Searching the Help
To search for information in the Help, type a word or phrase in the Search box. When you enter a group of words, OR is inferred. You can use Boolean operators to refine your search.
Results returned are case insensitive. However, results ranking takes case into account and assigns higher scores to case matches. Therefore, a search for "cats" followed by a search for "Cats" would return the same number of Help topics, but the order in which the topics are listed would be different.
Search for | Example | Results |
---|---|---|
A single word | cat
|
Topics that contain the word "cat". You will also find its grammatical variations, such as "cats". |
A phrase. You can specify that the search results contain a specific phrase. |
"cat food" (quotation marks) |
Topics that contain the literal phrase "cat food" and all its grammatical variations. Without the quotation marks, the query is equivalent to specifying an OR operator, which finds topics with one of the individual words instead of the phrase. |
Search for | Operator | Example |
---|---|---|
Two or more words in the same topic |
|
|
Either word in a topic |
|
|
Topics that do not contain a specific word or phrase |
|
|
Topics that contain one string and do not contain another | ^ (caret) |
cat ^ mouse
|
A combination of search types | ( ) parentheses |
|
Discover and monitor VMware hypervisor-based virtual networks
If you want to discover and monitor virtual networks running on VMware hypervisors, you must perform the following additional tasks.
Task 1: Make sure the prerequisites are met
Make sure the prerequisites to discovering virtual networks are met.
- Make sure the hypervisor supports SNMP communication and is accessible from NNMi using SNMP.
- VMware only. You must replace the VMware default certificate (
localhost.localdomain
) with a certificate that is generated using the host name of the ESXi server. For more information, see the VMware documentation. See an example. - VMware only. If you want NNMi to use HTTP to communicate with VMware, perform additional configuration steps.
- If you need to use HTTP to communicate with hypervisors, see Additional steps for using HTTP to communicate with hypervisors.
Example: Replacing the default VMware certificate
-
Make sure the
/etc/hosts
file has the following format for resolving the host:#/etc/hosts
127.0.0.1 localhost.localdomain localhost
::1 localhost.localdomain localhost
10.78.xx.xxx hostname.domain.com hostname
-
Make sure SSH is enabled on the ESXi server.
-
Log in to the ESXi Shell as a user with administrator privileges.
-
Navigate to following directory:
/etc/vmware/ssl
-
Back up any existing certificates by renaming them using the following commands:
mv rui.crt orig.rui.crt
mv rui.key orig.rui.key
-
To generate new certificates, run the following command:
/sbin/generate-certificates
-
Restart the host.
-
Confirm the host successfully generated new certificates:
-
Use the following command to list the certificates:
ls -la
- Compare the time stamps of the new certificate files with
orig.rui.crt
andorig.rui.key
. if the original files are available.
-
Additional steps for using HTTP to communicate with hypervisors
By default, NNMi uses the HTTPS protocol to communicate with hypervisors.
If you need to use HTTP, follow these steps:
-
Go to the
server.properties
file:Windows:
%NnmDataDir%\nmsas\NNM\server.properties
Linux:
$NnmDataDir/nmsas/NNM/server.properties
-
Add the following line:
nms.comm.soap.targetconfig.HTTP_ENABLED=true
-
Restart the NNMi management server by running the following commands:
- ovstop -c
- ovstart -c
Task 2: Configure NNMi to poll SNMP agents on hypervisors
You must configure NNMi to be able to poll SNMP agents on hypervisors by providing the write SNMP community string or authentication values (for SNMPv3). You can complete this task with the Communication Configuration form of NNMi.
Use the Communication Configuration form to perform this configuration task.
Task 3: Configure NNMi to communicate with VMware hypervisors
For each VMware hypervisor that you want to discover, provide the access credentials by using the Device Credentials form. These credentials help NNMi connect with VMware hypervisors. Also, to facilitate HTTPS communication between NNMi and hypervisors, you must upload VMware or CA-trusted certificates to the NNMi management server.
You can complete this configuration task by using the addCredential
and addCertificate
options of the nnmconfiguration.ovpl
command. For this alternate method of configuration, see the reference page of nnmconfiguration.ovpl
.
Follow these steps to complete this task:
-
Determine how many hypervisors will be monitored in the environment.
-
Obtain read-only access credentials for the vSphere API on those hypervisors.
-
Obtain all trusted certificates for use with hypervisors.
You can use a set of certificates where each certificate is specific for a particular ESXi host; you can use CA-signed certificates; you can use a combination of the two.
By default, NNMi communicates with virtual machines running on hypervisors by using the HTTPS protocol. If your ESXi servers are specifically configured to support HTTP communication, you can configure NNMi to use the HTTP protocol while communicating with virtual machines, and in that case, you do not need trusted certificates.
-
Configure NNMi to communicate with hypervisors by accessing the vSphere API.
You can follow one or more of the following procedures:
- Add Configuration for a Region
- Add Configuration for a Specific Hypervisor
- Add Configuration to the Default Node Communication Settings
Add Configuration for a Region
Use this procedure if you want the configuration to take effect across a region. This procedure is useful when you have:
- A set of credentials that can be used on all hypervisors in a region
- A CA-trusted certificate that can be used with all hypervisors in a region
- In the Communication Configuration form, go to the Regions tab.
-
Create a new region.
In the Regions tab, click New, and then define a new region in the Communication Region form.
Or, double-click an existing region.
-
In the Communication Region form, go to the Device Credentials tab.
-
Click New.
-
In the Region Device Credentials form, select Type as VMware, and then specify credentials to access the vSphere API.
-
Click Save & Close.
