VMware vCloud Security
()
About this ebook
Prasenjit Sarkar
Prasenjit Sarkar (@stretchcloud) is a senior member of technical staff at VMware Service Provider Cloud R&D, where he provides architectural oversight and technical guidance for designing, implementing, and testing VMware's Cloud datacenters. He is an author, R&D guy, and a blogger focusing on virtualization, Cloud computing, storage, networking, and other enterprise technologies. He has more than 10 years of expert knowledge in R&D, professional services, alliances, solution engineering, consulting, and technical sales with expertise in architecting and deploying virtualization solutions and rolling out new technologies and solution initiatives. His primary focus is on VMware vSphere Infrastructure and Public Cloud using VMware vCloud Suite. His aim is to own the entire life cycle of a VMware based IaaS (SDDC), especially vSphere, vCloud Director, vShield Manager, and vCenter Operations. He was one of the VMware vExperts of 2012 and is well known for his acclaimed virtualization blog http://stretch-cloud.info. He holds certifications from VMware, Cisco, Citrix, Red Hat, Microsoft, IBM, HP, and Exin. Prior to joining VMware, he served other fine organizations (such as Capgemini, HP, and GE) as a solution architect and infrastructure architect.
Read more from Prasenjit Sarkar
Implementing Cisco UCS Solutions - Second Edition Rating: 0 out of 5 stars0 ratingsImplementing Cisco UCS Solutions Rating: 0 out of 5 stars0 ratingsvSphere High Performance Cookbook - Second Edition Rating: 0 out of 5 stars0 ratingsvSphere High Performance Cookbook Rating: 0 out of 5 stars0 ratings
Related to VMware vCloud Security
Related ebooks
VMware View Security Essentials Rating: 0 out of 5 stars0 ratingsInstant VMware vCloud Starter Rating: 0 out of 5 stars0 ratingsHyper-V Security Rating: 0 out of 5 stars0 ratingsVMware vSphere Design Essentials Rating: 0 out of 5 stars0 ratingsDisaster Recovery Using VMware vSphere Replication and vCenter Site Recovery Manager Rating: 0 out of 5 stars0 ratingsHyper-V Network Virtualization Cookbook Rating: 0 out of 5 stars0 ratingsManaging Virtual Infrastructure with Veeam® ONE™ Rating: 0 out of 5 stars0 ratingsVMware Workstation - No Experience Necessary Rating: 0 out of 5 stars0 ratingsLearning VMware vCloud Air Rating: 0 out of 5 stars0 ratingsScripting VMware Power Tools: Automating Virtual Infrastructure Administration Rating: 0 out of 5 stars0 ratingsUltimate VMware NSX for Professionals Rating: 0 out of 5 stars0 ratingsHow to Cheat at Configuring VmWare ESX Server Rating: 0 out of 5 stars0 ratingsGetting Started with VMware Virtual SAN Rating: 0 out of 5 stars0 ratingsMicrosoft Azure Security Rating: 0 out of 5 stars0 ratingsVMware vSphere Resource Management Essentials Rating: 0 out of 5 stars0 ratingsLearning System Center App Controller Rating: 0 out of 5 stars0 ratingsMastering XenApp® Rating: 0 out of 5 stars0 ratingsMastering NetScaler VPX™ Rating: 0 out of 5 stars0 ratingsHow to Cheat at Microsoft Vista Administration Rating: 0 out of 5 stars0 ratingsMastering VMware Horizon 8: An Advanced Guide to Delivering Virtual Desktops and Virtual Apps Rating: 0 out of 5 stars0 ratingsCitrix® XenApp® 7.x Performance Essentials Rating: 0 out of 5 stars0 ratingsGetting Started with BizTalk Services Rating: 0 out of 5 stars0 ratingsImplementing VMware vCenter Server Rating: 0 out of 5 stars0 ratingsZero Trust Networks with VMware NSX: Build Highly Secure Network Architectures for Your Data Centers Rating: 0 out of 5 stars0 ratingsOracle Web Services Manager Rating: 0 out of 5 stars0 ratings
Computers For You
