Cisco UCS Director Administration Guide, Release 6.0 First Published: 2016-09-19
Total Page:16
File Type:pdf, Size:1020Kb
Cisco UCS Director Administration Guide, Release 6.0 First Published: 2016-09-19 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 © 2016 Cisco Systems, Inc. All rights reserved. CONTENTS Preface Preface xvii Audience xvii Conventions xvii Documentation Feedback xix Obtaining Documentation and Submitting a Service Request xix CHAPTER 1 New and Changed Information for this Release 1 New and Changed Information for this Release 1 CHAPTER 2 Overview 3 Cisco UCS Director 3 Features and Benefits 4 Physical and Virtual Management Features 6 Model-Based Orchestration 7 Guided Setup Wizards in Cisco UCS Director 7 Creating a Wizard from a Workflow 7 Common User Interface Options 8 Setting up Non-Secure Connection to the Cisco UCS Director User Interface 10 Initial Login 11 Recommended Order of System Setup 12 Configuring the Host Name for Cisco UCS Director 14 Working with Ciphers 14 Editing Cipher Usage 14 Installing the Latest Java Cryptograpy Extension (JCE) Policy Files 15 CHAPTER 3 Managing Users and Groups 17 User Roles 17 Cisco UCS Director Administration Guide, Release 6.0 iii Contents Adding a User Role 19 Adding Users 20 Managing User Types 22 Default User Permissions 22 User Roles and Permissions 22 Permissions for Server Management 25 All Policy Admin 26 Billing Admin 27 Computing Admin 29 Group Admin 31 IS Admin 33 Network Admin 35 Operator 37 Service End User 38 Storage Admin 40 Viewing User Role Information for Users 42 Managing User Account Status 43 Unassigning Resources From a User 43 Disabling a User Account in Cisco UCS Director 44 Disabling User Accounts within a Group 44 MSP Administrator Role 45 Managing Groups 46 Creating a User Group 46 Creating an MSP Organization 47 Creating a Customer Organization 48 Password Policy 50 Creating a Password Policy 50 Group Budget Policy 51 Viewing and Editing a Group Budget Policy 51 Resource Limits 51 Viewing Resource Limits 52 Editing Resource Limits 53 Configuring the Administration Profile 55 Creating the Admin Profile 55 Changing the Admin Password 56 Cisco UCS Director Administration Guide, Release 6.0 iv Contents Viewing Current Online Users 56 Managing User Access Profiles 57 Multi-Role Access Profiles 57 Creating a User Access Profile 57 Logging in to a Profile 58 Default Profile 59 Changing a Default Profile 59 Authentication and LDAP Integration 59 Configuring Authentication Preferences 60 LDAP Integration 60 LDAP Integration Rules and Limitations 61 Managing LDAP Integration 63 Configuring LDAP Servers 64 Testing LDAP Server Connectivity 68 Viewing LDAP Server Summary Information 68 Adding LDAP Search BaseDN Entries 69 Executing the LDAP Synchronization System Task 69 Modifying LDAP Server Details 69 Viewing Group Membership Information 72 Deleting LDAP Server Information 72 Single Sign On 73 Mapping the Cisco UCS Director Appliance at the OneLogin Site 73 Generating a OneLogin Certificate 75 Enabling a Single Sign-On 75 Branding for Customer Organizations 76 Branding User Groups 77 Branding Customer Organizations 78 Login Page Branding 79 Configuring a Custom Domain Logo 79 CHAPTER 4 Setting Up the End User Portal 81 End User Portal 81 Summary of Tasks to Set Up the End User Portal 81 Setting Up User Accounts for the End User Portal 82 Creating a User Group 82 Cisco UCS Director Administration Guide, Release 6.0 v Contents Adding Users 83 Setting Permissions for the End User Portal 85 Permissions Required for Approvals 85 Permissions Required for Catalogs 86 Permissions Required for Budget Entries 86 Physical Resources 87 Permissions Required for CloudSense Reports 87 Permissions Required for Rack Servers 87 Permissions Required for Servers 87 Permissions Required for Service Profiles 88 Permissions Required for SnapMirrors 88 Permissions Required for Storage Virtual Machines 88 Permissions Required for vFilers 88 Permissions Required for SVM Initiator Groups 88 Permissions Required for SVM LUNs 89 Permissions Required for SVM CIFS Shares 89 Permissions Required for SVM Export Policies 89 Permissions Required for SVM Export Rules 90 Permissions Required for SVM Initiators 90 Permissions Required for SVM Port Sets 90 Permissions Required for SVM SIS Policies 90 Permissions Required for SVM Snapshot Policies 91 Permissions Required for SVM WWPN Aliases 91 Permissions Required for SVM Volume Snapshots 91 Permissions Required for SVM Volumes 91 Permissions Required for vFiler Volumes 92 Services 93 Permissions Required for Payment Information 93 Permissions Required for Service Requests 93 Permissions Required for User OVF Management 94 Virtual Resources 94 Permissions Required for Application Containers 94 Permissions Required for VMs 95 Setting Up the User Interface of the End User Portal 96 Configuring Dashlets 96 Cisco UCS Director Administration Guide, Release 6.0 vi Contents Changing Colors of Dashlet Reports 97 Selecting Catalogs for End User Portal 98 CHAPTER 5 Managing System Administration Settings 99 Setting up the Outgoing Mail Server 100 Working with Email Templates 100 Adding an Email Template 101 Previewing an Email Template 102 Setting a Default Email Template 102 Configuring System Parameters (Optional) 103 Configuring System Parameters 103 Configuring Infrastructure System Parameters (Optional) 104 Updating the License 104 Verifying License Utilization 105 Viewing License Utilization History 105 Viewing Resource Usage Data 106 Application Categories 106 Adding Application Categories 106 Customizing the Portal 108 Customizing the Login Page and Background Images 108 Customizing the Application Logo 109 Customizing Favicons 110 Customizing Application Header 110 Customizing Date Display 112 Customizing the Color Theme 112 Customizing Logout Redirect 112 Customizing Reports 112 Enabling Advanced Controls 113 Enabling the Service Provider Feature 114 User Menus 115 Setting User Menus 115 Setting User Permissions 116 System Tasks 116 Creating a Node Pool 117 Creating a System Task Policy 117 Cisco UCS Director Administration Guide, Release 6.0 vii Contents Assigning a Node Pool to a System Task Policy 118 Creating a Service Node 118 Assigning a System Policy to a System Task 119 Executing System Tasks 119 Disabling or Enabling a System Task 120 Managing Icons 120 Adding an Icon 121 Editing an Icon 122 Deleting an Icon 122 Previewing an Icon 122 Tag Library 123 Creating a Tag 123 Support Information 124 Viewing System Information 125 Showing Logs 126 Downloading Logs 126 Starting the Debug Log 127 Generating API Logs 127 Database Audit Logging 127 Enabling Audit Logging 128 CHAPTER 6 Managing Integration Settings 129 Configuration Management Database Integration 129 Setting Up CMBD Integration 129 Metering Data Export 130 Setting Up Metering Data Export 130 Change Records 131 Viewing Change Records 131 System Logs 131 Setting up System Logs 131 Storage and OVF Upload 132 Multiple Language Support 132 Choosing a Language for Cisco UCS Director 133 Setting a Locale for the User Interface 133 Cisco UCS Director Administration Guide, Release 6.0 viii Contents CHAPTER 7 Managing a Physical Infrastructure 135 About Managing a Physical Infrastructure 135 Adding a Site 135 Adding a Pod 136 Adding a Physical Account 138 Adding a Multi-Domain Manager Account 140 Adding a Network Element 141 Enabling DHCP Logging 142 Testing Connectivity 143 Testing Connectivity of Managed Network Elements 143 Testing the Connection to a Physical Account 143 Enabling Device Discovery 144 CHAPTER 8 Managing a Virtual Infrastructure 145 About Managing VMware 145 Creating a Cloud 146 Downloading the PowerShell Agent Installer 149 Creating a PowerShell Agent 149 Verifying Cloud Discovery and Connectivity 150 Testing the Connection 150 Viewing vCenter Plug-ins 150 Provisioning Virtual Machines in Cisco UCS Director 151 CHAPTER 9 Managing Policies 153 Policies 153 Computing Policies 154 Creating a Computing Policy 154 Configuring a Bare Metal Server Provisioning Policy 156 Data Collection Policy 158 Configuring a Data Collection Policy for a Virtual Account 159 Associating the Data Collection Policy for a Virtual Account 160 About Group Share Policy 160 Creating a Group Share Policy 160 Storage Policies 161 Cisco UCS Director Administration Guide, Release 6.0 ix Contents Storage Policies for Multiple VM Disks 161 Adding and Configuring a Storage Policy 162 Virtual Storage Catalogs 167 Configuring a Virtual Storage Catalog 167 Network Policies 168 Adding a Static IP Pool Policy 168 Configuring a IP Subnet Pool Policy 170 Adding a Network Policy 171 Networking Provisioning Policies 174 Configuring a Network Provisioning Policy 174 VLAN Pool Policies 175 Configuring a VLAN Pool Policy 176 System Policies 176 Configuring a System Policy 176 OS Licenses 182 Adding an OS License 183 End User Self-Service Policy 183 Creating an End User Policy 184 Configuring a VM Management Policy 185 CHAPTER 10 Managing Virtual Data Centers 189 Virtual Data Centers 189 VDC Actions 190 Adding a Virtual Data Center 190 Viewing a Virtual Data Center 193 Managing Application Categories in a Virtual Data Centers 193 Assigning an Application Category to Multiple VDCs 193 Virtual Data Center Service Profiles 194 Adding a Virtual Data Center Service Profile 195 CHAPTER 11 Managing Catalogs 199 About Managing Catalogs 199 Publishing a Catalog 200 About Publishing Advanced Catalogs 206 Publishing Advanced Catalogs 207 Cisco UCS Director Administration Guide, Release 6.0 x Contents Creating a Bare