VMware Cloud Director extension for Data Solutions 1.6

1.6 1.5 1.4

Before you begin

Before you install and configure
VMware Cloud Director extension for Data Solutions
, verify that you are familiar with the supported product versions and that you have all the necessary privileges to complete specific operations.

Interoperability information

The interoperability information defines the qualified products and software versions you can use with
VMware Cloud Director extension for Data Solutions
.

Data solutions support

Solution
Kubernetes
 Component
VMware Cloud Director extension for Data Solutions
 1.4
VMware Cloud Director extension for Data Solutions
 1.5
VMware Cloud Director extension for Data Solutions
 1.6
Tanzu RabbitMQ
Tanzu RabbitMQ
 for
Kubernetes
1.4, 1.5
1.4, 1.5
1.4, 1.5
Tanzu MySQL
Tanzu for MySQL for
Kubernetes
1.9, 1.10
1.9, 1.10
1.9, 1.10
Tanzu Postgres
Tanzu for Postgres for
Kubernetes
2.2, 2.3
2.2, 2.3
3.0
MongoDB Enterprise
MongoDB Enterprise
 for
Kubernetes
1.23, 1.24
1.23, 1.24
1.23, 1.24
MongoDB Community
MongoDB Community
 for
Kubernetes
0.9.0
0.9.0
0.9.0
Confluent Platform
Confluent Platform
 for
Kubernetes
2.7.3 with Helm Chart version 0.824.40
2.7.3 with Helm Chart version 0.824.40
2.7.3 with Helm Chart version 0.824.40
VMware Data Services Manager MySQL
Not supported
2.1
2.2
VMware Data Services Manager Postgres
Not supported
2.1
2.2

External Components

If you want to use a load balancer with TLS for
Tanzu RabbitMQ
, you need
vSphere Cloud Provider Interface
 version 1.3.0 or later. You can configure it in
VMware Cloud Director Container Service Extension
.
Component
VMware Cloud Director extension for Data Solutions
VMware Cloud Director Container Service Extension
4.2.3
Kubernetes
1.27 and later
VMware Tanzu Kubernetes Grid
 Multi-Cloud
2.4.0, 2.5.X
For more information on interoperability, see the VMware Product Interoperability Matrix.

Access control and user roles

Ensure that you are familiar with the various user roles in
VMware Cloud Director extension for Data Solutions
 and their respective rights.
Provider administrators install the
VMware Cloud Director extension for Data Solutions
 to
VMware Cloud Director
 and perform various provider operations within the extension.
Tenant administrators can view all the data within their organization. They might have the rights to provision
Kubernetes
 clusters and to create data solution instances.

What roles do you need for
VMware Cloud Director extension for Data Solutions
?

You must create the following roles:
  • Tenant
    VMware Cloud Director extension for Data Solutions
     operator.
    You can clone a role from the global
    Kubernetes Cluster Author
     and include the
    Edit VMWARE:CAPVCDCLUSTER
     right. The specific user must be given
    ReadWrite
     right in the access control list of the cluster Runtime Defined Entity (RDE) instance. You must reassign the cluster owner to the new role before installing the
    Data Solutions operator
     to the
    Tanzu Kubernetes Grid
     multi-cloud cluster.
    This role is responsible for installing the
    VMware Cloud Director Data Solutions operator
     to
    Tanzu Kubernetes Grid
     multi-cloud. In addition to the required rights for this role, the tenant operators must also have edit right on specific
    Tanzu Kubernetes Grid
     multi-cloud clusters.
  • Tenant
    VMware Cloud Director extension for Data Solutions
     user
    The users must be given the role or the equivalent rights to create data instances.
    The users in this role perform day-to-day operations on the data solution instance management, for example, creation, update, and deletion.
    After upgrading
    VMware Cloud Director extension for Data Solutions
     to version 1.6 you must manually update the
    Tenant VMware Cloud Director extension for Data Solutions operator
     and
    Tenant VMware Cloud Director extension for Data Solutions user
     roles with the
    VMware Cloud Director extension for Data Solutions
     1.6 rights.

