Automated deployment of vRealize Suite in VCF 4.1 – Part 2

In the previous part of the automated deployment of vRealize Suite in VCF 4.1, we deployed the vRealize Suite Lifecycle Manager. We have also deployed the Workspace ONE Access using the vRealize Suite Lifecycle Manager. In this part we will continue deploying other vRealize Suite products. This part will cover deployment and configuration of vRealize Operations Manager.

Before you begin, make sure that you have the vRealize Operations Manager bundle downloaded on the SDDC Manager and the vRSLCM has synchronized its inventory.


Before you begin with the deployment, verify that your environment meets the following prerequisites and requirements.

Deploy vRealize Operations

Create certificate

Note: in this exercise I am using a self-generated SSL certificate. In a production environment it is strongly recommended to use a CA signed certificate.

  1. Navigate to your vRealize Suite Lifecycle Manager and log in as vcfadmin@local user.
  2. Open the Locker.
  3. Make sure the Certificate pane is selected and click the Generate button to generate a certificate.
  4. Fill in the mandatory fields as required and click Generate. Note that according to the requirements, you need to create a Mulit-SAN certificate for the vROps cluster.Automated deployment of vRealize Suite in VCF 4.1 - Certificate Generation

Add vRealize Operations Manager root password

  1. Next, select Password on the left pane and click the Add
  2. Enter the password alias, the password itself, description, and the username. In this case “root”. Click Add.Automated deployment of vRealize Suite in VCF 4.1 - Add Password

Create environment for vRealize Operations Manager

  1. Click on the vRealize Suite Lifecycle Manager icon on the top left and go to Lifecycle Operations under My Services.
  2. Click Create Environment.
  3. Enter the environment name (in case of VCF this will be the cross-regional environment), admin email, select the default password created earlier, and select datacenter from the drop-down list. Click Next.Automated deployment of vRealize Suite in VCF 4.1 - Create Environment
  4. Select vRealize Operations from the product list and select New Install. Review the sizing info and size you vROps cluster according to VMware guidelines. In this case, I am going with a medium 2-node cluster as my resources are limited.Automated deployment of vRealize Suite in VCF 4.1 - Create Environment - Select Product
  5. Next, accept the EULA.
  6. Select the vRealize Suite license or add a new one. Click Validate Association to check if the selected license is applicable.Automated deployment of vRealize Suite in VCF 4.1 - Create Environment - Add License
  7. Select the Multi-SAN certificate created earlier from the drop-down list and click Next.
  8. Click Next on the Infrastructure page as the info will be pre-populated from the SDDC Manager. Notice that the vROps cluster will be applied on the Cross-Regional network segment.
  9. Click Next once again on the Network This info is also automatically populated for you from the SDDC Manager.
  10. On the Products page, set the following values:
    • Disable TL Version: TLSv1, TLSv1.1
    • Certificate: you vROps certificate created earlier (should already be filled in)
    • Anti-Affinity / Affinity Rule: check
    • DRS Anti-Affinity Rules Types: Keep virtual machines in separate hosts
    • Product Password: your vROps root password created earlier.Automated deployment of vRealize Suite in VCF 4.1 - Create Environment - vROps 1
    • Scroll down to the Cluster Virtual IP and enter the FQDN.
    • Scroll down to the Components part and enter the VM name, FQDN, and IP Address for both vROps appliances.
    • Click Next.
  11. Run the precheck. Wait for the precheck to complete. Fix errors if any.
  12. Click Next to advance to the Summary page.
  13. Review the settings, backup the deployment configuration if necessary and click Submit to start the deployment.

vRSLCM will switch to Request Details page where you can monitor the deployment progress. This process can take some time to finish. Once completed, the vRealize Operations product will now be added to the SDDC Manager inventory.Automated deployment of vRealize Suite in VCF 4.1 - Create Environment - Produc active in SDDC Manager

Configure vRealize Operations Manager appliances

According to the VVD documentation, in order to avoid availability disruptions in the vROps analytics cluster, you must reconfigure the domain name and seartch path on all vROps appliances.

  1. Log in via SSH to the first vROps node and log in as root.
  2. Run this command to open the VAMI network configuration: # /opt/vmware/share/vami/vami_config_netAutomated deployment of vRealize Suite in VCF 4.1 - Config vROps
  3. Press 4 to configure the DNS.
  4. Press Enter on the DNS Server 1 and do the same for DNS Server 2.
  5. Enter the Domain Name and press Enter.
  6. At the Search Path, enter the domain name and press Enter.
  7. Verify the configuration with option 0.
  8. Exit the VAMI interface with option 1.
  9. You can also verify the values with # cat /etc/resolv.conf

Repeat these steps for all remaining vROps nodes.

Connect Workload Domain(s) to vRealize Operations Manager

At this step you can start connecting your workloads domains to the vROps cluster if you have any deployed already. I don’t, so we will have to skip this step unfortunately. Instructions on how to connect workload domains to vROps cluster can be found in the online documentation.

Configure vRealize Operations Manager authentication source

This feature is set automatically by the vRSLCM. To verify the configuration, navigate to your vROps cluster VIP, log in as admin, and on the Administration page, go to Access -> Authentication Sources. You should see your Workspace ONE Access (of VMware Identity Manager) displayed here.

Define startup order of the vRealize Operations Manager cluster

We need to define the startup order for the vROps analytics cluster which will ensure that vSphere HA will power on the VM’s in correct order. Also, the Workspace ONE Access needs to power-on before the vROps cluster.

  1. Open the Management vCenter Server and log in as administrator@vsphere.local.
  2. Select the cluster resource and on the Configure tab, go to Configuration -> VM/Host Groups.
  3. Click the green Add button, enter a name for the group (i.e. vROps VM’s), and add all vROps nodes as members of this group. Click OK to create the group.Automated deployment of vRealize Suite in VCF 4.1 - Create VM group
  4. Next, create a rule to power-on the WS1A before the vROps cluster.
  5. Under Configuration, select VM/Host Rules.
  6. Click Add.
  7. Enter the rules name (i.e. vROps-WS1A-Dependency), Virtual Machines to Virtual Machines as Type, and set the dependency of vROps VM’s to the WS1A VM’s.Automated deployment of vRealize Suite in VCF 4.1 - Create VM dependeny rule
  8. Click OK.

This concludes part 2 of the automated deployment of vRealize Suite in VCF 4.1. In the next part, we will deploy vRealize Log Insight!


– Marek.Z


  1. Sorry, but where is that automation from the title? First manual wizard work, then SSH, then manual config in vCenter. That’s not automation at all.

    • Hi,

      Initially, this may look that it requires a lot of manual steps but it really isn’t. You still need to input all the data in the LCM workflow but from there, it runs automatically. Once that is done, the remaining tasks are day-2 operations which you would have to do anyway.

      Don’t get me wrong, I also think there is room for improvement but that will come with future releases.


  2. Hello,
    I would like to deploy only one node of vRealize Operation (no HA) but I found that GUI start from two nodes. How can I deploy it ?

    Sukanya S.

Leave a reply...