Managing ESXi Local User Accounts from vCenter Server Using PowerCLI
There was once a time early in my career when I would SSH to each VMware ESXi host and manually update the root account’s password. As time went by and the environment I was responsible for grew larger, so did the workload for resetting root account passwords regularly. Eventually, I researched and learned that these VMware ESXi local user accounts could be modified using VMware PowerCLI, and password updates became a much easier task.
Getting Started with the Aria Automation Orchestrator Plug-in for the vSphere Client
You might not know it from how VMware Aria Automation Orchestrator (formerly VMware vRealize Orchestrator) is marketed today, but originally, Aria Automation Orchestrator was bundled as a component of VMware vCenter Server. Titled VMware vCenter Orchestrator back in the day, it was one of the best ways to automate actions within your VMware vCenter Server. While vCenter Orchestrator was rebranded as vRealize Orchestrator, and now as Aria Automation Orchestrator, it is still included as a feature with each VMware vCenter Server license.
VMware vCenter Smart Card Authentication Stops Working after Upgrading to 7.0 U3i
After testing a recent upgrade to VMware vCenter Server 7.0 Update 3i, I encountered an issue where the vCenter Server would no longer authenticate users via smart cards/X.509 certificates. The vCenter Server would not even request a certificate from the client’s browser anymore. This seemed odd as the functionality worked fine on the previous 7.0 Update 3h. Surely VMware wouldn’t make a breaking change within a minor patch release? After reverting the upgrade and testing that it wasn’t an issue with the upgrade process itself, a support ticket was opened with VMware support.
Backing Up VMware ESXi TPM Encryption Recovery Keys
If you have deployed a VMware ESXi 7.0 or 8.0 host containing a TPM 2.0 device, you have likely encountered the “TPM Encryption Recovery Key Backup Alarm” in vCenter reminding you to back up your TPM encryption recovery key. Screenshot showing the “TPM Encryption Recovery Key Backup Alarm” in the VMware vSphere Client If you’re like me, the first time you encountered this, you probably searched Google for this alarm message and ran across VMware KB81661 - “TPM Encryption Recovery Key Backup” warning alarm in vCenter Server.
Aria Operations Compliance Content for the vSphere 7.0 STIG Readiness Guide is Available
Update: DISA released the official VMware vSphere 7.0 STIG on March 15, 2023. Information related to my updated compliance content can be found here. While the United States (U.S.) Department of Defense (DoD) Defense Information Systems Agency (DISA) hasn’t officially released a STIG for VMware vSphere 7.0, VMware has released what they refer to as their “VMware vSphere 7.0 STIG Readiness Guide”. This guide, while not an official STIG, is based on years of experience assisting the DoD in generating the official DISA STIG releases for previous VMware vSphere product versions.