We at comdivision like to share some insights with you. Discover our blog posts on a variety of technical and non-technical topics.
VMware has released on 28-March 2019 vCloud Director 220.127.116.11 which includes a highly critical security patch which should be installed as soon as possible by all service providers running vCloud Director 9.5.
Security issue at hand:
VMware vCloud Director for Service Providers update resolves a Remote Session Hijack vulnerability in the Tenant and Provider Portals. Successful exploitation of this issue may allow a malicious actor to access the Tenant or Provider Portals by impersonating a currently logged in session.
Personal note / comment (I started to add this as I get often asked to evaluate the "real criticality/risk factor" by our strategic accounts):
This is a very critical issue which could directly affect customer/tenant data security, therefore I advice to give the test and upgrade procedure highest priority. Ensure this get's validated on test infrastructure before applied to production systems.
If you are still using PostgreSQL 9.x with vCloud Director you will receive a big stop sign if you try to upgrade to vCloud Director 9.5, as this version requires PostgreSQL to be on v10 as a minimum. In this blog post I will walk you step by step on how to upgrade PostgreSQL on a CentOS system, as well as how to apply the vCloud Director 9.5 upgrade. I am pretty sure the process on RedHat is similar, but i had no system to validate at hand.Read More
Me writing a blogpost about Horizon View, never thought that this is going to happen, but never say never.
Like many others, I migrated from Windows to Mac and using Mac OS natively. Some time ago we started using remote apps within the Horizon View Client, which is pretty cool. Instead of connecting to my View Desktop I can use an application direct on my Mac.Read More
Lately I had the issue that I needed to create custom XML objects based on variables. In first place it sounds simple, but in the end, there are a couple of different methods doing this. This article will discuss these options.
The first method is a simple string, but if the object gets a bit larger, this is not very useful.Read More
Two weeks ago, I had a problem connecting VMware vCloud Director to vRealize Orchestrator using Rabbit MQ as a message bus between those systems. The base configuration of Rabbit MQ was not a big deal, even clustering the message bus system for high availability, adding an exchange, queues, connecting vCD and vRO, everything was easy and straight forward, BUT: I didn’t get any messages into the right queues. This was my starting point.
As most of you guys know, I am a big fan of vRO (vRealize Orchestrator). I didn’t do any of the configuration in Rabbit MQ using the management interface, I configured everything using vRO but the graphical UI is very useful to verify what the workflows did.
After the installation of Rabbit MQ, I used the documentation (official RMQ documentation: https://www.rabbitmq.com/documentation.html) and some blogs I found, I needed to configure RMQ, but how? Now vRO comes into play, because it is shipped with a preinstalled AMQP plugin, containing all needed workflows to configure the message broker.
Today VMware released the first minor release not patch of VMware Cloud Provider Pod. After the initial launch of Version 1.0 in 2018 and a patch release 1.0.1 in November this is the first feature release. This release features massive list of product updates, improvements on the Designer, the Documents, Fibre-Channel support and also a complete rewritten network design with higher flexibility.Read More
A blog to share my path from total ignorance to becoming... what's the word? 'enlighted'?Read More
As I do quite a bit of lab development and support I see often people lock themselves out of the ESXi web based host client. Keep in mind this only locks you out from ssh and the web console. Password lockout is NOT active on the console/DCUI. Below is how you reset the counter and regain access.Read More
With VMware Cloud Provider Pod having it's first public appearance during the VMworld Session of Wade Holmes (VMware) and myself ( https://blog.comdivision.com/blog/2018/08/vmworld-session-introducing-vmware-cloud-provider-pod-hyp1499bu). First GA release followed on 18-October and now we have the first patch release on 20-November 2018. This release contains primarily new product versions of many of the integrated solutions, as well as a lot of bug fixes and fine tuning.Read More