Primary CloudControl Setup

Complete the initial setup on an ESXi host for the primary CloudControl node:

  1. From the vSphere Client, deploy CloudControl on an ESXi host for the primary CloudControl node. For more information, see Installing from an OVA File.

  2. Power on the primary CloudControl node. For more information, see Power On the Appliance.

  3. Configure the CloudControl Management Network Interface, configuring a Virtual Management IP address if required. For more information, see Configuring the Management Interface.

  4. Complete the CloudControl Management Console Installation Wizard. For more information, see Configuring the Management Console.

  5. From the vSphere Client open up the CloudControl console window and log in using the ascadminuser credentials.

    Note: The ascadminuser password was modified during initial CloudControl setup. The ascadminuser account is a local administrator account on each CloudControl, so the credentials for this account on the primary CloudControl and secondary CloudControl are independent.

  6. From the CloudControl command line interface, type hasetup to start the HA setup procedure.

  7. At the Do you want to reconfigure? (y/n) prompt, select n, unless you wish to reconfigure the Connection 1 network configuration.

  8. At the Do you want to set up proxy configuration? prompt, type one of the following: 

    • If you want to use a proxy for the vitals and licensing services, type y and then complete the following: 

      1. At the Proxy Server IP prompt, enter the IP address for the proxy server.
      2. At the Proxy Server Port prompt, enter the port number for the proxy server.
      3. At the Proxy Server Username prompt, enter the username for the proxy server.
      4. At the Proxy Server Password prompt, enter the password for the proxy server.
      5. At the Do you want to enable proxy for license? prompt, type y to enable the proxy server.
      6. At the Do you want to enable proxy for vitals? prompt, type y to enable the proxy server.
    • If you do not want to use a proxy for the vitals and licensing services, type n.

  9. At the Deploy as primary (production) or secondary (standby) (pri/sec) prompt, type: pri.

  10. At the Do you want to configure a private network for High Availability? prompt:

    • If you want to configure the Dedicated Private Network, type y and enter the IP address and the Subnet Mask of the eth2 IP address.

    • If you want to use the management network for High Availability network traffic, type n and proceed to the next step.

  11. At the Do you want to configure a Virtual Management IP address? prompt, if you wish to use a Virtual Management IP address (VIP) to connect to the CloudControl, type: yes and enter the IP address.

    Important: You must register the VIP as Agent Source and an alternate IP as Node IP. When CloudControl is configured in High Availability you must also add a Secondary CloudControl Node IP as an alternate IP in RSA Authentication Manager.

  12. Log out of CloudControl.

    Note: By default, once the cluster is formed, the ascadminuser password is synchronized between the primary and secondary CloudControl appliance. To disable the password synchronization execute the following command before forming the cluster: asc ha -–disable-password-sync

HA setup for the primary CloudControl node is now complete, and the node is in standalone mode as no other node has joined the pair. Next, you must install and configure a second CloudControl instance and join the two CloudControl nodes to create a CloudControl-HA cluster.

Primary HA Setup Example: 

[localhost:standalone asc]$ hasetup

CloudControl Setup - HyTrust CloudControl - <version>

The appliance is configured with the following settings:

Node IP: 10.100.246.120

Netmask: 255.255.0.0

Gateway: 10.100.0.1

DNS Server: 10.100.255.32

Do you want to reconfigure? (y/n): n

Deploy as primary (production) or secondary (standby) (pri/sec): pri

Do you want to configure a private network for High Availability? (y/n) n

The HTCC appliance is configured with the following Virtual Management IP address:

Virtual Management IP: 10.100.246.121

Do you want to reconfigure? (y/n): n

HyTrust CloudControl - <version> 

The management web user interface is available at:

https://10.100.246.121/asc

Network Configuration - Connection 1 (eth0)

Mode: Static

IP Address: 10.100.246.120

Netmask: 255.255.0.0

Gateway: 10.100.0.1

High Availability - Disabled, Connection 1 (eth0)

[localhost:standalone asc]$

 

HyTrust CloudControl v 5.6

Copyright © 2019 HyTrust, Inc. All Rights Reserved.

Follow us: