Category Archives: vSphere 6

CMSSO-UTIL – Failed Service Registration

All credit for this post belongs to one of my colleagues called Imran Mughal, a very talented vSphere engineer!

We recently came across an issue during some site migration work on our PSC’s. The scenario which drove our PSC site migration work was the fact that we noticed all of our vCenter Servers were trying to authenticate users via a single load balanced pair of PSCs regardless of physical location instead of the PSCs in the datacentre local to the vCenter. This was due to us only using a single site name that covered 4 separate datacentre locations. All of our PSCs regardless of which physical location formed part of this single site.

As we already had live service running on out vCenters we decided to re-direct vCenters to another PSCs and rebuild in pairs (as there is currently no way to manually change the site name or create new sites over an existing deployment).

This was done using a combination of these two KB articles:

KB2131191 & KB2113917

Continue reading

Platform Service Controller Replication

Platform Service Controller replication can be setup in multiple ways, when I ran through a test configuration of 4 sites, each with a single PSC. I was wondering how replication would be automatically configured out of the box. When I installed the PSCs I used the previously configured PSC to configure the newly built PSC:

PSC1 (Built First) <—- PSC2 (built second) <—- PSC3 (built third) <—- PSC4 (built fourth)

The following commands allowed me to view the replication configuration and then setup a topology of my choice:

vdcrepadmin -f showservers -h FQDN_of_Local_PSC -u administrator -w password

Continue reading

Platform Service Controller

What is Platform Services Controller 6.0 (PSC)?
The Platform Services Controller (PSC) is a component of the vSphere Suite. The PSC deals with identity management for administrators and applications that interact with the vSphere platform.
What are the key capabilities of PSC 6.0?
  • PSC 6.0 remains a multi-master model, as was introduced in vSphere 5.5 in the form of vCenter Single Sign-On.
  • It can be deployed either in an Appliance-based or Windows-based flavor, both able to participate in multi-master replication also both Appliance-based or Windows-based PSCs can interoperate with Appliance-based or Windows-based vCenter Servers.
  • It can handle the storing and generation of the SSL certificates within your vSphere environment.
  • It handles the storing and replication of your VMware License Keys
  • It handles the storing and replication of your permissions via the Global Permissions layer.
  • It handles the storing and replication of your Tags and Categories.
  • It has a built-in feature for automatic replication between different, logical SSO sites.
  • There is only one single default domain for the identity sources.
What are the components that are installed with Platform Services Controller 6.0?

Components that are installed with PSC 6.0 include:

  • VMware Appliance Management Service (only in Appliance-based PSC)
  • VMware License Service
  • VMware Component Manager
  • VMware Identity Management Service
  • VMware HTTP Reverse Proxy
  • VMware Service Control Agent
  • VMware Security Token Service
  • VMware Common Logging Service
  • VMware Syslog Health Service
  • VMware Authentication Framework
  • VMware Certificate Service
  • VMware Directory Service


VSAN 5.5 vs. VSAN 6.0 – Performance Testing

After upgrading VSAN 5.5 to VSAN 6.0 I thought it would be a good idea to run the same set of tests that I ran previously (VSAN 5.5 Performance Testing) to see how much of a performance increase we could expect.

The test was run using the same IOAnalyser VMs and test configuration, on the same hardware. The only different was the vCenter/ESXi/VSAN version.

                  Read Only   Write Only  Real World
VSAN 6 IOPs (Sum) 113,169.88  28,552.85   38,658.47
VSAN 5 IOPs (Sum) 61,964.81   5,666.06    24,228.98

The detailed test results for VSAN 6, using a “Real World” test pattern (70% Random / 80% Read) as below:


Great increase in IOPs!

VSAN Health Plugin – Broken Web Client

Today I installed the VSAN Health Plugin – VSAN 6 Health Check Plugin. Unfortunately I did not RTFM (Read the… frigging… manual).

When I logged into the web client after restarting the vCenter services this is all I could see:


Turns out I didn’t install the msi using the “run as admin” option… really should have read that manual.

Cormac Hogan to the rescue VMware Blogs

vSphere 6 Deployment Topologies

vCenter Server with Embedded PSC and Database

The embedded PSC is meant for standalone sites where vCenter Server will be the only SSO integrated solution. In this case replication to another PSC should not be required and is not possible.

  • Device is a single point of failure.
  • Supports Windows and VCSA (vCenter Server Appliance) based deployments
  • Replication between PSCs not required
  • Multiple standalone instances supported
  • Sufficient for small scale deployments
  • Not suitable for use with other VMware products (vRA, NSX etc.)
  • Easy to deploy and maintain


Continue reading