In this blog post, we will walk through the configuration of an Identity Provider (IdP) and create an OIDC Public Application Client, which will be used to grant access to a PAIS deployment. As of this blog post, the instructions for setting up the required IdP will be based on Authentik (which I have blogged about before), which is a free and self-hosted IdP solution.

Note: I am also looking to get this working using Keycloak, but currently I am still debugging some issues, so will provide an updated blog post once I can also use Keycloak as an IdP for PAIS.

Requirements:

• DNS entry for IdP (e.g. auth2.vcf.lab)
• DNS placeholder entry for the PAIS deployment instance (e.g. pais.vcf.lab)
• vSphere environment to deploy the IdP

[Read more...]

Over the past couple of months, I have used my minimal VMware Cloud Foundation (VCF) 9.0 lab to explore nearly every major VCF 9.0 capability including NVMe Tiering, vSAN ESA, NSX VPC, vSphere Supervisor Services like vSphere Kubernetes Service (VKS), VM Service & ArgoCD, VCF Operations (VCFO), VCF Automation (VCFA), VMware AVI Load Balancer, Data Services Manager (DSM) and the list goes on and on! 😅

One area that I have been interested in diving deeper into is with our Private AI offerings and with the announcement of VMware Private AI Services (PAIS) now included as part of VMware Cloud Foundation (VCF), it gave me that additional motivation to see if I could also run PAIS in my lab!

As part of my exploration, I will be documenting my experience in a mini-blog series on installing and configuring PAIS to deploy an AI Agent using an NVIDIA GPU with DirectPath I/O. Since NVIDIA vGPU requires an NVIDIA AI for Enterprise (NVAIE) license, this approach can especially be useful for lab and learning purposes.

Requirements:

• VCF 9.0 environment deployed
• NSX VPC configured with Centralized Transit Gateway
• vSphere Supervisor configured with NSX VPC
• VCF Automation configured to support vSphere Supervisor with (All Apps) Tenant Portal

[Read more...]