Elon Musk Rating: 4 out of 5 stars4/5The Invisible Rainbow: A History of Electricity and Life Rating: 4 out of 5 stars4/5101 Awesome Builds: Minecraft® Secrets from the World's Greatest Crafters Rating: 4 out of 5 stars4/5Mastering ChatGPT: 21 Prompts Templates for Effortless Writing Rating: 5 out of 5 stars5/5Standard Deviations: Flawed Assumptions, Tortured Data, and Other Ways to Lie with Statistics Rating: 4 out of 5 stars4/5Slenderman: Online Obsession, Mental Illness, and the Violent Crime of Two Midwestern Girls Rating: 4 out of 5 stars4/5Procreate for Beginners: Introduction to Procreate for Drawing and Illustrating on the iPad Rating: 0 out of 5 stars0 ratingsGrokking Algorithms: An illustrated guide for programmers and other curious people Rating: 4 out of 5 stars4/5The ChatGPT Millionaire Handbook: Make Money Online With the Power of AI Technology Rating: 0 out of 5 stars0 ratingsMaster Builder Roblox: The Essential Guide Rating: 4 out of 5 stars4/5CompTIA IT Fundamentals (ITF+) Study Guide: Exam FC0-U61 Rating: 0 out of 5 stars0 ratingsThe Hacker Crackdown: Law and Disorder on the Electronic Frontier Rating: 4 out of 5 stars4/5SQL QuickStart Guide: The Simplified Beginner's Guide to Managing, Analyzing, and Manipulating Data With SQL Rating: 4 out of 5 stars4/5Alan Turing: The Enigma: The Book That Inspired the Film The Imitation Game - Updated Edition Rating: 4 out of 5 stars4/5Artificial Intelligence: The Complete Beginner’s Guide to the Future of A.I. Rating: 4 out of 5 stars4/5Childhood Unplugged: Practical Advice to Get Kids Off Screens and Find Balance Rating: 0 out of 5 stars0 ratingsHacking: Ultimate Beginner's Guide for Computer Hacking in 2018 and Beyond: Hacking in 2018, #1 Rating: 4 out of 5 stars4/5Ultimate Guide to Mastering Command Blocks!: Minecraft Keys to Unlocking Secret Commands Rating: 5 out of 5 stars5/5Everybody Lies: Big Data, New Data, and What the Internet Can Tell Us About Who We Really Are Rating: 4 out of 5 stars4/5CompTIA Security+ Practice Questions Rating: 2 out of 5 stars2/5Creating Online Courses with ChatGPT | A Step-by-Step Guide with Prompt Templates Rating: 4 out of 5 stars4/5The Professional Voiceover Handbook: Voiceover training, #1 Rating: 5 out of 5 stars5/5
Reviews for VMware vCloud Security
0 ratings0 reviews
Book preview
VMware vCloud Security - Prasenjit Sarkar
Table of Contents
VMware vCloud Security
Credits
Foreword
About the Author
Acknowledgement
About the Reviewers
www.PacktPub.com
Support files, eBooks, discount offers and more
Why Subscribe?
Free Access for Packt account holders
Instant Updates on New Packt Books
Preface
What this book covers
What you need for this book
Who this book is for
Conventions
Reader feedback
Customer support
Errata
Piracy
Questions
1. Installation and Configuration of vCloud Director
VMware vCloud Director architecture
vCloud management and resource clusters
vCloud Director installation prerequisites
Preparing for installation
Installing vCloud Director
Prerequisites
vCloud Director setup
vCloud Director security
Directory (LDAP) services integration
Auditing and logging
Summary
2. Securing Your vCloud Using the vCloud Networking and Security App Firewall
vCloud Networking and Security App Firewall – use case
vCloud Networking and Security App – communication flow
Installing vCloud Networking and Security App
vCloud Networking and Security App – firewall management
Creating a vCloud Networking and Security App firewall rule
vCloud Networking and Security App – flow monitoring
Examining flow monitoring statistics
Summary
3. Mitigating Threats Using vShield Endpoint Security
EPSEC – use case
EPSEC – key benefits
vShield Endpoint architecture
vShield Endpoint components and intercommunication
vShield Endpoint prerequisites
Installing vShield Endpoint
Enable logging on the guest VM
vShield Endpoint – health monitoring
Summary
4. Overview of VMware vCloud Networking and Security Data Security
vCloud Networking and Security Data Security architecture
vCloud Networking and Security Data Security installation
Defining the vCloud Networking and Security Data Security policy
Scanning statistics and reports
Summary
Index
VMware vCloud Security
VMware vCloud Security
Copyright © 2013 Packt Publishing
All rights reserved. No part of this book may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, without the prior written permission of the publisher, except in the case of brief quotations embedded in critical articles or reviews.
