Cloud & Networking
Reader small image

You're reading from  Learning PowerCLI - Second Edition

Product typeBook
Published inFeb 2017
Publisher
ISBN-139781786468017
Edition2nd Edition
Tools
PowerCLI
Concepts
Cloud Computing
Right arrow
Author (1)
Robert van den Nieuwendijk
Robert van den Nieuwendijk
author image
Robert van den Nieuwendijk

Robert van den Nieuwendijk is an IT veteran from the Netherlands with over thirty years of experience in Information Technology. He holds a bachelor degree in software engineering. After working a few years as a programmer of air traffic control and vessel traffic management systems, he started his own company Van den Nieuwendijk Informatica in 1988. Since then he has worked as a freelance systems administrator of OpenVMS, Windows Server, Linux, and VMware vSphere systems, for Dutch governmental organizations and cloud providers. During winter he is also a ski and snowboard instructor at an indoor ski school. With his background as a programmer, he always tries to make his job easier by writing programs or scripts to perform repeating tasks. In the past, he used the C programming language, OpenVMS DCL, Visual Basic Script and KiXtart to do this. Now, he uses Microsoft PowerShell and VMware PowerCLI for all of his scripting work. Robert is a frequent contributor and moderator at the VMware VMTN Communities. Since 2012 VMware awarded him the vExpert title for his significant contributions to the community and a willingness to share his expertise with others. He has a blog at http://rvdnieuwendijk.com where he writes mainly about VMware PowerCLI, Microsoft PowerShell, and VMware vSphere. If you want to get in touch with Robert, then you can find him on Twitter. His username is @rvdnieuwendijk. Robert is also the author of Learning PowerCLI, Packt Publishing.
Read more about Robert van den Nieuwendijk

Right arrow

Chapter 14. Using REST API to manage NSX and vRealize Automation

Not all of the VMware products have native support in PowerCLI. Luckily, most VMware products have a representational state transfer (REST) API. PowerShell has the Invoke-RestMethod cmdlet that makes it the easy-to-use REST APIs. In this chapter, we will focus on using REST APIs from PowerCLI. We will use examples from VMware NSX and VMware vRealize Automation to show you the power of the REST APIs.

Just like VMware vSphere is VMware's product for compute virtualization, VMware NSX is VMware's product for network virtualization. It offers distributed switching and routing, distributed firewalling, load balancing, Network Address Translation (NAT), Virtual Private Network (VPN), and many more features. VMware NSX is one of the products you can use to build a Software Defined Data center (SDDC).

vRealize Automation (vRA) is VMware's product to create a self-service portal for an Infrastructure as a Service (IaaS) solution. In...

Connecting to REST API servers

REST APIs provide a way to connect to servers by making requests in the Hypertext Transfer Protocol (HTTP) or the Hypertext Transfer Protocol Secure (HTTPS). The requests you send to the servers are in the form of a Uniform Resource Identifier (URI). The responses to the requests may be in Extensible Markup Language (XML), HyperText Markup Language (HTML), or JavaScript Object Notation (JSON). REST APIs use a stateless protocol. This means that the servers don't know what your previous request was. You have to send all the necessary information, such as credentials, in every request you make.

Tip

To connect your PowerCLI session to an NSX Manager, access to port 443/TCP is required for REST API requests.

The Invoke-RestMethod cmdlet sends an HTTP or HTTPS request to a RESTful web service. The syntax of the Invoke-RestMethod cmdlet is as follows:

Invoke-RestMethod [-Uri] <Uri> [-Body <Object>] [-Certificate
    <X509Certificate>] [-CertificateThumbprint...

Managing NSX logical switches

NSX logical switches are distributed switches just like vSphere distributed switches. Each logical switch is mapped to a unique Virtual eXtensible LAN (VXLAN). The VXLAN carries the virtual machine traffic over the physical network. The physical network can be a routed OSI layer three network. All the ESXi hosts in a vSphere cluster can share one or more NSX logical switches.

In the following sections, Creating NSX logical Switches , Retrieving NSX logical switches , and Removing NSX logical switches , you will learn to create, retrieve, and remove NSX logical switches using the NSX REST API.

