Roles are a set of rights that make it easier to share assigned permissons between users or groups. By default, you can assign the following roles:
- Catalog Author (allow a user to create and publish catalogs)
- Console Access Only (allow a user to view virtual machine state and properties and to use the guest OS)
- Defer to Identity Provider (longer explenation)
- Organization Administrator (allow a user to manage users and groups in their organization and assign them roles)
- vApp Author (allow a user to use catalogs and create vApp-s)
- vApp User (allow a user to use existing vApp-s)
Permissions grant access and/or allow you to perform actions in the Cloud Director. Each right allows a different view or access according to the object type in the Cloud Director. Each organization can have different rights and roles assigned to their users and groups. In addition, custom roles can be performed.
You can import the necessary certificates for VMware solutions (NSX-Gateway, Load Balancer, etc.).
Interconnected data centers located in several different geographical locations are called multisite. In the context of Cloud Director, Multisite allows you to manage different virtual data centres from a single interface. Multisite is required when using cross-vDC networks.
Possible to assign how many VMs users can store and run in an organization's VDC.
(general, email, guest personalization, metadata, policies).
Datacenters - from here all compute and storage resources are managed
vApp is a container where you can assign different permissions and settings to virtual machines. A vApp may contain one or more virtual machines. For example, multiple VMs can form a multi-level application (such as a separate web server, database, and security server). In principle, it allows you to manage multiple virtual machines as a single service and configure different rules and options (closed network, firewall rules, etc.). You can also configure various virtual machine startup protocols. For example, if vApp includes a web and database server that depends on each other´s startup queue, then vApp can specify the order in which those servers start, under what conditions (the timedifference between the startup of the first and second VMs) and so on.
Affinity / Anti-Affinity rules allow vCD users to specify how the vSphere Distributed Resource Schelduler (DRS) should deploy VMs on hosts:
- VM - VM Affinity (VMs need to be on the same host)
- VM - VM Anti-Affinity (VMs need to be on different hosts)
- VM - host Affinity (VMs need to be on certain hosts)
- VM - host Anti-Affinity (VMs can´t be on certain hosts)
For example, you can assign one VM to one host and another VM to another host and keep them separate.
These rules can be used to optimize licensing costs (if a license fee is charged for the number of physical server cores, Affinity rules can limit the number of servers a VM can run on), increase availability (if redundant VMs run on different hosts), and improve latency ( when VMs are running on a single host).
Inbound and outbound traffic can be restricted to different PODs with applications. You can also limit resource and security policies.
vCloud Director supports IPv4 and IPv6 edge gateway solutions.
Under security you can manage an NSX (Security Services) distributed firewall and protect your organization's intranet resources horizontally (you can restrict communication between VMs, for example, one VM can communicate with another VM via an HTTP port). External networks can be protected both horizontally (restricting traffic between public IPs of VMs) and vertically (for example, Edge Gateway restricts SSH connections from an external network).
Named (previously independent) disks are stand-alone virtual disks that are created in an organization´s virtual data center. Administrators and authorized users in the organization can creat, modify and delet disks, as well as mount to VMs. It essentially acts as an external hard drive used within the VDC. Not intended for active data backup, as a spanshot cannot be created from the disk.
Under Storage policies you can get an overview of your vCloud storage disk volumes and information.
Users have privileged access to vApp templates and media files that they own or share with them.
The tasks view lists all tasks and shows when tasks were run and where they successfully completed. The view is the first step to troubleshooting problems in your environment. The tasks view contains long-running operations such as a virtual machine or a vApp creation.
Under Events you can view the system log to monitor system-level events. You can find and troubleshoot failed events and view events by the user.