HELP!!!  Trying to install SC DPM 2012 R2 agent on VMware hosts...

rsnellman
rsnellman used Ask the Experts™
on
Hi, I am trying to setup Data Protection Manager 2012 R2 agent on VMware hosts so I can backup the VM's residing on the VMware hosts.  According to my research, the VMware hosts need to be on the domain or trust created with the domain my DPM server resides?  Is this true?

Also, I am also hearing that I can just install DPM agent on my vCenter server that does already reside on the same domain as my DPM server, but not sure how that would work since the vCenter server is actually a VM residing on the VMware host.  Is this true?


Any assistance, suggestions, links...is greatly appreciated.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
MCSE-2003/08|RHCSA| VCP5/6 |vExpert2018
Distinguished Expert 2017
Commented:
rsnellmanIT Manager

Author

Commented:
Ajay,
Thank you for the amazing link.  That couldn't be any easier, other than, when it mentions VMware server(s), is it referring to vCenter always or do I need to do each of my VMware vSphere servers/nodes, even though, I have vCenter up and running?

Also, does this setup require a third-party SSL certificate or can I use the self-signed certificate from the vCenter VM server or VMware vSphere servers?


Thank you again for your assistance.
rsnellmanIT Manager

Author

Commented:
According to this link...  Manage VMware with DPM - TechNet


Setting up secure communication between DPM and a VMware server




DPM communicates with the VMware server securely over an HTTPS channel. To create the secure communication, install a trusted certificate on both the VMware server and DPM server. If the connection to your vCenter is not secure, you can secure it by installing a certificate on the DPM server. Use the same certificate to make a secure connection with the VMware server.


When it refers to "trusted certificate", does that mean a third-party SSL certificate like from GoDaddy.com?  Or will a self-signed certificate from the vCenter VM do the trick?


Thanks in advance.
Ensure you’re charging the right price for your IT

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden using our free interactive tool and use it to determine the right price for your IT services. Start calculating Now!

rsnellmanIT Manager

Author

Commented:
No one can comment on this?
rsnellmanIT Manager

Author

Commented:
Anybody?
PberSolutions Architect
Commented:
Self signed will work fine.  The same self signed certificate just needs to be installed on both the DPM and the vCenter server.
rsnellmanIT Manager

Author

Commented:
OK.  I did that and DPM server still can not detect/find the vCenter app server (virtual machine) residing on the VMware hosts.

The vCenter app server is on my domain, but the VMware hosts are not.  Not sure if that makes a difference.

Also, the vCenter app server (VM) is on a separate (management) VLAN.  Not sure if that makes a difference or if I should have two connections for the vCenter app server (VM), one for the management side and one for the IP traffic side where all my physical and virtual servers reside.

Lastly, I haven't had much success in adding the AD auth. part on the VMware side as of yet either.


Thanks.
PberSolutions Architect
Commented:
The vCenter server needs access to the vmkernel IP on the ESX hosts.  If you have routing between your management VLAN and the vCenter server with no firewall you should be ok.   If not, you'll may need to change things.  The vmKernel management port need to be able to connect the vCenter server,  In your config, since your vCenter server is on a separate management vlan, you would need the ESX management Nics on the same vlan.

Port requirements: https://kb.vmware.com/s/article/1012382

Port 443 and 902 are bare minimums.  Look for ESXi and vCenter on the same line.  Extra services require more ports.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial