Download pdf - VCE Vision Intelligent Operations Version 2.6 Technical ... · PDF fileVCE Vision ™ Intelligent Operations Version 2.6 Technical Overview VCE ... A Vblock System and the components

www.vce.com

VCE Vision™ Intelligent OperationsVersion 2.6Technical Overview

Document revision 2.0

April 2015

Revision history

Date Document revision Description of changes

April 2015 2.0 Updated to include the RCM Content Pre-positioning feature.

December 2014 1.0 New release of the product.

VCE Vision™ Intelligent Operations Version 2.6 Technical Overview Revision history

2© 2015 VCE Company, LLC.

All Rights Reserved.

Contents

Introduction.................................................................................................................................................4

Accessing VCE documentation.................................................................................................................5

VCE Vision™ Intelligent Operations..........................................................................................................6Introduction to VCE Vision software.......................................................................................................6Products and features............................................................................................................................ 6Architecture............................................................................................................................................ 9

VCE Vision System Library......................................................................................................................10Introduction to System Library..............................................................................................................10Discovery..............................................................................................................................................11Identification......................................................................................................................................... 12Health monitoring................................................................................................................................. 12Logging and events.............................................................................................................................. 13Configuration backup and recovery......................................................................................................14

VCE Vision Plug-in for vCenter............................................................................................................... 17Plug-in for vCenter overview................................................................................................................ 17

VCE Vision software and Vblock System Compliance..........................................................................18Compliance Checker............................................................................................................................ 18Compliance Policy Designer................................................................................................................ 19

RCM Content Pre-positioning..................................................................................................................20RCM Content Pre-positioning...............................................................................................................20

VCE Vision Adapter for vCenter Operations Manager.......................................................................... 22Adapter for vCenter Operations Manager............................................................................................ 22Adapter for vCenter Operations Manager dashboards........................................................................ 22

Application Programming Interfaces......................................................................................................24API for System Library......................................................................................................................... 24API for Compliance Checker................................................................................................................ 24API for Vision Security..........................................................................................................................24

SNMP Integration......................................................................................................................................26SNMP with VCE Vision software..........................................................................................................26

Software Development Kit....................................................................................................................... 27SDK for VCE Vision software............................................................................................................... 27

Contents VCE Vision™ Intelligent Operations Version 2.6 Technical Overview



IntroductionThis document provides a high-level technical overview of the VCE Vision™ Intelligent Operationssoftware.

The target audience for this document includes customers, VCE vArchitects, and VCE partners.

The VCE Glossary provides terms, definitions, and acronyms that are related to the Vblock System.

To suggest documentation changes and provide feedback on this book, send an e-mail to [email protected]. Include the name of the topic to which your feedback applies.

VCE Vision™ Intelligent Operations Version 2.6 Technical Overview Introduction



mailto:[email protected]?Subject=Documentation Feedback&body=Document: VCEVisionTechOverview2.0.0 Please provide your comments:

Accessing VCE documentationSelect the documentation resource that applies to your role.

Role Resource

Customer support.vce.com

A valid username and password are required. Click VCE Download Center to access thetechnical documentation.

VCE Partner partner.vce.com

A valid username and password are required.

Cisco, EMC, VCE, orVMware employee

portal.vce.com

VCE employee sales.vce.com/saleslibrary

or

vblockproductdocs.ent.vce.com

Accessing VCE documentation VCE Vision™ Intelligent Operations Version 2.6 Technical Overview



http://support.vce.com

https://partner.vce.com/

https://portal.vce.com/

https://sales.vce.com/saleslibrary/

http://vblockproductdocs.ent.vce.com

VCE Vision™ Intelligent Operations

Introduction to VCE Vision softwareThe VCE Vision software suite provides an integrated set of software products for managing a datacenter. VCE Vision software is the first software suite to provide an intelligent solution for managingoperations in a converged infrastructure environment. These tools enable and simplify convergedoperations by dynamically providing a high level of intelligence into your existing management toolset.

VCE Vision software enables VCE customers and third-party consumers to know that the Vblock® Systemexists, where it is located, and what components it contains. It reports on the health or operating status ofthe Vblock System. VCE Vision software also lets you rapidly verify that a Vblock System is running thecurrently supported software or firmware for a particular Release Certification Matrix (RCM). Additionally,you can use VCE Vision software to ensure your Vblock System complies with VCE security bestpractices.

VCE Vision software effectively acts as a mediation layer between your system and the managementtools you use now. The software allows for intelligent discovery by providing a continuous, near real-timeperspective of your compute, network, storage, and virtualization resources as a single object, ensuringthat your management tools reflect the most current state of your Vblock System.

VCE Vision software provides the Vblock System information natively through VMware vCenter Serverand vCenter Operations Manager. You can also consume information about a Vblock System through apublic REST API or SNMP interface.

Products and featuresVCE Vision software is a suite of products that provide a robust feature set for your data center.

VCE Vision software includes the following products:

• VCE Vision™ System Library

• VCE Vision™ Plug-in for vCenter

• VCE Vision™ Adapter for vCenter Operations Manager

• VCE Vision™ Compliance Checker

• VCE Vision™ API for Compliance Checker

• VCE Vision™ API for Vision Security

• VCE Vision™ SDK

VCE Vision software provides the following features:

Discovery

VCE Vision™ Intelligent Operations Version 2.6 Technical Overview VCE Vision™ Intelligent Operations



Allows you to manage your Vblock System components based on their most current state by:

• Performing an initial discovery in the factory to identify the Vblock System as it was built.

• Building a comprehensive Vblock System model including the management infrastructure.

• Discovering both logical and physical components of the Vblock System and updatingmanagement tools in near real time.

• Performing periodic rediscovery during operation ensuring an up-to-date representation ofthe Vblock System.

• Performing regular backups of the Vblock System component configuration files to allow fordisaster recovery.

Identification

Provides a converged, single system view of each Vblock System by:

• Presenting a unique identity for each Vblock System.

• Providing system-specific information, such as the serial number, model, and location.

Health monitoring

Expedites the diagnosis of potential problems and speeds remediation through:

• Providing a health score that is based on VCE design principles.

• Producing a consolidated health status at the Vblock System level, while also providing theability to drill down into issues at the component level.

• Identifying potential issues in the health of the system.

• Producing a streamlined information flow.

Security

Enables you to control access to VCE Vision software and provides security hardening guidelines:

• Using role-based access control (RBAC) to perform security authorization checks for anyclient applications making an API call.

• Integrating with Active Directory for authentication and authorization.

• Providing best practices that you can use to easily assess your Vblock System security.

Logging and event messaging

VCE Vision™ Intelligent Operations VCE Vision™ Intelligent Operations Version 2.6 Technical Overview



Enables rapid troubleshooting with built-in logging capabilities that:

• Forwards aggregated log data from VCE Vision software to other log hosts.

• Translates events from vendor formats and protocols to standard formats and protocols.

• Segregates application logs from authentication and authorization (AA) logs.

• Expedites data collection for troubleshooting.

• Uses the RabbitMQ event messaging model (messaging system based on the AMQPstandard) to publish messages to the RabbitMQ broker.

• Allows clients to subscribe to the broker using customized routing keys to filter and receivemessages.

Validation

Ensures reliability and performance of your Vblock System by:

• Verifying the Vblock System is compliant with the VCE Release Certification Matrixes andSecurity Hardening Guides.

• Enabling you to validate successful upgrades to Vblock System software.

• Presenting output in SCAP Result Format for easy integration into other services.

Open API

Simplifies and speeds integration with third-party management solutions by:

• Providing an easy way for third-party developers to integrate with the VCE Vision softwareapplication programming interfaces (Open APIs).

• Supporting a RESTful model of application development.

• Providing Java bindings that allow developers to access the APIs from Java without havingto make REST calls.

• Providing a software development kit (SDK) that provides sample code and tools.

Native integration with VMware products

Seamlessly integrates with familiar management tools by:

• Displaying information from the Vblock System in VMware vCenter.

• Enabling data center managers to use the optional VCE Vision™ Adapter for vCenterOperations Manager to view metrics from a Vblock System.

Toolkit for third-party developers

VCE Vision™ Intelligent Operations Version 2.6 Technical Overview VCE Vision™ Intelligent Operations



Provides the foundation for the VCE Developer Program through:

• A new VCE Developer portal

• Open APIs

• API reference documentation

Release Certification Matrix (RCM) Content Pre-positioning

Provides an inventory of RCM content on your Vblock System that you can use to:

• Easily maintain compliance with the current RCM.

• Quickly and reliably upgrade to new RCM versions.

• Quickly and reliably upgrade to new RCM versions.

ArchitectureDepending on your Vblock System, VCE Vision software resides on either the logical or physicalAdvanced Management Platform (AMP).

Logical AMP

• Vblock System 100


Physical AMP


• Vblock System 300 family

• Vblock System 700 family

VCE Vision™ Intelligent Operations VCE Vision™ Intelligent Operations Version 2.6 Technical Overview



VCE Vision System Library

Introduction to System LibraryVCE Vision™ System Library provides the foundation for the VCE Vision software suite. System Libraryperforms core functions and enables communication between VCE Vision software, Vblock Systemcomponents, and applications in your network.

System Library performs the following core functions:

• Discovering the Vblock System and its components

• Discovering identity information about the Vblock System

• Calculating the health or operating status of the Vblock System and its components

• Forwarding events and messages from the Vblock System

The following diagram is a high-level overview of integration between System Library and variousproducts and protocols:

VCE Vision™ Intelligent Operations Version 2.6 Technical Overview VCE Vision System Library



DiscoveryTo perform discovery, System Library uses different protocols to gather the inventory, location, and healthof the Vblock System. System Library then populates the information that it discovers into an objectmodel. That object model resides within a database and is exposed through REST and SNMP interfaces.