Every effort has been made in the preparation of this book to ensure the accuracy of the information presented. However, the information contained in this book is sold without warranty, either express or implied. Neither the author, nor Packt Publishing, and its dealers and distributors will be held liable for any damages caused or alleged to be caused directly or indirectly by this book.
Packt Publishing has endeavored to provide trademark information about all of the companies and products mentioned in this book by the appropriate use of capitals. However, Packt Publishing cannot guarantee the accuracy of this information.
First published: October 2013
Production Reference: 2171013
Published by Packt Publishing Ltd.
Livery Place
35 Livery Street
Birmingham B3 2PB, UK.
ISBN 978-1-78217-096-9
www.packtpub.com
Cover Image by Aniket Sawant (<aniket_sawant_photography@hotmail.com>)
Credits
Author
Prasenjit Sarkar
Reviewers
Harish Chilkoti
Muhammad Zeeshan Munir
Preetam Zare
Acquisition Editors
Erol Staveley
Ashwin Nair
Commissioning Editor
Poonam Jain
Technical Editors
Krutika Parab
Hardik B. Soni
Copy Editors
Gladson Monteiro
Alfida Paiva
Mradula Hegde
Project Coordinator
Akash Poojary
Proofreader
Maria Gould
Indexer
Mariammal Chettiyar
Graphics
Ronak Dhruv
Valentina Dsilva
Disha Haria
Production Coordinator
Arvindkumar Gupta
Cover Work
Arvindkumar Gupta
Foreword
Security is the biggest concern in cloud environments for end users as well as cloud administrators. VMware has security solutions that try to solve all the security concerns.
Prasenjit is a technical evangelist who has authored some books that help readers to understand the key concepts and design considerations. Prasenjit provides the technical guidance in implementing VMware's cloud datacenters.
This book gives readers a step-by-step guide to install, configure, and understand the security in vCloud datacenters. The book starts with the basic architecture of vCloud Director and key concepts associated with it, and goes on to explain the setup and configuration of the vCloud Director. After installing vCloud Director, the book talks about how to secure the interior of your virtual datacenter using vCloud Networking and Security App. There are good details on how to manage the vCloud Networking and Security App firewall. The book then talks about how vShield Endpoint strengthens security for virtual machines by offloading antivirus and anti-malware agent processing to a dedicated Security Virtual Appliance. The book also has details about how to protect the sensitive data using VMware vCloud Networking and Security Data Security.
I believe this book would be very useful for the novice as well as the experienced reader. This is not yet another how-to book. The author has written the book based on his experience when implementing VMware's cloud datacenter, so he is aware of the challenges and issues faced when designing cloud datacenters. I hope that readers will get a thorough understanding of the cloud security configuration and that would eventually make cloud computing more secure.
Harish Chilkoti
About the Author
Prasenjit Sarkar is a senior member of the technical staff in VMware Service Provider Cloud R&D, where he provides architectural oversight and technical guidance to design, implement, and test VMware's Cloud datacenters. He is an author, R&D guy, and a blogger focusing on virtualization, cloud computing, storage, networking, and other enterprise technologies.
He has more than 10 years of expert knowledge in R&D, professional services, alliances, solution engineering, consulting, and technical sales, with expertise in architecting and deploying virtualization solutions, and rolling out new technology and solution initiatives. His primary focus is on VMware vSphere Infrastructure and the public cloud using VMware vCloud Suite.
One of his other focuses is to own the entire life cycle of a VMware-based IaaS (SDDC), in particular, vSphere, vCloud Director, vShield Manager, and vCenter Operations. He is one of the VMware vExperts in 2012 and 2013 and well known for his acclaimed virtualization blog, http://stretch-cloud.info. Prasenjit holds certifications from VMware, Cisco, Citrix, RedHat, Microsoft, IBM, HP, and Exin. Prior to joining VMware, Prasenjit has served other fine organizations (such as Capgemini, HP, and GE) as a solution architect and infrastructure architect.
You can follow him on Twitter at @stretchcloud.
Acknowledgement
I would like to thank and dedicate this book to my family. Without their endless and untiring support, this book would not have been possible.
I want to thank Michael Haines for his review and guidance. Michael is a Senior Cloud Networking and Security Architect and Engineer for the Global Technical Services Engineering team at VMware. Michael provides security architecture and development of VMware's Cloud solutions for service providers, enterprise customers, and partners throughout Europe and Asia Pacific. He is also responsible for providing deep technical expertise and interfacing directly with engineering and product Management to support and develop current and future vCloud Networking and Security products and