Quantcast
Channel: VMware Communities : All Content - All Communities
Viewing all 179681 articles
Browse latest View live

Using a password manager with vSphere

April 5, 2012, 3:00 pm
$
0
0

I posted this over on the EMC forum as well, but thought I would share it here:

 

Our lab environment has multiple vSphere and vCenter deployments, all seemingly built by different people at different times with different usernames and different passwords.  Since these are in a lab environment, AD is not really an option.  Rather than use a large supply of sticky notes, I decided to try to use technology to make things "better" and to share what I've created so far.

 

I decided (after some searching of various reviews) to use KeePass 2.x for my testing, but you may find similar functionality in other password managers.

 

Solution #1:

KeePass offers the option to pass a username and password to another window by launching the target application (vSphere client), then switching to KeePass and selecting the entry in KeePass and selecting Auto-Type(Ctrl-V) - but you will need to first select/enter the correct server IP/name in vSphere client.

 

I wanted to make it more automated and also pass the IP/hostname of the server.

 

Solution #2:

You can create a customized "Auto-Type" macro on a per-entry or per-group basis.  It may be easier to place your vSphere entries in a group of their own and then edit the Auto-Type macro for the whole group.  The following will SHIFT-TAB(+{TAB}) back to the IP/name field, insert the URL field, then TAB to username and password fields when you do the Auto-Type.

Custom keystroke sequence: +{TAB}{URL}{TAB}{UserName}{TAB}{Password}{ENTER}

 

This allowed me to not have to manually update the server field in vSphere, but I still had to launch vSphere first.

 

Solution #3:

KeePass allows you to create custom URLs, e.g. "ssh://", "ftp://", "chrome://", etc...  This allows you launch any application with whatever command line you want.  I decided to use this feature to create a "vsphere://" URL for launching vSphere from inside KeePass.  Some searching found the correct command line options to pass server/username/password on the command line to VpxClient.exe (-s SERVER -u USER -p PASS)

 

The process to create the custom URL type inside KeePass 2.x is:

Tools -> Options -> Integration -> "URL Scheme Overrides"

"Add"

Scheme -> vsphere

URL Override -> cmd://"C:\Program Files\VMware\Infrastructure\Virtual Infrastructure Client\Launcher\VpxClient.exe" -s {URL:RMVSCM}" -u {USERNAME} -p {PASSWORD}

 

Note: Since the URL field will now contain "vsphere://", we need to remove it before passing it to VpxClient.  This is what "{URL:RMVSCM}" does.

 

I can now create an entry and set the username/password as expected and set the URL field to something like: "vsphere://10.10.10.10"

Now when I click on the URL field of a vsphere entry, it will launch the vSphere client and login automatically.

 

This does have the minor(?) concern of having the address, username and password visible in the process listing on your windows box.  If you are the only user on your machine this may be acceptable.  If you are concerned that some other user or application's log file may capture a list of running processes that could contain your username/password, then you may want to try the next option, or stick with solution #2.

 

Solution #4:

The command line of VpxClient remains visible in the process listing until you exit out of vSphere.  One way to minimize the exposure is by using a program like KeeRun(included with KeeForm)  This will launch another program, wait for it to launch and then populate the user/password fields and then exit.  The username/password are still visible in the process listing, but only as long as KeeRun is still running.  This should only be for the 5 seconds or so to get to the login dialog on vSphere.

 

To use KeeRun, copy the KeeRun.exe file into the KeePass directory (likely "C:\Program Files\KeePass Password Safe 2").

Then add or modify the new "vsphere://" URL scheme created in Solution #3:

 

Tools -> Options -> Integration -> "URL Scheme Overrides"

"Add" or "Edit" the Custom Override "vsphere" scheme at the bottom of the list

Scheme -> vsphere

URL Override ->

cmd://"{APPDIR}\KeeRun.exe" "C:\Program Files\VMware\Infrastructure\Virtual Infrastructure Client\Launcher\VpxClient.exe -s {URL:RMVSCM}" "VMware vSphere Client" {USERNAME} {PASSWORD} "{_USERNAME_}{TAB}{_PASSWORD_}{ENTER}" "{URL:RMVSCM}"

 

The options to KeeRun will start VpxClient and specify the server.  It will then wait until an application window with the title of "VMware vSphere Client" to be visible.  It will also check to make sure that window contains the server IP/name by checking for visible text that matches the 6th (optional) parameter to KeeRun - "{URL:RMVSCM}".  Once it finds the correct window dialog, it will send the username & password and then KeeRun will exit.

 

 

Hopefully this was helpful to someone.

