WilliamLam.com

Quick Tip: High CPU Utilization on ESX due to Slow Entropy from AMD Zen 4 CPUs

by // 3 Comments

I had been troubleshooting a stubborn CPU utilization issue with a workload that, over time would also overrun the CPU on my physical ESX host. The assumption was that the workload was causing the issue, but after several rounds of collecting various ESX performance statistics, there was nothing conclusive that the workload was the culprit.

An interesting observation from some of the ESXi VMkernel Engineering team was that my VMkernel log contained a large number entropy errors:

NRandomHwrng: 246: Out of entropy, refreshing

The engineering team suspected that these entropy issues could actually be the root cause of the issues I had observed, especially as they have seen something simliar in another case when entropy requests fail.

[Read more...]

Automating VCF 9.0 Single Sign-On (SSO) with OIDC-based Identity Provider

by // 2 Comments

Configuring VMware Cloud Foundation (VCF) Single Sign-On (SSO), introduced in VCF 9.0, can be quite lengthy, especially when you go through the workflow for the first time.


For my lab setup, I use Keycloak, a popular and free OIDC-based IdP, and have documented a step-by-step guide for using it with VCF SSO.

Even as an experienced user of VCF SSO, I find the configuration can still take several minutes, depending on your familiarity with the UI inputs. This is something I have wanted to automate for some time, but it meant digging into the private API calls used by the VCF Operations UI.

[Read more...]

Automating Lab Optimizations for Post-Deployment of VMware Cloud Foundation (VCF)

by // Leave a Comment

After deploying a new VMware Cloud Foundation environment in my lab, I typically apply a set of post-deployment configurations across components such as vCenter and NSX, depending on the specific scenarios I am testing.

I finally found some time to automate these manual tasks, as they were finally getting annoying but not annoying enough at the beginning to automate them immediately 😅

[Read more...]