In the May ’23 release of VMware Aria for Operations Logs SaaS added support for Logs from Google Cloud VMware Engine (GCVE)
These logs include all the SDDC logs to support compliance and troubleshooting use cases. With the addition of support for GCVE logs, VMware Aria Operations for Logs offers a unified view of logs from all major VMware Clouds in a single place.
In this blog, I describe the procedure to forward logs from GCVE SDDC
Following are the pre-requisites for forwarding logs from GCVE SDDC to vRealize Log Insight Cloud
- Verify that outgoing HTTPS traffic is allowed for the Cloud Proxy with access through the firewall to:
- Deploy & Configure Cloud Proxy virtual machine with a hostname that meets the following criteria:
- The hostname is valid.
- The hostname can be resolved through DNS.
- The hostname is reachable from the ESXi host with GCVE SDDC
- Access to Google Cloud console
- To elevate VMware Engine Privileges https://cloud.google.com/vmware-engine/docs/private-clouds/howto-elevate-privilege
- Fetch [email protected] credentials
The configuration instructions assume that users have all the required permission to perform the following tasks:
- Elevate VMware Engine Privileges
- Prepare Solution User
- Deploy a Cloud Proxy,
- Integrate vSphere with vRealize Log Insight Cloud
- Create a Node Profile with NSX-T
Reference Documentation https://cloud.google.com/vmware-engine/docs/private-clouds/howto-elevate-privilege
Follow these steps to deploy a Cloud Proxy for vRealize Log Insight Cloud:
Navigate to ‘Configuration -> Cloud Proxies’ in vRealize Log Insight Cloud.
Click ‘Add Proxy -> New’, The Install Cloud Proxy dialog box appears. Click Download OVA for downloading the OVA to deploy the Cloud Proxy. Leave this dialog box open, as you will need it later.
Navigate to your VMware vSphere Web Client data center of Oracle Cloud and click the name of your vCenter cluster. In the drop-down menu, select Deploy OVF Template.
In the Deploy OVF Template form, click Select template, then Local File. Paste the path to the OVA Cloud Proxy file you downloaded. Click Next.
Enter the required details in the wizard, including the One Time Key (OTK) listed in the Install Cloud Proxy dialog box in vRealize Log Insight Cloud.
Once deployed, you will need to Power ON the VM.
Once the VM is Powered On, please wait for a couple of minutes. You can navigate back to the Cloud Proxy Page and validate once it shows up with green tick mark, which means it is Ready.
Follow these steps to integrate vRealize Log Insight Cloud with vSphere to forward logs from vCenter and ESXi hosts:
Navigate to ‘Configuration -> vSphere Integration’ in vRealize Log Insight Cloud.
Click Add vCenter Server.
Enter the required details in the dialog box, select the Cloud Proxy that is deployed in the Deploy a Cloud Proxy for vRealize Log Insight Cloud section and click the required logs checkbox.
Note – Please use solution user credentials as configured above
Click Test Connection and Save
Follow these steps to configure a node profile with NSX-T to forward logs from NSX-T components such as Manager and Controllers:
Login to NSX Manager with admin privileges.
Navigate to ‘System -> Fabric -> Profiles -> Node Profiles -> All NSX Nodes’ in the Name column.
Click Edit to configure the time zone and NTP servers.
In the Syslog Servers section, click Add to add a Syslog server and enter the required details in the dialog box.
Add an SNMPv2c community and an SNMPv3 user respectively under v2c, v3 in the SNMP Polling section.
Add an SNMPv2c and an SNMPv3 trap configuration respectively under v2c, v3 in the SNMP Traps section.
Once the NSX-T setup is done, logs will start flowing into vRealize Log Insight Cloud.
Search for logs in the vRealize Log Insight Cloud Explore Logs page