HELP!!! Trying to install SC DPM 2012 R2 agent on VMware hosts...

Hi, I am trying to setup Data Protection Manager 2012 R2 agent on VMware hosts so I can backup the VM's residing on the VMware hosts.  According to my research, the VMware hosts need to be on the domain or trust created with the domain my DPM server resides?  Is this true?

Also, I am also hearing that I can just install DPM agent on my vCenter server that does already reside on the same domain as my DPM server, but not sure how that would work since the vCenter server is actually a VM residing on the VMware host.  Is this true?

Any assistance, suggestions, greatly appreciated.
rsnellmanIT ManagerAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Ajay ChananaMCSE-2003/08|RHCSA| VCP5/6 |vExpert2018Commented:

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
rsnellmanIT ManagerAuthor Commented:
Thank you for the amazing link.  That couldn't be any easier, other than, when it mentions VMware server(s), is it referring to vCenter always or do I need to do each of my VMware vSphere servers/nodes, even though, I have vCenter up and running?

Also, does this setup require a third-party SSL certificate or can I use the self-signed certificate from the vCenter VM server or VMware vSphere servers?

Thank you again for your assistance.
rsnellmanIT ManagerAuthor Commented:
According to this link...  Manage VMware with DPM - TechNet

Setting up secure communication between DPM and a VMware server

DPM communicates with the VMware server securely over an HTTPS channel. To create the secure communication, install a trusted certificate on both the VMware server and DPM server. If the connection to your vCenter is not secure, you can secure it by installing a certificate on the DPM server. Use the same certificate to make a secure connection with the VMware server.

When it refers to "trusted certificate", does that mean a third-party SSL certificate like from  Or will a self-signed certificate from the vCenter VM do the trick?

Thanks in advance.
Your Guide to Achieving IT Business Success

The IT Service Excellence Tool Kit has best practices to keep your clients happy and business booming. Inside, you’ll find everything you need to increase client satisfaction and retention, become more competitive, and increase your overall success.

rsnellmanIT ManagerAuthor Commented:
No one can comment on this?
rsnellmanIT ManagerAuthor Commented:
PberSolutions ArchitectCommented:
Self signed will work fine.  The same self signed certificate just needs to be installed on both the DPM and the vCenter server.
rsnellmanIT ManagerAuthor Commented:
OK.  I did that and DPM server still can not detect/find the vCenter app server (virtual machine) residing on the VMware hosts.

The vCenter app server is on my domain, but the VMware hosts are not.  Not sure if that makes a difference.

Also, the vCenter app server (VM) is on a separate (management) VLAN.  Not sure if that makes a difference or if I should have two connections for the vCenter app server (VM), one for the management side and one for the IP traffic side where all my physical and virtual servers reside.

Lastly, I haven't had much success in adding the AD auth. part on the VMware side as of yet either.

PberSolutions ArchitectCommented:
The vCenter server needs access to the vmkernel IP on the ESX hosts.  If you have routing between your management VLAN and the vCenter server with no firewall you should be ok.   If not, you'll may need to change things.  The vmKernel management port need to be able to connect the vCenter server,  In your config, since your vCenter server is on a separate management vlan, you would need the ESX management Nics on the same vlan.

Port requirements:

Port 443 and 902 are bare minimums.  Look for ESXi and vCenter on the same line.  Extra services require more ports.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Server Hardware

From novice to tech pro — start learning today.