-memory filesystem. They can be downloaded from the host by using the vSphere client option “Export Diagnostic
Data.”
Keeping the ESXi host in synch with an accurate time source is very important for ensuring log accuracy, and is required for
compliance. It is also important if you are using the host to maintain accurate time on the guest virtual machines. ESXi has built-in NTP
capabilities for synchronizing with NTP time servers.
Logging
Enterprise Enterprise
Syslog NTP Time
Collection Server
VMware Common Inrastructure Virtual machine
Management Information Agents (NTP, support and
Framework Model Sylog, etc) resource
management
Local Support Consoles
VMkernel
Datastore
Figure 5. Logging in ESXi
T E C H N I C A L W H I T E PA P E R / 7
8. VMware ESXi 4.1 Migration Guide
Local Shell Access
Tech support mode is a simple shell for advanced technical support. With situations in which remote scripting tools are not capable of
addressing some particular issue, tech support mode provides an alternative. Similar to the way the COS is used to execute diagnostic
commands and fix certain low-level problems, tech support mode enables users to view log and configuration files, as well as run
certain configuration and utility commands in order to diagnose and fix problems. Note that tech support mode is not based on Linux;
rather, it is a limited-capability shell compiled especially for ESXi.
In ESXi 4.1, tech support mode is fully supported for use by end-users, and is enhanced in several ways. In addition to being available
on the local console of a host, it can also be accessed remotely through SSH. Access to tech support mode is controlled in the
following ways:
• Both local and remote tech support mode can be enabled and disabled separately in both the DCUI and vCenter Server.
• Tech support mode may be used by any authorized user, not just root users. Users become authorized when they are granted
the administrator role on a host (through Active Directory membership in a privileged group and through other methods).
• All commands issued in tech support mode are logged through syslog, allowing for a full audit trail. If a syslog server is
configured, then this audit trail is automatically included in the remote logging.
• A timeout can be configured for tech support mode (both local and remote), so that after being enabled, it will automatically
be disabled after the configured time.
Tech support mode is recommended for use primarily for support, troubleshooting and break-fix situations. It also can be used as part
of a scripted installation, as described in the next section. All other uses of tech support mode, including running custom scripts, are
not recommended for most cases.
Deployment
Various deployment methods are supported for ESXi, such as booting the installer off of a DVD or over PXE, and deploying the ESXi
image onto a local disk over the network using a variety of protocols, including secure HTTP. ESXi 4.1 enables users to do a scripted
installation of the ESXi software onto the local disk of a server, analogous to the Kickstart mechanism used for ESX architecture. The
scripted installation configuration file (typically named “ks.cfg”) can also specify the following scripts to be executed during the
installation:
• Pre-install
• Post-install
• First-boot
These scripts are run locally on the ESXi host and can perform various tasks, such as configuring the host’s virtual networking and
joining it to vCenter Server. These scripts can be written in either the tech support mode shell or Python.
Support for Boot from SAN has been added to ESXi 4.1. This support includes Fibre Channel SAN, as well as iSCSI and FCoE for certain
storage adapters that have been qualified for this capability.
ESXi 4.1 is still available pre-installed on flash drives on certain server models available from a number of hardware OEM vendors.
Scripted installations can also be used to deploy ESXi to a supported USB or flash drive on a server. (Please consult the server HCL to
determine which combinations of server and USB or flash drive are supported.)
T E C H N I C A L W H I T E PA P E R / 8
9. VMware ESXi 4.1 Migration Guide
Diagnostics and Troubleshooting
With ESXi 4.1, there are a variety of options for diagnosing problems with the server configuration or operation, as well as for fixing
them. Different methods will be more appropriate depending upon the situation, and VMware issues Knowledge Base articles with
instructions on various issues.
The DCUI is the menu-driven interface available at the console of the physical server on which ESXi is installed or embedded. Its main
purpose is to perform the initial configuration of the host (IP address, host name, root password) and diagnostics.
The DCUI has several diagnostic menu items:
Restart all management agents, including
• hostd
• vpxa
Reset configuration settings, for example,
• Fix a misconfigured vNetwork Distributed Switch
• Reset all configurations to factory defaults
Enable tech support mode (shell access), including
• Local tech support mode
• Remote tech support mode (SSH-based)
Users can also point an ordinary web browser to the host and view files, including:
• Log files
• Configuration files
• Virtual machine files
Credentials of a user with an administrator role must be provided in the browser in order to use this feature.
Finally, tech support mode provides another means for more advanced troubleshooting and support, as mentioned earlier. Some new
commands added to tech support mode in ESXi 4.1 include:
• vscsiStats, which provides detailed information on SCSI performance
• nc, which is based on the standard netcat utility
• tcpdump-uw, which is based on the standard tcpdump utility
Local Access and Lockdown Mode
ESXi 4.1 provides the ability to fully control all direct access to the host via vCenter Server. Once a host has been joined to vCenter
Server, every direct communication interface with the host is configurable as an independent service in the configuration tab for the
host in vSphere client, including:
• DCUI
• Local tech support mode
• Remote tech support mode
Each of these can be turned on and off individually.
T E C H N I C A L W H I T E PA P E R / 9
10. VMware ESXi 4.1 Migration Guide
Figure 6. Local Access Services
Access based on the vSphere API — for example, the vSphere client, PowerCLI, vCLI and so on — is normally governed by granting
local privileges to specific users. The root user is the only one that has a permanent administrator role on the host; all other users must
be explicitly granted a local role on the host in order to access it.
There are cases in which you would not want anyone to access the host directly at all, instead managing it exclusively through vCenter
Server. Lockdown mode is a feature designed to provide this capability. When lockdown mode is enabled on the host, all direct remote
access to the host is blocked, including:
• Any vSphere API client
• Local tech support mode
• Remote tech support mode
Even if tech support mode is enabled, lockdown mode effectively overrides this by preventing any connection from succeeding. The
only way to manage the host remotely is through vCenter Server. The interaction between the host and vCenter Server occurs through
a special-purpose account called “vpxuser”; all other ordinary user accounts, including root, can no longer connect remotely.
For the special case of hardware monitoring through the CIM interface, monitoring software must obtain this hardware information
directly from the host. In order to do this, the monitoring software must be programmed to obtain a special authentication ticket from
vCenter Server. This ticket allows the software to obtain the information from the host through the vCenter Server “vpxuser” account
on a one-time basis.
With lockdown mode enabled, the only direct access to the host that remains open is through the DCUI. This provides a way to
perform limited administrative tasks outside of vCenter Server. In addition, the DCUI can also turn off lockdown mode, disabling it
without going through vCenter Server. This might be useful if vCenter Server is down or otherwise unavailable, and you wish to revert
to direct management of the host. In order to log in to the DCUI in lockdown mode, however, the root password is required; no other
user can log in, even if they have been granted an administrator role.
In the extreme case, disabling of all direct access to the host may be desired. For example, you might want to prevent anyone with the
root password from disabling lockdown mode and managing the host. In this case, you can take the additional step of disabling the
T E C H N I C A L W H I T E PA P E R / 1 0
11. VMware ESXi 4.1 Migration Guide
DCUI for the host, through vCenter Server. After this is done, no direct interaction with the host, local or remote, is possible. It can be
managed only through vCenter Server. If vCenter Server is down or otherwise unavailable, you cannot revert to direct management,
because logging into the DCUI is no longer possible. If the vCenter Server cannot be restored, then the only way to revert to direct
management is to reinstall the ESXi software on the host.
Note that lockdown mode is not permanent; it can be disabled for any individual ESXi host at any time (provided that vCenter Server
is running and able to connect to that host). The recommendation is that lockdown mode be used in ordinary day-to-day operations,
but that it be disabled for a host if the need arises to interact with it directly. For example, if a troubleshooting situation is encountered,
and the tools provided by vCenter Server are not sufficient, then lockdown mode should be disabled and more extensive diagnostics
should be performed, using tech support mode, for example.
Table 2 presents a summary of lockdown mode and its interaction with the various host access services.
ACC E SS M O D E NORMAL LOCK DOWN LOCK DOWN + DCUI
DISABLED
vSphere API (e.g., Any user, based on None (except vCenter None (except vCenter
vSphere client, local roles/privileges “vpxuser”) “vpxuser”)
PowerCLI, vCLI, etc)
CIM Any user, based on None (except via None (except via
local role/privilege vCenter ticket) vCenter ticket)
DCUI Root and users with Root only None
admin privileges
Tech support mode Root and users with
None None
(local) admin privileges
Tech support mode Root and users with None None
(remote) admin privileges
Table 2. Summary of Lockdown Mode Effect on Local Access
T E C H N I C A L W H I T E PA P E R / 1 1
12. VMware ESXi 4.1 Migration Guide
Summary
Table 3 provides a summary of the tasks traditionally performed in the service console of ESX and the functional equivalents for ESXi.
TAS K ESX ESXI
Access local Console commands to browse datastores and •Remote command line interfaces commands to list
files: VMFS files, virtual machine files and retrieve files
configuration files, log
•vSphere client datastore browser for VMFS files
files downloads and uploads files
Manipulate virtual • Advanced configuration done in the vSphere •Advanced configuration done in vSphere client
machine files (for client
•Remote command line interfaces commands to list
example, modify
• Console commands to modify virtual machine and retrieve virtual machine files
.vmx) files
Backup •Virtual machine backup: agents in service •Virtual machine backup: VMware Data Recovery or
console, VMware Data Recovery or third-party third-party backup products
backup products
•ESXi backup: single small backup file created via
•ESX backup: uses agents in the service vCLI command “vicfgcfgbackup
console, creates archive of service console
files, or performs a scripted reinstall
•Agents in service console •CIM-based framework
Hardware monitoring
•SNMP •SNMP
Patching and •Update Manager •Update Manager
updating
•RPM-based third-party tools •vCLI command “vihostupdate”
Automated Red Hat Kickstart ESXi scripted installation (analogous to Red Hat
deployment Kickstart)
Troubleshooting or Local esxcfg-* commands •Remote command-line interface commands
support
•Tech support mode
Advanced Editing configuration files (for example, hostd. •Remote command-line interfaces commands to list
configuration conf) directly and retrieve ESXi configuration files
•Editing files in Tech support mode directly
Logging Remote syslog in service console Built-in remote syslog client
Performance •vSphere client •vSphere client
monitoring
•”esxtop” in service console •vCLI command “resxtop”
•”esxtop” in tech support mode
Reporting and •Service console scripts •Remote command-line interfaces commands to list
auditing and retrieve log files, configuration and settings
•log files
•vSphere client option to export diagnostic data
Table 3. Comparison of Management Capabilities in ESX and ESXi
T E C H N I C A L W H I T E PA P E R / 1 2