A user is required for the operation of the BVQ VMware Scanner, who should at least have read-only access to the VMware vCenter system. The read-only permission for the user must be defined at the vCenter level. Permissions in a lower level (e.g. Datacenter, Cluster, ...) will lead to scan errors.
Please create this user before configuring the BVQ Scanner. We recommend to name the user: bvq
Create or select the right user role
Go to user rolesscreenshot ...
Duplicate (1) the read-only role and store it as BVQ-Read-only (2) and add the following privileges (3)
Datastore - browse datastore
Profile driven storage - view
Storage views - viewscreenshot ...
Create the BVQ User for the vCenter
Create the bvq user with the role "BVQ-read-only"
create it as vsphere.local or as AD user - please remember to add it correctly into the scanner dialog laterscreenshot ...
Add the user to the vCenter
Add the user to the vCenter (4) and do not forget to define it for all childrenClick here to expand...
Add the right vCenter Statistics
- Interval duration has to be 5 minutes
Level 2 is sufficient for standard VMware
Level 3 should be used for VSANsClick here to expand...
Gather information for BVQ Scanner configuration
BVQ scanners need the following information to be configured for each vCenter system:
- vCenter IP address or hostname
- vCenter user domain
- vCenter ID and password of the bvq user
Preparation for the BVQ Server
For BVQ Servers which are gathering information from NetApps and vCenters, the correct DNS configuration is important.
Make sure that the BVQ Server, NetApp systems and vCenters are in the same domain and have the same DNS server configured.
This is required to match the DNS-Name of the NFS Datastores to the corresponding IP Adresses of the NFS file shares on NetApp systems.