WilliamLam.com

Dynamically Rebalance or Evacuate VKS Control Plane / Worker Nodes across vSphere Zones in VCF 9.0

by // 2 Comments

vSphere Zones in VMware Cloud Foundation (VCF) 9.0 have been enhanced to offer greater flexibility in resource consumption and isolation for both vSphere Supervisor Control Plane VMs (Management), vSphere Kubernetes Service (VKS) Cluster (Workloads) or a combination of the two.


Depending on your required level of management availability and workload isolation, administrations have several vSphere Supervisor Zone deployment options to select from:

Note: The management zone selection (single vs multi) is only configurable during the initial enablement of vSphere Supervisor. It is currently NOT possible to reconfigure the vSphere Supervisor to switch from a single to multi-zone management without re-deploying vSphere Supervisor.

[Read more...]

Quick Tip - Using VCF CLI to login to vSphere Supervisor when configured with VCF Automation

by // 1 Comment

When a vSphere Supervisor Cluster is configured to be consumed by VCF Automation, the Identity Provider (IdP) for that vSphere Supervisor is automatically configured to redirect to VCF Automation (VCFA) as an OIDC relay.


When an end user wishes to access or manage their resources, they will be directed to the IdP that has been configured for their Organization Portal. To create a k8s login context, they will need to create a VCFA API token that is then passed to the VCF CLI before they can interact with their resources using kubectl.

Below is an example VCF CLI command where I am logging into an Organization Portal called legal and I have specified my VCFA endpoint along with the VCFA API Token to login as an end user.

vcf context create legal --endpoint auto01.vcf.lab --api-token $VCF_CLI_VCFA_API_TOKEN --insecure-skip-tls-verify --type cci --tenant-name legal

However, if you are an administrator who is managing the underlying VCF Infrastructure and need to troubleshoot or access the vSphere Supervisor Cluster, an alternative workflow will be required.

[Read more...]

Enabling new vSphere Kubernetes Service (VKS) Cluster Management for VCF Automation (VCFA)

by // Leave a Comment

As of VMware Cloud Foundation (VCF) 9.0.1, users can now manage the full lifecycle of their vSphere Kubernetes Service (VKS) Clusters, including backup and restore, using the new vSphere Kubernetes Service Cluster Management (VKSM) capability, natively integrated into VCF Automation (VCFA).


This is definitely a must have capability for users managing dozen or even hundreds of VKS Clusters across different versions, VKSM provides the easy button for platform operators!

I figured before going on PTO next week and shutting down my lab, this would be the perfect time to get this deployed in my lab ... what could go wrong, right!? 😅

[Read more...]