Creating NSX logical switches

In the following screenshot of the vSphere Web Client, you can see that in order to create a new NSX logical switch you have to specify a name, transport zone, and the replication mode. Optionally, you can specify a description, enable IP discovery, and enable MAC learning.

In the NSX vSphere API Guide, NSX 6.2 for vSphere, example 7-23. Create...

Managing NSX logical (distributed) routers

Before NSX, if you created a router in your network, it would be a physical or virtual machine connecting two or more networks. All of the traffic from one of the networks to another network connected to the router had to go through the router. Even if two virtual machines connected to different networks were on the same host, if the router were physical or virtual on another host, the traffic would go from the virtual machine off the host to the router and then back to the host and the other virtual machine. In NSX, routing is distributed over the hosts. Every host does a part of the routing. Traffic from one virtual machine to another virtual machine on the same host on a different network connected to the same router does not leave the host in NSX. This is a huge advantage of routing in NSX over traditional routing. NSX Edge logical routers are used for East-West network traffic. This means network traffic within a data center. In the following...

Managing NSX Edge services gateways

NSX Edge services gateways are for the connection between your data center and external networks. This is what we also call North-South network traffic. NSX Edge services gateways are deployed as a virtual appliance and provide services, such as VPN, NAT, load balancing, DHCP, and firewall.

Retrieving NSX Edge services gateways

To retrieve NSX edge services gateways, we use the same URI as in the preceding section, Creating NSX Edge services gateways , and save it in the variable $Uri, as follows:

PowerCLI C:\> $Uri = "https://$NSXManager/api/4.0/edges"

We use the Invoke-RestMethod cmdlet with the GET method to retrieve the edges and save the result in the variable $xml, using the following command:

PowerCLI C:\> $xml = Invoke-RestMethod -Uri $Uri -Method Get
    -Headers $Headers

Because the Invoke-RestMethod call returns the NSX edge services gateways and the NSX logical (distributed) routers, we pipe the output of $xml.pagedEdgeList.edgePage...

Connecting to vRA servers

Using VMware vRealize Automation, you can create a web portal to automate the deployment and management of applications on multicloud environments, such as vSphere, vCloud Director, and Amazon Web Services. The service catalog provides items that users can request.

There are some differences between using the REST API of NSX and the REST API of vRA. The REST API of vRA uses JavaScript Object Notation (JSON) instead of XML. Instead of basic authentication, the REST API of vRA uses a bearer token. You get a bearer token by authenticating to the vRA identity service.

Tip

To test the examples about vRealize Automation in this chapter, you can use the VMware Hands-On Lab HOL-1721-USE-1 - vRealize Automation 7 Basics or any other vRealize Automation Hands-On lab available on http://labs.hol.vmware.com/ . You can use the SEND TEXT button in the Hands-On Lab to send a text to the console. The button is on the upper left-hand side of your window.

In the following example...

Managing vRA tenants

A tenant is an organizational unit in vRA that can be a company or a business unit in an enterprise. After deploying vRA, you will only have a default tenant named vsphere.local. To create a new tenant, you have to connect to vRA using the administrator@vsphere.local account that has the system administrator role in the vsphere.local tenant. In the preceding section, Connecting to vRA servers , we have already retrieved a bearer token for the administrator@vsphere.local account. In the following section, Creating vRA tenants , we will create a new tenant named Research.

Creating vRA tenants

To create a new tenant, we save the tenant name in the variable $Tenant, as follows:

PowerCLI C:\> $Tenant = 'research'

We will save the URI specifying the identity service and the name of the new tenant in the variable $Uri, using the following command:

PowerCLI C:\> $Uri = "https://$vRAServer/identity/api/tenants/$Tenant"

Next, we create a JSON here-string containing id, urlName...

Retrieving vRA business groups

A business group in vRA is a subdivision of the users in a tenant. A business group is also named a subtenant in the vRealize Automation API. Each business group must have a reservation of servers, storage, and networks.

To retrieve the vRA business groups of the vsphere.local tenant, we connect to the vRA server using the cloudadmin@corp.local account that has the tenant administrator role and the IaaS administrator role in the vsphere.local tenant. The following code is similar to the code in the preceding section, Connecting to vRA servers . First, we will save the server name, username, password, and tenant name in variables, using the following commands:

PowerCLI C:\> $vRAServer = 'vra-01a.corp.local'
PowerCLI C:\> $Username = 'cloudadmin@corp.local'
PowerCLI C:\> $Password = 'VMware1!'
PowerCLI C:\> $Tenant = 'vsphere.local'

We will create a JSON here-string to store the username, password, and tenant name in the variable $Body, as follows...

Managing vRA reservations

Reservations in vRealize Automation are resources, such as CPU, memory, storage, and network port groups reserved for the business group. You have to create a business group before you can create a reservation. In the following sections, Creating vRA reservations and Retrieving vRA reservations , we will create and retrieve reservations.

Creating vRA reservations

To create a reservation, you have to create a JSON string that specifies the properties of the reservation. In the following code, we will make a here-string containing the specification of the reservation we are going to create. We will save the here-string in the variable $Body. The specification includes properties such as name, reservationTypeId, tenantId, subTenantId, and ExtensionData that contains the reserved values for the reserved networks, memory, compute resources, and storages. The here-string is too big to include in this chapter. Please download the code from the Packt website https://www...

Managing vRA machines and applications

In vRA, new machines and applications are created by selecting them from the catalog, specifying the required settings, such as the number of machines or applications to create, and submitting a request to create the machines or applications. In the following sections, Retrieving entitled catalog items , Retrieving a template request for an entitled catalog item , Creating vRA machines , Viewing details of a machine request , and Retrieving provisioned resources , we will walk you through the workflow to provision new machines or applications.

Retrieving entitled catalog items

We will use devuser@corp.local user account to deploy a CentOS 6.6 machine. First, we have to connect to the vRA server with the devuser@corp.local account using the following code we have used before in the section Connecting to vRA servers :

$vRAServer = 'vra-01a.corp.local' 
$Username = 'devuser@corp.local' 
$Password = 'VMware1!' 
$Tenant = 'vsphere.local...

Summary

In this chapter, you learned to use REST APIs from PowerCLI with examples from VMware NSX and vRealize Automation. You saw how to connect to NSX servers using basic authentication and to connect to vRealize Automation servers with a bearer token. The NSX examples used XML and the vRealize Automation examples used JSON.

We discussed managing NSX logical switches, logical (distributed) routers, and edge services gateways. The vRealize Automation examples were about managing vRA tenants, reservations, and resources.

In the following chapter, you will learn how to report with PowerCLI.

lock icon
The rest of the chapter is locked

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at £13.99/month. Cancel anytime
Start free trial
Previous Chapter
Chapter 21 of 22
Next Chapter
You have been reading a chapter from
Learning PowerCLI - Second Edition
Published in: Feb 2017Publisher: ISBN-13: 9781786468017
© 2017 Packt Publishing Limited All Rights Reserved
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Sign up now
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Start free trial
Renews at £13.99/month. Cancel anytime

Author (1)

author image
Robert van den Nieuwendijk

Robert van den Nieuwendijk is an IT veteran from the Netherlands with over thirty years of experience in Information Technology. He holds a bachelor degree in software engineering. After working a few years as a programmer of air traffic control and vessel traffic management systems, he started his own company Van den Nieuwendijk Informatica in 1988. Since then he has worked as a freelance systems administrator of OpenVMS, Windows Server, Linux, and VMware vSphere systems, for Dutch governmental organizations and cloud providers. During winter he is also a ski and snowboard instructor at an indoor ski school. With his background as a programmer, he always tries to make his job easier by writing programs or scripts to perform repeating tasks. In the past, he used the C programming language, OpenVMS DCL, Visual Basic Script and KiXtart to do this. Now, he uses Microsoft PowerShell and VMware PowerCLI for all of his scripting work. Robert is a frequent contributor and moderator at the VMware VMTN Communities. Since 2012 VMware awarded him the vExpert title for his significant contributions to the community and a willingness to share his expertise with others. He has a blog at&nbsp;http://rvdnieuwendijk.com where he writes mainly about VMware PowerCLI, Microsoft PowerShell, and VMware vSphere. If you want to get in touch with Robert, then you can find him on Twitter. His username is @rvdnieuwendijk. Robert is also the author of Learning PowerCLI, Packt Publishing.
Read more about Robert van den Nieuwendijk

