2. Optimizing Orchestrator Configuration
by Daniel Langenhan
VMware vRealize Orchestrator Cookbook - Second Edition
- VMware vRealize Orchestrator Cookbook Second Edition
- VMware vRealize Orchestrator Cookbook Second Edition
- Credits
- About the Author
- About the Reviewers
- www.PacktPub.com
- Preface
- 1. Installing and Configuring Orchestrator
- 2. Optimizing Orchestrator Configuration
- Introduction
- Tuning the appliance
- Tuning Java
- Configuring the Kerberos authentication
- Configuring access to the local filesystem
- Configuring the Orchestrator service SSL certificate
- Orchestrator log files
- Redirecting Orchestrator logs to an external server
- Backup and recovery
- Control Center titbits
- 3. Distributed Design
- Introduction
- Building an Orchestrator cluster
- Load-balancing Orchestrator
- Upgrading a cluster
- Managing remote Orchestrators
- Synchronizing Orchestrator elements between Orchestrator servers
- 4. Programming Skills
- Introduction
- Version control
- Changing elements in a workflow
- Importing and exporting Orchestrator elements
- Working with packages
- Workflow auto documentation
- Resuming failed workflows
- Using the workflow debugging function
- Undelete workflows and actions
- Scheduling workflows
- Sync presentation settings
- Locking elements
- 5. Visual Programming
- 6. Advanced Programming
- Introduction
- JavaScript complex variables
- Working with JSON
- JavaScript special statements
- Turning strings into objects
- Working with the API
- Creating actions
- Waiting tasks
- Sending and waiting for custom events
- Using asynchronous workflows
- Scripting with workflow tokens
- Working with user interactions
- 7. Interacting with Orchestrator
- Introduction
- User management
- User preferences
- Using Orchestrator though the vSphere Web Client
- Accessing Orchestrator REST API
- Accessing the Control Center via the REST plugin
- Running Orchestrator workflows using PowerShell
- Using PHP to access the REST API
- 8. Better Workflows and Optimized Working
- 9. Essential Plugins
- 10. Built-in Plugins
- Introduction
- Working with XML
- Working with SQL (JDBC)
- Working with SQL (SQL plugin)
- Working with PowerShell
- Working with SOAP
- Working with Active Directory
- Working with SNMP
- Working with AMQP
- 11. Additional Plugins
- 12. Working with vSphere
- 13. Working with vRealize Automation
- Introduction
- Working with the vRA-integrated Orchestrator
- Automating a vRA instance in Orchestrator
- Configuring an external Orchestrator in vRA
- Adding Orchestrator as an infrastructure endpoint
- Adding an Orchestrator endpoint
- Integrating Orchestrator workflows as XaaS Blueprints
- Managing AD users with vRA
- Using the Event Manager to start workflows
In this chapter, we will explore how to optimize the Orchestrator installation and look at the following recipes:
- Tuning the appliance
- Tuning Java
- Configuring the Kerberos authentication
- Configuring access to the local filesystem
- Configuring the Orchestrator service SSL certificate
- Orchestrator log files
- Redirecting Orchestrator logs to an external server
- Backup and recovery
- Control Center titbits
Please also note that in the workflow package that comes with this book, there are several workflows that will configure Orchestrator.
As in all production environments, you should consider using dedicated service accounts for connections between different services. For Orchestrator, there are several connections that we should have a look at.
The connection between Orchestrator and PSC/SSO will only be set up once with an SSO administrative user, after that Orchestrator will use the solution user.
The connection between Orchestrator and vCenter depends on how you would like to handle the role and rights management between them. You can either use one administrative connection between Orchestrator and vCenter, or choose to limit access by the role and rights of the logged-in Orchestrator user. We have already discussed this a bit in the recipe Connecting to vCenter in Chapter 1, Installing and Configuring Orchestrator and we will discuss it a bit more in the recipe User management in Chapter 7, Interacting with Orchestrator.
The connection between clients (desktops and application servers) and Orchestrator is regulated by the membership of the Orchestrator Administration group and by non-administrative users in Orchestrator. We will discuss how to add non-administrative users to Orchestrator in the User management recipe in Chapter 7, Interacting with Orchestrator.
In general, one should follow the IT base rule: Dedicated Services, Dedicated Users.
Tip
Please note that the vRA integrated Orchestrator is described in more detail in the recipe Working with the integrated vRA Orchestrator in Chapter 13, Working with vRealize Automation.
-
No Comment