Brian

Search

Memory utilization 100% with shared pci-device (vgpu, Tesla p40).

February 9, 2018, 6:58 am
$
0
0

Hi,

 

We have recently implemented a couple of ESXi hosts with 2x Nvidia Tesla p40 vgpus.

As you can see in this picture the memory utilization is always set to 100%, but in reality the VM is only using a couple of GBs for the operating system.
I'm currently running ESXi 6.5 (VM version 13), and the VM's are running Windows 10 1709.

 

I've figured if I detach the vGPU (shared pci-device) the problem is "solved".

 

Any suggestions? It might seem like a small problem but the licenseprice of the product is based on this "Utilization"-graph.

Any issues to merge multiple datastores to one?

January 31, 2018, 8:03 pm
$
0
0

We have a lot of NFS datastores, and  trying to reduce the number of them. Particularly, for some datastore containing Oracle/SQL databases, we wanted to split them by putting DB in one datastore, and combine multiple OS portions from different VM's into the other datastores, thus, when we take snapshots for the purpose of backing them up and restoring, we can only take snapshots on  datastores containing OS's, and without the need to  take the snapshot on the datastore containing DB, because DB will be backed up by different DB backup tools. It also means that one VM could be spanned to be more than one datastores, as the result.

 

Are there any issues or concerns can you thin of with this  approach?

vSAN PSOD - emulex NIC ?

February 14, 2018, 8:51 am
$
0
0

Hi,

 

I am reaching out to you guy because I haven't seen any progress with the vmware support investigation. We have the following environment:

        - vSAN ready nodes: DL360 gen9

          - Emulex HP FlexFabric 10Gb 2-port 556FLR-SFP+ Adapter

Repeating issue: PSOD with the message: Unrecoverable error in elxnet atpartners/samples/elxnet/elxnet_main.c:elxnet_getRxPfragInfo - 2668

 

Support suggested driver and firmware upgrade, we did it. Update from esxi 6 U2 to U3, we did it. But still it happens. They haven't seen it before, don't know the root cause. HPE hasn't seen it before, they don't know either.

This happens in different locations, Data center in different towns, Europe and US. What is common: vSAN 6.2, ESXi 6 U2 and U3, the same vSAN ready nodes and the same NIC cards.

 

Has anyone has or heard about something similar?

 

Thanks,

Enter

 

 

ADMX-based settings

May 2, 2017, 2:15 am
$
0
0

Running linked-clone floating pool Windows 10 1607 and no-refresh. Want to get rid of local profiles building up on the vm's at logoff. Always had this setting with Persona Management, now trialing UEM. Using ADMX-based settings template with Remove Local Profile at Logoff. This setting causes Edge, Calc etc  to disappear at next login. Any ideas what to use instead?

Upgrade ESXI 5.0 to 6.5

March 14, 2017, 9:37 am
$
0
0

Hi is it possible to upgrade directly from 5.0 to 6.5? Or, is it better to upgrade to some version in between before going to 6.5?

 

Thank you

Windows Defender in Windows 10

February 14, 2018, 9:01 am
$
0
0

I've noticed that the VMware Optimization Tool templates don't actually turn off the Windows Defender service as part of the templates.  If we are running a different Antivirus solution does anyone know of a reason for this?  Is there some other dependency that requires the service?

Horizon 7.2 Help Desk Issue

February 6, 2018, 12:32 pm
$
0
0

Hi all,

       we are running multiple Horizon Connection Servers through a f5 load balancer and having issues with the helpdesk feature of Horizon Administrator.

 

When trying to authenticate using our production domain through the load balancer it fails to authenticate "Authentication failed. Invalid domain, username, or password. Please try again." - we have tried with other domains in list - same issue

 

If we go directly to each of the connection server addresses it authenticates fine with production domain and the other domains.

 

This only started happening after going from 7.1 to 7.2

 

Has anyone else come across this?

Search

Edge icon blank in Task Bar Win 10 1709

February 14, 2018, 9:08 am
$
0
0

Using UEM 9.3 and Win 10 1709 on Horizon 7.3.2 linked clones no-refresh and first time user logs in the Edge Icon in Task Bar is blank. Clicking the blank area starts Edge and Everything seems fine. After logging out and enter a new machine that the user never been logged on to the same appears, blank Edge Icon. If user log on a machine that previously has been logged on to, the Edge Icon is there.

 

Using Windows 10 start menu init like:

 

IncludeRegistryTrees]

 

HKCU\Software\Microsoft\Windows\CurrentVersion\CloudStore

 

IncludeIndividualRegistryValues]

 

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\SlowContextMenuEntries

 

IncludeFolderTrees]

 

 

<LocalAppData>\microsoft\windows\caches

 

And Edge settings Direct Flex Export when last executable exits and:

 

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

Instant Clone - Issues

January 27, 2018, 1:07 am
$
0
0

During push image , we have noticed the following error several times, Any possible root cause ?? Kindly advise

 

The SAM database on the windows server does not have a computer account for this workstation trust relationship.

The Horizon version was 7.3.2

Instant clone pool has enabled "reuse Pre-existing computer accounts"

Master image is not joined to domain

Windows 10 1703 build

 

Thanks

Bala

Help with handling output for Custom Decision

February 14, 2018, 7:14 am
$
0
0

Hello,

 

Trying to capture a success or fail output message from and "Invoke External Script" workflow and pass it to a custom decision action. I must not be selecting the correct action in the scripting tab? Please see below.

 

 

Please note the error message in red is unrelated to what I'm asking. My issue is that whether or not the output is success or fail, the custom decision always calls the next workflow. It never goes to sleep upon getting a failure output message.

 

Script for custom decision is:

if (output = "success") return true

else return false;

 

Can someone help me correct this? Thank You

Windows 10 IE favorite icons blank

June 19, 2017, 12:40 am
$
0
0

Hi,

When i run a Windows 10 non-persistent vm with UEM activated i get blank Icons on IE 11 after saving them as favorites. I save them and it looks ok but after log out and back in and the Icons is back to the standard blank with an "e" on it. When i look at the logs i see some errors claiming user rights on the files that get saved. Nothing else in the logs tells me there are user rights problems.

Anyone seen this?

Annoying wait time and ERROR when starting Edge

July 16, 2017, 10:57 am
$
0
0

Hi!

Have a problem with 9.2 Edge ini. When entering a vm that i already has been logged in to i get wait time and errors in log like this:

 

2017-07-16 19:30:43.547 [INFO ] Performing DirectFlex import for config file '\\masterdatalager.master.local\UEMconfig\general\Windows Settings\Edge.INI' [IFP#fe5b876f-9ed99>>]

2017-07-16 19:30:43.547 [DEBUG]    User: master\pewe, Computer: VM-W10X64STD-05, OS: x64-win10 (Version 1607, BuildNumber 14393.1480, SuiteMask 100, ProductType 1/4, Lang 0409, IE 11.1480.14393.0, App-V 5.2.0.0, VMware VDM 7.1.0.5170901, UEM 9.2.0.701, ProcInfo 1/2/2/2, UTC+02:00D), PTS: 512/5264/1C

2017-07-16 19:30:43.547 [DEBUG]    Using profile archive '\\masterdatalager.master.local\UEMprofiles\pewe\archives\Windows Settings\Edge.zip'

2017-07-16 19:30:43.547 [DEBUG]    Triggered by 'C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe'

2017-07-16 19:30:43.550 [DEBUG] Found flag file for '\\masterdatalager.master.local\UEMconfig\general\Windows Settings\Edge.INI'.

2017-07-16 19:30:43.559 [INFO ] Importing profile archive 'Edge.zip' (\\masterdatalager.master.local\UEMprofiles\pewe\archives\Windows Settings\Edge.zip)

2017-07-16 19:30:43.575 [DEBUG] ImportRegistry::Import: Calling '"C:\Windows\REGEDIT.EXE" /S "C:\Users\pewe\AppData\Local\Temp\FLX7776.tmp"' (RPAL: l=0 (D/P), r=0)

2017-07-16 19:30:56.323 [ERROR] ImportFiles::ImportFile: Access denied on 'LocalAppData/Packages/Microsoft.MicrosoftEdge_8wekyb3d8bbwe/AC/MicrosoftEdge/User/Default/DataStore/Data/nouser1/120712-0049/Favorites/16e930b2d0b35b_Icon.ico'

2017-07-16 19:30:56.325 [ERROR] ImportFiles::ImportFile: Access denied on 'LocalAppData/Packages/Microsoft.MicrosoftEdge_8wekyb3d8bbwe/AC/MicrosoftEdge/User/Default/DataStore/Data/nouser1/120712-0049/Favorites/4b02551de5dc15_Icon.ico'

2017-07-16 19:30:56.328 [ERROR] ImportFiles::ImportFile: Access denied on 'LocalAppData/Packages/Microsoft.MicrosoftEdge_8wekyb3d8bbwe/AC/MicrosoftEdge/User/Default/DataStore/Data/nouser1/120712-0049/Favorites/864b8f8ccf5e50_Icon.ico'

2017-07-16 19:30:56.608 [DEBUG] Read 1451 entries from profile archive (size: 30980735; compressed: 9582813)

2017-07-16 19:30:56.612 [INFO ] Completed DirectFlex import (13071 ms) [<<IFP#fe5b876f-9ed99]

 

On a vm where my profile is not residing there is no problem.

I let it trig on DirectFlex and have this setting as only from default:

 

[Metadata]
ProcessIfExists=
DirectFlexEnabled
DirectFlexPath=C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
DirectFlexPath=C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
OnlyExportAtLogoff=0
ProcessCriteria=<pc ll='0' t='3' f='0' />

[BinarySettings]
7VS8gJSU17jVuNe55YDkg+a5i7uKvY2/jr+xsfyV9oTrmPeR5cWA5IPm5+fa2uaqxabHq+qa6q7Pu9rkuOiJ6oHgh+KRzYDpiviX5Ivtmbf6k/CC7Z7xl+OmwqXAn6fQtd6nxfaSqsiq3bikpJjUu9i51ZTklNCxxaSaxovigfOc74Dmktez1LGxsbS0PT11Pn0odCdoLnotbD57J2QIaRppDH8jbwBjAm5OHXgMeBF/GGs3ZAttGW4PfRhECWADcR5tAmQQTBtyHHgXYBNPDHkLeRxyBlA1RzRdMlwAQTFBAm0DdxZ/EXQGWgl9EmABZgNfMls4SiVWOV8rBWgBYhB/DGMFcRRwF3ItFWIHbBV3RCAYehhvCi8vZyxvOmY1ejxoP34saTV4EXIAbxxzFWE9cBl6CGcUex1pLEgvSkpKSkpKSu4av8o=

[Immidio Flex]
This file was created using VMware UEM Management Console version 9.2.0.701.
Use only with VMware UEM.

Data exposure in logs, crash dumps, coredump

February 12, 2018, 10:09 am
$
0
0

I could not answer this question.

 

Is there a condition where VMware logs, crash dumps, coredumps,...  may contain sensitive or protected data?   

 

The concern is that Protected Health Information  (ePHI  HIPAA); research data or any data from the VM would be in the any diagnostic information sent to VM support.

 

Thanks

vRA 7.3 - bulk import - bad icons

February 9, 2018, 6:30 am
$
0
0

Hi all, I'm having a hard time with the bulk import tool of vRealize Automation 7.3

 

After I've done all the steps described here:

Import a Virtual Machine to a vRealize Automation Environment

 

Everything seems to be OK but the Virtual Machine icon is wrong. It shows a "generic component" icon instead the vSphere icon:

The first (and second) machine where imported with the CSV file. The last one was deployed using the vRA console. The first and last VM are associated to the same blueprint.

 

Any ideas how to fix this?

Thanks a lot.

Search

Order Series in a Stacked Area Chart?

February 14, 2018, 9:38 am
$
0
0

For a Wavefront Stacked Area Chart, I would like to specify a fixed order of the series. i.e. so a particular series always shows up on top vs. on bottom. Is this possible?

 

Currently, the ordering appears semi-random. Or at least I cannot discern a clear pattern

vCenter HA Network

February 14, 2018, 9:17 am
$
0
0

Hi,

 

I am in the midst of switching everything over to distributed switches, however before I do this I would like to make sure my vCenter is fully redundant.  Looking at the prerequisites it looks like I need an entirely separate network for this.  A few questions come to mind as it seems like a waste of physical ports to me.  I have a smaller environment of 4 hosts , running 100 Guests.

 

Can this network be shared with anything else?

 

I am thinking as vCenter is going to be a major part of my networking once I am moved over, and that I should probably set up lag groups on each host for the vCenter HA network.

 

Please let me know if you have any other things I should take into consideration.

 

Thank you for your advice.

What OS do you run natively on your primary work machine?

June 6, 2017, 11:46 am

vSphere 6.5 PSC Load Balancing

February 14, 2018, 3:16 am
$
0
0

Looking at the documentation only 3 load balance appliances are documented NSX, F5 and NetScaler.

 

My customer has different LB's and I would like to know the potential impact on support if we utilize their existing LB's

Cannot start the VMware USB arbitration service

February 14, 2018, 9:55 am
$
0
0

We have a PC running VMware Workstation 12.5.2 on Windows 10 PRO 64bit, and we are getting the following error:

Windows could not start the VMware USB Arbitration Service service on Local Computer - Error 1: Incorrect Function.

 

I have been searching, but I am not finding anything related to that error in relation to VMware.

 

Any suggestions?

Viewing all 179681 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>