Other recommended products

Related to this chapter

Implementing VxRail HCI Solutions

Implementing VxRail HCI Solutions

VxRail Appliance is a hyper-converged infrastructure powered by the VMware vSAN technology for software-defined storage. It simplifies the day 0 and day 2 operation and configuration. Implementing VxRail HCI Solutions provides end-to-end guidance for planning, designing, deploying, and administering the available VxRail Appliance solutions.

BookJun 2021364 pages
VMware vSphere 6.7 Data Center Design Cookbook

VMware vSphere 6.7 Data Center Design Cookbook

VMware vSphere 6.7 Data Center Design Cookbook, Third Edition includes recipes for upgrading to 6.7, vCenter HA; operational improvements; cutting-edge, high-performance storage access such as RDMA and Pmem; security features such as encrypted vMotion and VM-level encryption; Proactive HA; HA Orchestrated Restart; Predictive DRS; and more.

BookMar 2019392 pages
Data Center Virtualization Certification: VCP6.5-DCV Exam Guide

Data Center Virtualization Certification: VCP6.5-DCV Exam Guide

Certified VCP-DCV professionals must know to deploy and configure vSphere storage, networking, security and they should also be able to create and administer vSphere virtual machines. This comprehensive guide shows you how to optimize, secure, and troubleshoot all components of the implementation and helps you confidently approach the 2V0-622 exam.

BookAug 2018598 pages
VMware vSphere 6.5 Cookbook

VMware vSphere 6.5 Cookbook

VMware vSphere 6.5 is the next-generation infrastructure for next-generation applications. VMware vSphere is a complete and robust virtualization product suite that helps transforming data centers into simplified on-premises cloud infrastructures, providing for automation and orchestration of workload deployment and life cycle management of the infrastructure. Our book focuses on the latest release of VMware vSphere and follows a recipe-based approach, giving you hands-on instructions required to deploy and manage a vSphere environment.

BookJan 2018574 pages
VMware vSphere 6.7 Cookbook

VMware vSphere 6.7 Cookbook

VMware vSphere 6.7 is the next-generation virtualization product suite that helps you transform data centers into simplified on-premise cloud infrastructures through effective automation and orchestration of workload deployment. With practical, hands-on recipes, this book will help you manage, secure and monitor your vSphere 6.7 environment.

BookAug 2019570 pages
Mastering VMware vSphere 6.7

Mastering VMware vSphere 6.7

VMware vSphere has been updated to version 6.7 with a lot of changes around simplifying management, infrastructure and workloads security, and providing a seamless hybrid cloud experience. This book covers all essential tasks that allows you to build secure, reliable and scalable vSphere environment

BookMar 2019756 pages
Powershell Core 6.2 Cookbook

Powershell Core 6.2 Cookbook

PowerShell Core is the open-source edition of PowerShell that works on Linux, macOS, and Windows. This book will be your one stop guide to learning everything new about PowerShell Core and how you can make the most of the changes and upgrades.

BookApr 2019372 pages
vSphere High Performance Cookbook

vSphere High Performance Cookbook

vSphere is a mission critical piece of software for many businesses. It is a complex tool, and incorrect design and deployment can create performance-related issues that can negatively affect the business. This book is focused on solving these problems as well as providing best practices and performance-enhancing techniques. This edition is fully updated to include all the new features in version 6.5 as well as the latest tools and techniques to keep vSphere performing its best. By the end of this book, you will be able to identify, diagnose, and troubleshoot operational faults and critical performance issues in vSphere 6.5.

BookJun 2017338 pages
Mastering VMware vSphere 6.5

Mastering VMware vSphere 6.5

VMware vSphere 6.5 provides a powerful, flexible and secure foundation for next-generation applications. This book is based on VMware vSphere 6.5 which empowers you to virtualize any complex application with ease.

BookDec 2017598 pages
PowerShell Core for Linux Administrators Cookbook

PowerShell Core for Linux Administrators Cookbook

PowerShell Core for Linux Administrators Cookbook will take you through a complete tour of understanding .NET Core, PowerShell in general, PowerShell on Linux for management and automation. This book will also cover advanced concepts on how to use PowerShell and manage Docker containers, Cloud, VMware and SQL databases.

BookNov 2018566 pages

Personalised recommendations for you

Based on your interests and search pattern

Designing and Implementing Microsoft Azure Networking Solutions

Designing and Implementing Microsoft Azure Networking Solutions

Designing and Implementing Microsoft Azure Networking Solutions Exam Ref AZ-700 is an all-encompassing guide to the AZ-700 exam and contains all the information you need to succeed in the world of virtual networking with Azure. With this book, you will be fully prepared for the exam and the world of cloud networking.

BookAug 2023524 pages
Microsoft 365 Security, Compliance, and Identity Administration

Microsoft 365 Security, Compliance, and Identity Administration

The Microsoft 365 Security, Compliance, and Identity Administration is a comprehensive guide that helps you employ Microsoft 365's robust suite of features and empowers you to optimize your administrative tasks.

BookAug 2023630 pages
Zero Trust Overview and Playbook Introduction

Zero Trust Overview and Playbook Introduction

Get started on Zero Trust with this step-by-step playbook and learn everything you need to know for a successful Zero Trust journey with tailored guidance for every role, covering strategy, operations, architecture, implementation, and measuring success. This book will become an indispensable reference for everyone in your organization.

BookOct 2023240 pages
The Self-Taught Cloud Computing Engineer

The Self-Taught Cloud Computing Engineer

This self-study book helps you master multiple clouds, including AWS, Azure, and GCP, and serves as a roadmap to becoming a certified cloud computing expert. The book will guide you to develop a professional cloud career by helping you build a broad cloud knowledge base, developing hands-on cloud computing skills, and getting cloud certified.

BookSep 2023472 pages
Technology Operating Models for Cloud and Edge

Technology Operating Models for Cloud and Edge

This book will help you build and create ownership of a technology operating model, as well as connect your leadership with engineering and operations, keeping your internal and external customers in mind. It provides practical tips on why, where, and how to make the cloud and edge platform paradigm sing for you, your team, and your organization.

BookAug 2023228 pages
Azure Architecture Explained

Azure Architecture Explained

Azure is the preferred platform to build mission-critical and secure apps. This book provides comprehensive coverage of essential Azure products, services, and solutions vital for every solution architect's success. Elevate your knowledge and master the critical components of Azure to excel in your role with Azure Architecture Explained.

BookSep 2023446 pages
Pentesting Active Directory and Windows-based Infrastructure

Pentesting Active Directory and Windows-based Infrastructure

This practical guide helps you explore the pentesting of Microsoft infrastructure in detail, and enhances your offensive skillset by showing you the different ways to perform security assessment. This book will help blue teamers and IT engineers get up to speed with possible security issues they may encounter in their Windows environments.

BookNov 2023360 pages
Practical Ansible

Practical Ansible

In Practical Ansible, you'll work with the latest release of Ansible and learn to solve complex issues quickly with the help of task-oriented scenarios. You'll start by installing and configuring Ansible to automate monotonous and repetitive IT tasks and get to grips with concepts such as playbooks, inventories, plugins, collections, and network modules.

BookSep 2023420 pages
Windows 11 for Enterprise Administrators

Windows 11 for Enterprise Administrators

Microsoft’s launch of Windows 11 is a step toward satisfying the enterprise administrator’s needs for better management and enhanced user experience customization. This book provides the enterprise administrator with the knowledge needed to fully utilize the advanced feature set of Windows 11 Enterprise.

BookOct 2023286 pages
The Linux DevOps Handbook

The Linux DevOps Handbook

This book is for software and IT professionals seeking knowledge on Linux systems and DevOps practices. This book will provide you with guidance and tools to learn and gain proficiency in managing Linux-based infrastructures and knowledge of DevOps.

BookNov 2023428 pages2