User roles and rights reference

VMware Cloud Director extension for Data Solutions
 role
Description
VMware Cloud Director
 role
Minimal
VMware Cloud Director
 roles and rights
Provider Administrator
You need this role to:
  • Install and onboard
    VMware Cloud Director extension for Data Solutions
    .
  • Publish
    VMware Cloud Director extension for Data Solutions
     to tenant organizations.
  • Manage
    VMware Data Services Manager
     integration.
  • Manage container registries.
  • Manage solution templates.
  • View
    VMware Cloud Director extension for Data Solutions
     usage metrics.
System Administrator or a custom role
All rights that are defined by the built-in
VMware Cloud Director
 role.
If you choose to create custom role for
VMware Cloud Director extension for Data Solutions
 management in the Provider Portal, you need the following minimal
VMware Cloud Director
 rights:
Minimal
VMware Cloud Director
 rights (View)
Minimal
VMware Cloud Director
 rights (Manage)
Built-in
  • Administrator View
  • View Users and Groups
  • View Tenant Portal Plugin Information
  • Administrator View:VMWARE:Metering
  • Administrator View: VMWARE:SolutionsOrganization
VMware Cloud Director Container Service Extension
related
  • Administrator View: VMWARE:CAPVCDCLUSTER
Data Solutions related
  • Administrator View: VMWARE:DSORGCONFIG
  • Administrator View: VMWARE:DSCONFIG
  • Administrator View: VMWARE:DSINSTANCETEMPLATE
  • Administrator View: VMWARE:DSINSTANCE
  • Administrator View: VMWARE:DSPROVISIONING
  • Administrator View: VMWARE:DSCLUSTER
  • Administrator View: VMWARE:DSBACKUPSCHEDULE
  • Administrator View: VMWARE:DSBACKUP
  • Administrator View: VMWARE:DSBACKUPLOCATION
  • Administrator View: VMWARE:DSRESTORE
  • Administrator View: VMWARE:DSMETERING
  • Administrator View: VMWARE:DSINFRASTRUCTUREPOLICY
  • Administrator View: VMWARE:DSSTORAGELOCATION
VMware Cloud Director extension for Data Solutions
 1.6 rights:
  • Administrator View: VMWARE:DSARCHIVEDCLUSTER
  • Administrator View: VMWARE:DSLOGBUNDLE
Built-in
  • Manage user's own API token
VMware Cloud Director Container Service Extension
 related
  • Administrator Full Control: VMWARE:CAPVCDCLUSTER
Data Solutions related
  • Administrator Full Control: VMWARE:DSORGCONFIG
  • Administrator Full Control: VMWARE:DSCONFIG
  • Administrator Full Control: VMWARE:DSINSTANCETEMPLATE
  • Administrator Full Control: VMWARE:DSINSTANCE
  • Administrator Full Control: VMWARE:DSPROVISIONING
  • Administrator Full Control: VMWARE:DSCLUSTER
  • Administrator Full Control: VMWARE:DSBACKUPSCHEDULE
  • Administrator Full Control: VMWARE:DSBACKUP
  • Administrator Full Control: VMWARE:DSBACKUPLOCATION
  • Administrator Full Control: VMWARE:DSRESTORE
  • Administrator Full Control: VMWARE:DSMETERING
  • Administrator Full Control: VMWARE:DSINFRASTRUCTUREPOLICY
  • Administrator Full Control: Metering
  • Administrator Full Control: VMWARE:DSSTORAGELOCATION
VMware Cloud Director extension for Data Solutions
 1.6 rights:
  • Administrator Full Control: VMWARE:DSARCHIVEDCLUSTER
  • Administrator Full Control: VMWARE:DSLOGBUNDLE
VMware Cloud Director extension for Data Solutions
 role
Description
VMware Cloud Director
 role
Minimal
VMware Cloud Director
 rights (View)
Minimal
VMware Cloud Director
 rights (Manage)
Tenant Administrator
You need this role to:
  • View published data solutions.
  • View data solution instances.
  • View the
    Tanzu Kubernetes Grid
     multi-cloud activation status.
  • View
    VMware Cloud Director extension for Data Solutions
     usage metrics.
  • Attach and detach
