Bosh resurrection is one of the amazing features that are available in the Tanzu Kubernetes Grid Integrated environment. Recently, I was working on an issue on the Tanzu Kubernetes Grid Integrated environment and learned something new. I thought it might help someone else and hence writing it down here. What is BOSH Resurrector ? The... Continue Reading →
TKGI Cluster creation fails with error “1 of 7 pre-start scripts failed. Failed Jobs: pks-nsx-t-prepare-master-vm”
One of the commonly reported issues in TKGI is cluster creation fail with error 1 of 7 pre-start scripts failed. Failed Jobs: pks-nsx-t-prepare-master-vm. In this blog post, we will see more about the issue. Symptoms: Bosh tasks fails with the below error Task 305253 | 02:58:24 | Updating instance master: master/6415b432-ccc2-4faa-89c8-911914cb9d44 (0) (canary) (00:02:16) L... Continue Reading →
Create a custom VM_TYPE template in PKS/TKGI
We have seen couple of requests from our customer about how to create a custom vm type in PKS as the cluster has plenty of resources and wants to create a VM with high CPU, disk, and RAM resources. Though the steps are available in the product knowledge base, some times it gets confusing. In this... Continue Reading →
Accessing Bosh Director using API
In our last blog post, we saw how to create a read-only client in bosh director which can be used by monitoring or reporting system. In this blog post, we will try to use that user and run some API calls to pull some data from the bosh director. In my lab environment, I have... Continue Reading →
How to add a Read-Only user in Bosh
Recently, a customer came up with a request on how they can create a user with less privileges in bosh environment to run any curl queries as in here. In this blog post, we will see how to add a read-only BOSH user who has read access to the director but does not have admin... Continue Reading →
Enable Access Logging on the NSX-T LB and VirtualServer created by Enterprise PKS
Recently, one of my customer asked if they can enable Access Log for the load balancer created in NSX-T for his Enterprise PKS clusters. By default we will not be able to edit or modify any settings on the LB/virtual server from the NSX-T GUI, if it's created by ncp. In this blog post, we... Continue Reading →
Updating the Harbor certificate in Enterprise PKS fails
In this blog post, I will discuss about an issue faced while updating the harbor custom certificate from Enterprise PKS Management Console(EPMC). Review this Pivotal document for details on how to update the custom certificate on harbor vm in Enterprise PKS. Symptoms: Error: "failed to apply Harbor config" This issue occurs if this is the... Continue Reading →
Integration: Harbor with External LDAP
In this blog, we will see how to integrate Harbor with external LDAP.Note: Authentication mode in harbor can only be updated during initial installation. To change this, you will have to re-install the harbor vm. Update Harbor Tile: Login to the operations manager and select the harbor tile Go to settings > Authentication and select... Continue Reading →
Rotating Operations Manager Root CA with Custom CA certificate
Recently a customer reported an issue with harbor UAA login after using custom certificates and we identified the root cause was the mismatch in the root ca of harbor and opsmanager. By default, the harbor vm root CA is same as the Opsman root CA. We suggested the customer to get the opsman root ca... Continue Reading →
How to upgrade Operations Manger 2.5.6 to 2.5.20
Earlier in a blog we discussed how to install operations manager 2.5.6. In this blog post, we will see step by step details of how to upgrade an operations manager to a later version. For this blog, I will upgrade opsman 2.5.6 to version 2.5.20. However, the steps will be the same for all the... Continue Reading →
Kontainers 