Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Scribd
Upload
403 views

Vsphere Tutorials

vSphere Tutorials for learning sailpoint upload VA application

Uploaded by

Arnav Vaid
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
403 views

Vsphere Tutorials

vSphere Tutorials for learning sailpoint upload VA application

Uploaded by

Arnav Vaid
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 9

10/24/2019 Local Virtual Appliance Deployment with vSphere - Compass

V i s i t s a i l p o i n t . co m 

Search All Content

Compass  Products  IdentityNow  Connectors  Connectors


 Options
 Local Virtual Appliance Deployment with vSphere

Local Virtual Appliance


Deployment with vSphere 
In IdentityNow, a virtual appliance is a virtual machine (VM) running behind your
organization's firewall that is used to load account and authentication data from sources
that reside behind your firewall.

This document describes the process of deploying the virtual appliance (VA) image on a
local virtual machine. You might need to do this for a few reasons:

You're deploying your first virtual appliance after signing a contract with SailPoint for
IdentityNow. If so, go to Getting Started with the Virtual Appliance for more
information.
You're deploying one or more subsequent virtual appliances either as part of an
active deployment or to increase the number of VAs on a live IdentityNow site. If so,
go to Virtual Appliance Deployment in a Local Environment for more information.

NOTES:

Specific system requirements depend on how you plan to use the virtual appliance.
For detailed information about system configuration, see the Virtual Appliance
Reference Guide.
It is your responsibility to keep your virtual appliances operational, as described in
Monitoring and Maintenance. However, SailPoint supports the virtual appliance
image by:  Top

https://community.sailpoint.com/t5/Connectors/Local-Virtual-Appliance-Deployment-with-vSphere/ta-p/73919 1/9
10/24/2019 Local Virtual Appliance Deployment with vSphere - Compass

Designing the VAs to continuously make outbound-only calls to the cloud


environment to check for patches and updates.
Including built-in monitoring to alert us when the the VA is down.

See the following sections for more information:

Getting Started with the Virtual Appliance


Prerequisite Steps
Virtual Appliance Deployment in a Local Environment
Intermediate Steps
Completing the Deployment
Next Steps

Getting Started with the


Virtual Appliance
Immediately after signing your contract with SailPoint, you can create an initial virtual
appliance for your IdentityNow site, as described in Virtual Appliance Deployment in a
Local Environment.

NOTE: This document addresses only a standard virtual appliance configuration, deployed
locally. If you need to deploy your VA on AWS or configure your virtual appliance to
connect using TLS, route traffic through a proxy, or use the secure tunnel configuration,
please refer to the Virtual Appliance Reference Guide.

Prerequisite Steps
Verify that you have met the system requirements described in the Virtual Appliance
Reference Guide and Can I control VA traffic on my network?
Make a decision about the best configuration type for your company. For more
information, see Configuration Options.
Have a strong background in your company's virtualization platform.
Best Practice: For deployments in progress, stand up VAs on your sandbox first and
test them.

Virtual Appliance Deployment


in a Local Environment
This procedure deploys a VA on a local virtualization platform. After you finish this process,
you'll need to take additional steps in the IdentityNow user interface.  Top

https://community.sailpoint.com/t5/Connectors/Local-Virtual-Appliance-Deployment-with-vSphere/ta-p/73919 2/9
10/24/2019 Local Virtual Appliance Deployment with vSphere - Compass

NOTE: For instructions on installing a VA on AWS, see Virtual Appliance Deployment on


AWS.

Complete the following steps:

1. To download the virtual appliance package, click the following link: https://sppcbu-va-
images.s3.amazonaws.com/va-latest.zip.

2. Unzip the package using your preferred utility.

3. Copy it to the virtualization platform. Follow the standard process


for your platform.

4. Start the VM.

5. Sign in to the VM. The user name is sailpoint and the password is
S@ilp0int.

 Top

https://community.sailpoint.com/t5/Connectors/Local-Virtual-Appliance-Deployment-with-vSphere/ta-p/73919 3/9
10/24/2019 Local Virtual Appliance Deployment with vSphere - Compass

6. Change your password immediately as follows:

a. At the command prompt, type passwd.

b. Enter the current password S@ilp0int.

c. Provide a new password.

d. Repeat the new password.

7. As a best practice, set a static IP address for your virtual


appliance:

a. First you must find the name of your virtual NIC card for your
VA:

i. In the command line, type ip addr

ii. From the list of virtual NICs displayed, find the 2nd one. In
the example on the right, the correct one is highlighted.

NOTE: All virtual NIC names are dynamically assigned upon


initial VA creation so you will need to perform this step for
each VA to enter the right name into your static.network file
in the steps that follow.

 Top

https://community.sailpoint.com/t5/Connectors/Local-Virtual-Appliance-Deployment-with-vSphere/ta-p/73919 4/9
10/24/2019 Local Virtual Appliance Deployment with vSphere - Compass

b. Next edit the the static.network file:

i. Open the file sudoedit


/etc/systemd/network/static.network

ii. Enter the following:

[Match]

Name=<NICname>

[Network]

DNS=<DNS>

Address=<IPaddress and CIDR>

Gateway=<Gateway>

where:

NICName is the NIC card from step a above and the values under
Network are the specific to your VA's IP address.
CIDR in the Address field is required if you want to set a subnet mask

c. Disable the ESX DHCP bump service: sudo systemctl disable


esx_dhcp_bump.service

d. Reboot the VA: sudo reboot

8. After your IdentityNow site has been deployed, continue reading to understand your
next steps.

Intermediate Steps
Choose one of the following options:

If you've already got an active IdentityNow site, you can continue with Completing
the Deployment.

If you're just getting started with an IdentityNow deployment, you'll need to pause on
VA configuration until you get your IdentityNow URLs. As your implementation team
transitions to preparing for your kickoff meeting, you will receive an email from your
 Top
SailPoint Engagement Manager. This email contains a variety of information about
https://community.sailpoint.com/t5/Connectors/Local-Virtual-Appliance-Deployment-with-vSphere/ta-p/73919 5/9
10/24/2019 Local Virtual Appliance Deployment with vSphere - Compass

additional work you can do to forward your IdentityNow deployment. One essential
step is defining your IdentityNow URL and having SailPoint's DevOps team launch
the site itself. You'll continue with Completing the Deployment after the kick off
meeting,

Completing the Deployment


After you get your IdentityNow URL from the SailPoint Engagement Manager, you can
complete the secure connection between the virtual appliance and your site.

Complete the following steps:

1. In the Admin interface, go to Connections > Virtual Appliances.

NOTE: If you have an existing virtual appliance cluster, click to open it and go directly to
step 16.

2. In the Virtual Appliance Clusters page,


click New.

3. Enter a name for the virtual appliance


cluster.

NOTE: This must be a unique name in your


organization. In other words, you cannot
have two clusters with the same name.

4. Click Continue.

 Top

https://community.sailpoint.com/t5/Connectors/Local-Virtual-Appliance-Deployment-with-vSphere/ta-p/73919 6/9
10/24/2019 Local Virtual Appliance Deployment with vSphere - Compass

5. In the Cluster Config page, enter a


description for the cluster. This is required
before you can save the cluster
configuration.

6. In Maintenance Window, select a time


zone for when virtual appliance
maintenance can occur. Any maintenance
will take place from 12 a.m. to 4 a.m. in the
selected time zone.

See Daylight Saving Time for more


information.

7. Click Save.

8. Click Virtual Appliances.

9. Click New.

The New Virtual Appliance page is opened.

10. In the Description field, type a


description of the virtual appliance. This
appears in the list of appliances that
comprise the cluster.

Next Steps
Open one of the following configuration guides to take the next steps required to set up
your VA:

Standard- Uses the standard traffic generated by the VA.


HTTP Proxy - Routes all HTTP/HTTPS traffic through the proxy.
Secure Tunnel - Strictly limits the outbound connections generated by the VA.
 Top
Labels : Virtual Appliance (VA)
https://community.sailpoint.com/t5/Connectors/Local-Virtual-Appliance-Deployment-with-vSphere/ta-p/73919 7/9
10/24/2019 Local Virtual Appliance Deployment with vSphere - Compass

default password
deploy ifconfig install ip login network static ip address va virtual appliance
virtualization vmware

Add tags

 4 Kudos

Comment

Comment PREVIEW

          


Email me when someone replies

Cancel Post Your Comment

Version history

Revision #: 1 of 1
Last update: 02-10-2017 01:49 PM
Updated by: meredith_volk

View article history  Top

https://community.sailpoint.com/t5/Connectors/Local-Virtual-Appliance-Deployment-with-vSphere/ta-p/73919 8/9
10/24/2019 Local Virtual Appliance Deployment with vSphere - Compass

   

ABOUT

CAREERS

SUPPORT

SECURITY

INVESTORS

P R I VA C Y

COOKIE NOTICE

TERMS OF USE

LEGAL

Copyright © 2019. SailPoint Technologies Holdings, Inc. All Rights Reserved.

 Top

https://community.sailpoint.com/t5/Connectors/Local-Virtual-Appliance-Deployment-with-vSphere/ta-p/73919 9/9

You might also like