-
(Skip this step if you want to configure HTTP communication.) Upload trusted certificates.
-
In the Communication Region form, go to the Trusted Certificates tab.
-
Click . Upload Certificate. The Open window appears.
-
In the Open window, select a certificate, and then click Open.
This configuration takes effect across the region.
You can upload multiple certificates for a single region. If the region contains multiple ESXi hosts, you can use any one of the following:
- A CA-signed certificate to communicate with all the ESXi hosts in the region
- ESXi host-specific VMware certificates—one certificate for each ESXI host in the region
- Multiple CA-signed certificates
- A combination of all three
Uploading multiple certificates leads to longer initial discovery time.
You can use only the following certificate formats:
-
.pem
-
.crt
-
.cer
-
.der
-
You can follow the above steps to add configuration for another region.
Add Configuration for a Specific Hypervisor
This procedure is useful when you have:
- A set of credentials that can be used only on one hypervisor
- A VMware-generated certificate that can be used only on one hypervisor
-
In the Communication Configuration form, go to the Specific Node Settings tab.
-
Add a new node.
In the Specific Node Settings tab, click New, and then define a new region in the Specific Node Settings form.
Or, double-click an existing node.
-
In the Specific Node Settings form, go to the Device Credentials tab.
-
Click New.
-
In the Specific Node Device Credentials form, select Type as VMware, and then specify credentials to access the vSphere API.
-
Click Save & Close.
-
(Skip this step if you want to configure HTTP communication.) Upload trusted certificates.
-
In the Specific Node Settings form, go to the Trusted Certificates tab.
-
Click . Upload Certificate. The Open window appears.
-
In the Open window, select a certificate, and then click Open.
You can use any one of the following:
- A CA-signed certificate to communicate with the ESXi host
- A VMware certificate specific for the ESXi host
You can use only the following certificate formats:
-
.pem
-
.crt
-
.cer
-
.der
-
You can follow the above steps to add configuration for another ESXi host.
Add Configuration to the Default Node Communication Settings
Adding the VMware details to the default node configuration enables NNMi to connect to only one hypervisor. To be able to discover additional ESXi hosts and other devices on your network, you must provide additional configuration details by using the Communication Region or Specific Node Settings form.
-
Obtain the access credentials of the hypervisor.
-
In the Communication Configuration form, go to the Specific Node Settings tab.
-
Add a new node.
In the Specific Node Settings tab, click New, and then define a new region in the Specific Node Settings form.
Or, double-click an existing node.
-
In the Specific Node Settings form, go to the Device Credentials tab.
-
Click New.
-
In the Specific Node Device Credentials form, select Type as VMware, and then specify VMware credentials.
-
Click Save & Close.
-
(Skip this step if you want to configure HTTP communication.) Upload trusted certificates.
-
In the Specific Node Settings form, go to the Trusted Certificates tab.
-
Click . Upload Certificate. The Open window appears.
-
In the Open window, select a certificate, and then click Open.
You can use any one of the following:
- A CA-signed certificate to communicate with the ESXi host
- A VMware certificate specific for the ESXi host
You can use only the following certificate formats:
-
.pem
-
.crt
-
.cer
-
.der
-
Task 4: Enable monitoring
To be able to detect faults in one of the discovered virtual networks, you must enable SNMP and web polling of hypervisors and virtual machines.
-
Configure NNMi to monitor VMware ESXi servers (hypervisors).
- In the Monitoring Configuration form, go to the Node Settings tab.
- Click New. The Node Settings form opens.
- In the Node Settings form, select VMware ESX Hosts as Node Group, and then specify a unique order number.
-
Select the following check boxes in addition to the default selection of options:
Enable IP Address Fault Polling: This option enables pinging of IP addresses and helps NNMi monitor network availability.
Enable Interface Performance Polling: This selection enables NNMi to collect performance data from VMware ESXi interfaces, which is exported to NPS for building performance reports.
Poll Unconnected Interfaces: This selection ensures that all virtual network components like virtual switches are monitored.
-
Click Save and Close.
-
Configure NNMi to monitor virtual machines that run on hypervisors.
- In the Monitoring Configuration form, go to the Node Settings tab.
- Click New. The Node Settings form opens.
- In the Node Settings form, select Virtual Machines as Node Group, and then specify a unique order number.
-
Select the following check boxes in addition to the default selection of options:
Enable IP Address Fault Polling: This option enables pinging of IP addresses and helps NNMi detect a virtual machine on which the SNMP agent is not running.
A virtual machine must be running VMware Tools for NNMi to discover IP addresses.
-
Click Save and Close.
Task 5: Configure and run discovery
Configure NNMi to seed all hypervisors in the environment that host virtual machines and networks. While configuring seeding, use fully qualified domain names of hypervisors (and not IP addresses).
Wait for NNMi discovery to gather information.
Task 6: Verify discovery
To verify that NNMi discovery has successfully discovered virtual machines and virtual networks on hypervisors:
-
From the Node View, double-click one of the discovered hypervisors to launch the Node Form.
-
If the Node Form shows both the SNMP agent and the Web Agent, the hypervisor is successfully discovered and NNMi will be able to monitor the virtual network hosted on the hypervisor.
The license consumption of each virtual machine is 1/10th of that of a physical node.
You can install an SNMP agent on a virtual machine to collect additional data, such as performance metrics. In that case, the license consumption of a virtual machine equals that of a physical node.
Related topics
We welcome your comments!
To open the configured email client on this computer, open an email window.
Otherwise, copy the information below to a web mail client, and send this email to network-management-doc-feedback@hpe.com.
Help Topic ID:
Product:
Topic Title:
Feedback: