Lab 8: VMware vShield Manger Appliance Initial Setup

Lab 8: VMware vShield Manger Appliance Initial Setup

Okay. I now have powered ON the vShield Manger Appliance and I strangely see the prompt which says Manager Login:

For the VMware vShield Manger, the initial default “username and password” are:

username :admin 

password : default

I used the username “admin” and password “default” to login to configure the vShield Manger.

As soon as I type I see the screen, now at the Manger prompt type “enable” which take you to the Enable mode and when prompted type “default” as your password.

Now at manager prompt type “setup” for configuring the vshield manager,

manager# setup

When I type “setup” and hit enter it asks me about the IP address that I will be using it to manage this vShield  Manager. I provided the IP address, Subnet Mask, Gateway, Primary/Secondary DNS, DNS domain Name and saved the configuration. It takes a while to configure these and have to logout and login back to confirm the details.

Here are the list of Command that I see in the vShield Manger which comes handy when you are troubleshooting issue with the vShield Manager:

Type ? at the manager prompt to see the list of available commands incase if you need to troubleshoot anything from the vshieldmanager console.

Now the Initial Configuration at the vShield Manager Appliance end is finished.

I just took the RDP to my vCenter Server where I have opened the internet explorer and pointed the same to my vSheild Manager appliance IP. Here comes the screen. You need to have the latest version Flash player installed in your machine and enabled the Javascript in your Internet explorer.

I logged into the VMware vShield Manger consile using “admin” and “default” as my username and password. After I login I just filled up my vCenter Server Information in the Settings & Reports Menu and I also registered the vSheild Manager to my vCenter Server and have also registered my DNS Servers in my vSphere environment .

You go through the Date/Time tab to configure the Data/time and NTP Server and Time Zone.

Click on Support Link to download technical support logs for the vShield

 You can back up vShield Manager data at any time by performing an on-demand backup. At the Settings&Reports click on the Backups which presents you the following screen to configure the backup servers.

You can do the following things about the backups.

  • Schedule a Backup of vShield Manager Data
  • Restore a Backup of a vShield Manager Data.

 Status tab is about the utilization of the CPU/Memory/Storage.

The next is the SSL Certificate, if you wanted to  generate a global certificate click on SSL Certificate and fill the details and click on Generate

Now click on the Networking, here comes the network configuration window as listed below:

In the general Settings, click on the edit settings. here you must specify a segment ID pool to isolate your network traffic, and a multicast address range to help in spreading traffic across your network to avoid overloading a single multicast address. Type a range for segment IDs. For example, 500-520. Type an address range. For example, and click on OK.

You can add a Cisco switch to vShield Manager and manage its implementation, The N1K switch must have been installed on vCenter Server.

Type the API interface with which the switch can communicate in the following format:

https://IP_of_VSM/n1k/services/NSM and Type your N1K user name and password. The switch is added to the switch provider table.

SpoofGuard allows you to authorize the IP addresses reported by VMware Tools, and alter them if necessary to prevent spoofing. SpoofGuard inherently trusts the MAC addresses of virtual machines collected from the VMX files and vSphere SDK. Operating separately from the App Firewall rules, you can use SpoofGuard to block traffic determined to be spoofed.

You can enable/disable the spoofguard as shown in the below screen.

Here comes to the end of the Post where I talked about the initial configuration of the VMware vShield Manager and have also discussed about the settings & Reports.

In an another post will talk about the rest of the options.

I thank everyone for your time and happy reading. 

Leave a Reply