    MongoDB Ops Manager
     to tenant organization.
Organization Administrator
Built-in
  • Administrator View
  • View Tenant Portal Plugin Information
VMware Cloud Director Container Service Extension
 related
  • Administrator View: VMWARE:CAPVCDCLUSTER
Data Solutions related
  • View: VMWARE:DSORGCONFIG
  • Administrator View: VMWARE:DSCONFIG
  • Administrator View: VMWARE:DSINSTANCETEMPLATE
  • Administrator View: VMWARE:DSINSTANCE
  • Administrator View: VMWARE:DSPROVISIONING
  • Administrator View: VMWARE:DSCLUSTER
  • Administrator View: VMWARE:DSBACKUPSCHEDULE
  • Administrator View: VMWARE:DSBACKUP
  • Administrator View: VMWARE:DSBACKUPLOCATION
  • Administrator View: VMWARE:DSRESTORE
  • Administrator View: VMWARE:DSMETERING
  • View: VMWARE:DSINFRASTRUCTUREPOLICY
  • View: VMWARE:DSSTORAGELOCATION
VMware Cloud Director extension for Data Solutions
 1.6 rights:
  • Administrator View: VMWARE:DSARCHIVEDCLUSTER
  • Administrator View: VMWARE:DSLOGBUNDLE
Data Solutions related
  • Full Control: VMWARE:DSORGCONFIG
Tenant
VMware Cloud Director extension for Data Solutions
 operator
You need this role to:
Install, update, and uninstall the
Data Solutions operator
 for
VMware Cloud Director extension for Data Solutions
.
Custom role
Built-in
  • Administrator View
  • View Tenant Portal Plugin Information
VMware Cloud Director Container Service Extension
 related
  • View: VMWARE:CAPVCDCLUSTER
Data Solutions related
  • View: VMWARE:DSCONFIG
  • View: VMWARE:DSPROVISIONING
  • View: VMWARE:DSINSTANCE
  • View: VMWARE:DSINSTANCETEMPLATE
  • View: VMWARE:DSCLUSTER
  • View: VMWARE:DSORGCONFIG
  • View: VMWARE:DSMETERING
  • View: Metering (v10.5+)
  • Administrator View: VMWARE:DSBACKUPSCHEDULE
  • Administrator View: VMWARE:DSBACKUP
  • Administrator View: VMWARE:DSRESTORE
  • Administrator View: VMWARE:DSBACKUPLOCATION
Built-in
  • Manage user's own API token
VMware Cloud Director Container Service Extension
 related
  • Edit: VMWARE:CAPVCDCLUSTER
Data Solutions related
  • Full Control: VMWARE:DSPROVISIONING
  • Full Control: VMWARE:DSCLUSTER
  • Full Control: VMWARE:DSORGCONFIG
  • Full Control: Metering (v10.5+)
  • Full Control: VMWARE:DSMETERING
  • Administrator Full Control: VMWARE:DSINSTANCE
  • Administrator Full Control: VMWARE:DSBACKUPLOCATION
  • Administrator Full Control: VMWARE:DSBACKUP
  • Administrator Full Control: VMWARE:DSBACKUPSCHEDULE
  • Administrator Full Control: VMWARE:DSRESTORE
Tenant
VMware Cloud Director extension for Data Solutions
 user
You need this role to:
  • View published data solutions.
  • Manage data solution instances.
Custom role
Built-in
  • View Tenant Portal Plugin Information
VMware Cloud Director Container Service Extension
 related
  • View: VMWARE:CAPVCDCLUSTER
Data Solutions related
  • View: VMWARE:DSCONFIG
  • View: VMWARE:DSPROVISIONING
  • View: VMWARE:DSINSTANCE
  • View: VMWARE:DSINSTANCETEMPLATE
  • View: VMWARE:DSCLUSTER
  • View: VMWARE:DSORGCONFIG
  • View: VMWARE:DSBACKUPSCHEDULE
  • View: VMWARE:DSBACKUP
  • View: VMWARE:DSRESTORE
  • View: VMWARE:DSBACKUPLOCATION
  • View: VMWARE:DSINFRASTRUCTUREPOLICY
  • View: VMWARE:DSSTORAGELOCATION
VMware Cloud Director extension for Data Solutions
 1.6 rights:
  • View: VMWARE:DSARCHIVEDCLUSTER
  • View: VMWARE:DSLOGBUNDLE
Data Solutions related
  • Full Control: VMWARE:DSINSTANCE
  • Full Control: VMWARE:DSBACKUPSCHEDULE
  • Full Control: VMWARE:DSBACKUP
  • Full Control: VMWARE:DSBACKUPLOCATION
  • Full Control: VMWARE:DSRESTORE
VMware Cloud Director extension for Data Solutions
 1.6 rights:
  • Edit: VMWARE:DSARCHIVEDCLUSTER
  • Full Control: VMWARE:DSLOGBUNDLE

Network ports configuration

Ensure that the required network ports are open for the
VMware Cloud Director extension for Data Solutions
 data solutions communication.
Ports and protocols required for
VMware Cloud Director extension for Data Solutions
Source
Destination
Port
Protocol
Data Solution
Description
Tenant
Kubernetes
 cluster
DNS Server
53
TCP
MongoDB
Used when
MongoDB Enterprise
 ReplicaSet enables the LoadBalancer service.
Tenant
Kubernetes
 cluster
VMware Cloud Director
 Server
443
TCP
All
Used for communication between the tenant
Kubernetes
 cluster and the
VMware Cloud Director
 server.
Tenant
Kubernetes
 cluster
VMware Harbor Registry
443
TCP
All
Used when the tenant
Kubernetes
 cluster pulls
VMware Cloud Director Data Solutions operator
 images.
Tenant
Kubernetes
 cluster
VMware Harbor Registry
443
TCP
RabbitMQ
,
MySQL
,
Postgres
Used when the tenant
Kubernetes
 cluster pulls
VMware Data Solutions
 images.
Tenant
Kubernetes
 cluster
MongoDB
 helm chart repository
443
TCP
MongoDB
Used when the tenant
Kubernetes
 cluster pulls
MongoDB Enterprise
 or
MongoDB Community
 helm charts.
Tenant
Kubernetes
 cluster
Docker
 Hub
443
TCP
MongoDB
Used when
MongoDB Enterprise
 or
MongoDB Community
 pulls images from the
Docker
 Hub.
Tenant
Kubernetes
 cluster
MongoDB
 Official
Docker
 Hub
443
TCP
MongoDB
Used when
MongoDB Enterprise
 or
MongoDB Community
 pulls images from the
MongoDB
 Official
Docker
 Hub.
Web Browser
Tenant
Kubernetes
 cluster
443
TCP
All
Used when the user accesses the
Grafana
 Dashboard for data service monitoring.
MySQL
 Client
Tenant
Kubernetes
 cluster
3306
TCP
MySQL
Used for
MySQL
 clients to connect to the
MySQL
 server.
Postgres
 Client
Tenant
Kubernetes
 cluster
5432
TCP
Postgres
Used for
Postgres
 clients to connect to the
Postgres
 server.
RabbitMQ
 Client
Tenant
Kubernetes
 cluster
5672
TCP
RabbitMQ
Used for
RabbitMQ
 clients to connect to the
RabbitMQ
 server.
Web Browser
Tenant
Kubernetes
 cluster
15672
TCP
RabbitMQ
Used when the user accesses the
RabbitMQ
 Management Console.
MongoDB
 Client
Tenant
Kubernetes
 cluster
27017
TCP
MongoDB
Used for
MongoDB
 clients to connect to the
MongoDB
 server.
Tenant
Kubernetes
 cluster
MongoDB Ops Manager
80/443
TCP
MongoDB
Used for communication between the tenant
Kubernetes
 cluster and the
MongoDB Ops Manager
.
Kafka
 client
Tenant
Kubernetes
 cluster
9092
TCP
Confluent Platform
Used for
Kafka
 clients to connect to the
Kafka
 server.
Provider
Kubernetes
 cluster
VMware Data Services Manager
 server
443
TCP
VMware Data Services Manager
Used by the
VMware Data Services Manager
 consumption operator to access the
VMware Data Services Manager
 server.
Provider
Kubernetes
 cluster
Broadcom registry
443
TCP
VMware Data Services Manager
Used by Kubelet to pull
VMware Cloud Director extension for Data Solutions
 and
VMware Data Services Manager
 consumption operator images.
MySQL
 client
vSphere
 workload network
3306
TCP
VMware Data Services Manager MySQL
Used by
MySQL
 clients to access the
MySQL
 server.
Postgres
 client
vSphere
 workload network
5432
TCP
VMware Data Services Manager Postgres
Used by
Postgres
 clients to access the
Postgres
 server.

Content feedback and comments