NSX – Export/Import Service Composer profiles

You can export a Service Composer configuration (along with the security groups to which the security policies are mapped) and save it to your desktop. The saved configuration can be used as a backup for situations where you may accidentally delete a policy configuration, or it can be exported for use in another NSX Manager environment.

Procedure

1. Log in to the vSphere Web Client.

2. Click Networking & Security and then click Service Composer.

3. Click the Security Policies tab.

4. Select the security policy that you want to export.

5. Click Actions and then click the Export Service Configuration icon.

6. Type a name and description for the configuration that you are exporting.

7. If desired, type a prefix to be added to the security policies and security groups that are being exported. If you specify a prefix, it is added to the target security policy names thus ensuring that they have unique names.

8. Click Next.

9. In the Select security policies page, select the security policy that you want to export and click Next.

10. The Ready to complete page displays the security policies along with associated objects (security groups on which these have been applied, as well as Endpoint services, firewall rules, and network introspection services) to be exported.

11. Click Finish.

12. Select the directory on your computer where you want to download the exported blueprint and click Save.

You can import a saved Service Composer configuration (along with the security groups to which the security policies are mapped) either as a backup or to restore configuration on a different NSX Manager.

Procedure

1. Log in to the vSphere Web Client.

2. Click Networking & Security and then click Service Composer.

3. Click the Security Policies tab.

4. Click Import Service Configuration icon.

5. Select the configuration file that you want to import.

 

6 .If desired, type a suffix to be added to the security policies and security groups that are being imported. If you specify a suffix, it is added to the security policy names being imported thus ensuring that they have unique names.

7. Click Next. Service Composer verifies that all services referred to in the configuration are available in the destination environment. If not, the Manage Missing Services page is displayed, where you can map missing services to available target services. The Ready to complete page displays the security policies along with associated objects (security groups on which these have been applied, as well as Endpoint services, firewall rules, and network introspection services) to be imported.

8. Click Finish.

The imported security policies are added to the top of the security policy table (above the existing policies) in the target NSX Manager. The original order of the imported policies is preserved.

Leave a Reply

Your email address will not be published. Required fields are marked *