HELP!!! Trying to install SC DPM 2012 R2 agent on VMware hosts...

Hi, I am trying to setup Data Protection Manager 2012 R2 agent on VMware hosts so I can backup the VM's residing on the VMware hosts.  According to my research, the VMware hosts need to be on the domain or trust created with the domain my DPM server resides?  Is this true?

Also, I am also hearing that I can just install DPM agent on my vCenter server that does already reside on the same domain as my DPM server, but not sure how that would work since the vCenter server is actually a VM residing on the VMware host.  Is this true?


Any assistance, suggestions, links...is greatly appreciated.
rsnellmanIT ManagerAsked:
Who is Participating?
 
Ajay ChananaMCSE-2003/08|RHCSA| VCP5/6 |vExpert2018Commented:
0
 
rsnellmanIT ManagerAuthor Commented:
Ajay,
Thank you for the amazing link.  That couldn't be any easier, other than, when it mentions VMware server(s), is it referring to vCenter always or do I need to do each of my VMware vSphere servers/nodes, even though, I have vCenter up and running?

Also, does this setup require a third-party SSL certificate or can I use the self-signed certificate from the vCenter VM server or VMware vSphere servers?


Thank you again for your assistance.
0
 
rsnellmanIT ManagerAuthor Commented:
According to this link...  Manage VMware with DPM - TechNet


Setting up secure communication between DPM and a VMware server




DPM communicates with the VMware server securely over an HTTPS channel. To create the secure communication, install a trusted certificate on both the VMware server and DPM server. If the connection to your vCenter is not secure, you can secure it by installing a certificate on the DPM server. Use the same certificate to make a secure connection with the VMware server.


When it refers to "trusted certificate", does that mean a third-party SSL certificate like from GoDaddy.com?  Or will a self-signed certificate from the vCenter VM do the trick?


Thanks in advance.
0
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

 
rsnellmanIT ManagerAuthor Commented:
No one can comment on this?
0
 
rsnellmanIT ManagerAuthor Commented:
Anybody?
0
 
PberSolutions ArchitectCommented:
Self signed will work fine.  The same self signed certificate just needs to be installed on both the DPM and the vCenter server.
0
 
rsnellmanIT ManagerAuthor Commented:
OK.  I did that and DPM server still can not detect/find the vCenter app server (virtual machine) residing on the VMware hosts.

The vCenter app server is on my domain, but the VMware hosts are not.  Not sure if that makes a difference.

Also, the vCenter app server (VM) is on a separate (management) VLAN.  Not sure if that makes a difference or if I should have two connections for the vCenter app server (VM), one for the management side and one for the IP traffic side where all my physical and virtual servers reside.

Lastly, I haven't had much success in adding the AD auth. part on the VMware side as of yet either.


Thanks.
0
 
PberSolutions ArchitectCommented:
The vCenter server needs access to the vmkernel IP on the ESX hosts.  If you have routing between your management VLAN and the vCenter server with no firewall you should be ok.   If not, you'll may need to change things.  The vmKernel management port need to be able to connect the vCenter server,  In your config, since your vCenter server is on a separate management vlan, you would need the ESX management Nics on the same vlan.

Port requirements: https://kb.vmware.com/s/article/1012382

Port 443 and 902 are bare minimums.  Look for ESXi and vCenter on the same line.  Extra services require more ports.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.