VMware Cloud Foundation 4.5

5.2 5.1 5.0 4.5
Deutsch Français Italiano 日本語 English

Post-Recovery Tasks

Perform the following tasks after the workload domain is recovered.

Synchronize the SDDC Manager Service Accounts on the ESXi Host

To ensure ESXi host service accounts are in sync with the SDDC Manager inventory, you must manually set a new password on each ESXi host and perform a password remediate operation in SDDC Manager.

UI Procedure

  1. If the service account does not exist, create a new service account on the ESXi host.
    1. Log into the first ESXi host in the cluster using the host client as
      root
      .
    2. Navigate to
      Manage
      Security & users
      Users
      , and click
      Add user
      .
    3. Enter the SDDC Manager service user name and password, and click
      Add
      .
      The service account user name format is svc-vcf-
      esxi_hostname
      .
  2. If the service account exists, set a new password on the ESXi host.
    1. as the root user.
    2. In the host client on the first ESXI host, navigate to
      Manage
      Security & users
      Users
      .
    3. Select the SDDC Manager service account svc-vcf-
      esxi_hostname
       and click
      Edit user
      .
    4. Set a new password and click
      Save
      .
  3. Perform password remediation in SDDC Manager.
    1. Log in to SDDC Manager.
    2. Navigate to
      Security
      Password Management
      ESXi
      .
    3. Locate the service account from Step 1, click the vertical ellipsis, and click
      Remediate
      .
    4. Enter the password used in Step 1 and click
      Remediate
      .
      Wait for the password remediation to complete.
  4. Repeat steps for all hosts in the workload domain.

PowerShell Procedure

  1. Start PowerShell.
  2. Replace the values in the sample code with your values and run the commands in the PowerShell console.
    $restoredVcenterFqdn = "sfo-m01-vc01.sfo.rainpole.io"
$restoredVcenterAdmin = "administrator@vsphere.local"
$restoredVcenterAdminPassword = "VMw@re1!"
$clusterName = "sfo-m01-cl01"
$svcAccountPassword = "VMw@re123!"
$sddcManagerFqdn = "sfo-vcf01.sfo.rainpole.io"
$sddcManagerAdmin = "administrator@vsphere.local"
$sddcManagerAdminPassword = "VMw@re1!"
  3. Perform the configuration by running the command in the PowerShell console.
    Resolve-PhysicalHostServiceAccounts -vCenterFQDN $restoredVcenterFqdn -vCenterAdmin $restoredVcenterAdmin -vCenterAdminPassword $restoredVcenterAdminPassword -clusterName $clusterName -svcAccountPassword $svcAccountPassword -sddcManagerFqdn $sddcManagerFqdn -sddcManagerAdmin $sddcManagerAdmin -sddcManagerAdminPassword $sddcManagerAdminPassword

Update the Backup Configuration in SDDC Manager

If the SFTP backup target for SDDC Manager and NSX has changed, you must update the SSH key for the backup configuration in SDDC Manager.
  1. Log into the SDDC Manager UI.
  2. Navigate to
    Administration
    Backup
  3. On the
    Site Settings
     tab, click
    Edit
    .
  4. Enter the new backup target details and click
    Save
    .

Update the Backup Configuration for vCenter Server

If the backup target for vCenter Server has changed, you must update the backup configuration for each vCenter Server instance.
  1. Log into the appliance management interface of vCenter Server at
    https://<vcenter_fqdn:5480>
    .
  2. Navigate to
    Backup
     and click
    Edit
    .
  3. Enter the new backup target details and click
    Save
    .

Restore Cluster Settings to Recovered vSphere Cluster

After all workloads are recovered on a workload domain vSphere cluster, you restore the cluster settings for virtual machine overrides, locations, and vSphere DRS rules and groups.
  1. Start PowerShell.
  2. Replace the values in the sample code with your values and run the commands in the PowerShell console.
    The values in this example are for the management domain. Replace with the values for the specific workload domain you are recovering.
    $restoredVcenterFqdn = "sfo-m01-vc01.sfo.rainpole.io"
$restoredVcenterAdmin = "administrator@vsphere.local"
$restoredVcenterAdminPassword = "VMw@re1!"
$clusterName = "sfo-m01-cl01"
$clusterVMOverridesJsonFile = ".\sfo-m01-cl01-vmOverrides.json"
$clusterVMLocationsJsonFile = ".\sfo-m01-cl01-vmLocations.json"
$clusterDRSConfigurationJsonFile = ".\sfo-m01-cl01-drsConfiguration.json"
$clusterVMTagsJsonFile = ".\sfo-m01-cl01-vmTags.json"
  3. Perform the configuration by running the command in the PowerShell console.
     
    Connect-VIServer -server $restoredVcenterFqdn -user $restoredVcenterAdmin -password $restoredVcenterAdminPassword
Restore-ClusterVMOverrides -clusterName $clusterName -jsonFile $clusterVMOverridesJsonFile
Restore-ClusterVMLocations -clusterName $clusterName -jsonFile $clusterVMLocationsJsonFile
Restore-ClusterDRSGroupsAndRules -clusterName $clusterName -jsonFile $clusterDRSConfigurationJsonFile
Restore-ClusterVMTags -clusterName $clusterName -jsonFile $clusterVMTagsJsonFile
Disconnect-VIServer * -confirm:$false
  4. Repeat the procedure for all clusters in the vCenter Server instance.

Content feedback and comments