What does System Library discover?

System Library discovers the Vblock System itself and the following physical components and logicalentities:

Group Physical components Logical entities

Compute All ESXi

Network All VLANs

Storage All • Storage groups

• RAID groups

• LUN relationships to RAID and storagegroups

• Masking records

• Mapping records - LUNs mapped to FA portsso that ports can see the LUNs for access

Management All Not applicable

How does System Library discover a Vblock System?

The initial discovery process takes place when the Vblock System is manufactured. Initial discovery relieson an XML file that contains build and configuration information about the Vblock System. System Libraryuses that XML file to populate basic information about the Vblock System and establish communicationwith components.

After initial discovery System Library uses the following methods to discover the Vblock System and itsphysical components and logical entities:

• XML API

• Simple Network Management Protocol (SNMP)

• Storage Management Initiative – Specification (SMI-S)

• Vendor CLI's, such as EMC Unisphere CLI (UEMCLI)

How often does discovery occur?

System Library performs discovery every 15 minutes by default. However, you can change how oftendiscovery runs to meet your business requirements.

VCE Vision System Library VCE Vision™ Intelligent Operations Version 2.6 Technical Overview



IdentificationA Vblock System and the components within a Vblock System have properties that uniquely identify themto System Library. System Library populates these properties to the object model so that you can accessthem and identify each Vblock System and all components.

Properties that System Library uses for identification include the following:

• Vblock System serial number

• Vblock System model

• Vblock System location

System Library updates the object model during the regular discovery process if you make any changesto the properties.

Health monitoringSystem Library performs health monitoring of your Vblock System to reflect the operational status of thesystem itself as well as the health of each component and subcomponent. Review what componentsSystem Library monitors for health status and learn what each possible health status means.

System Library monitors health or operational status of the following:

• Individual sub-components of a Vblock System

• The compute, network, storage, and management components of a Vblock System

• Vblock System as a whole

The health of a Vblock System reflects the operational status of each component and the overall ability ofa Vblock System to function.

System Library calculates the health status of each component in a Vblock System, such as a networkswitch, a compute server, or a storage array, based on the health status of the subcomponents. SystemLibrary then calculates the health status of a Vblock System as a whole from the health status of eachcomponent.

Health status Description

Operable All components have optimal health.

The Vblock System is operating as expected.

Minor An issue exists with one or more components.

This status does not represent a significant impact to the overall health of a VblockSystem.




Health status Description

Degraded One or more components are operating with degraded bandwidth, capacity, orredundancy.

The Vblock System might be operating with decreased performance.

Major One or more components has a significant issue.

The Vblock System might be operating with decreased performance and at risk offailure.

Critical One or more components has a fatal or otherwise serious issue.

The Vblock System might not be fully operational and is at significant risk of failure.

Inoperable The Vblock System, or a component of the Vblock System, is not operating bydesign or a failure has occurred.

Not Applicable One or more components does not report health status to System Library.

This status occurs when components are disabled or excluded from healthmonitoring. This status does not affect the overall health of the Vblock System.

Logging and eventsEach component in a Vblock System generates events or log messages. System Library collects andstandardizes these messages and writes them to a local log file or forwards to a remote server. You canuse these log files to analyze and isolate possible issues with your Vblock System.

Syslog Messages

System Library makes the following syslog messages available:

• Component log messages

• Application log messages

SNMP and Advanced Message Queuing Protocol (AMQP) Events

SNMP and AMQP handle events from the following sources:

• SNMP traps

• CIM indications

• Cisco's XML API

System Library does not discover the following components. As a result, System Library does not captureevents or logs from these components:

• EMC Avamar

• EMC Data Domain




• EMC RecoverPoint

Configuration backup and recoveryConfiguration backup and recovery ensures that you do not lose any configuration data for your VblockSystem or System Library.

System Library configuration backup

VCE Vision software automatically backs up System Library configuration files. When the backup taskruns, it creates a .TAR file that contains:

• System Library configuration files from the following directories:

— /opt/vce/fm/conf

— /etc/snmp/snmpd.conf

— /etc/logrotate.d/syslog

— /etc/srconf/agt/snmpd.cnf

• JBoss configuration files

• System Library administrative, configuration, and model database schemas and data files

By default, the backup occurs every day at 12:00 AM. A maximum of seven backups are saved on thesystem.

System Library configuration files are backed up to /opt/vce/fm/backup/.

PostgreSQL database backup

In addition to System Library configuration files, VCE Vision software automatically backs up PostgreSQLdatabase schema and data so that you can restore VCE Vision software to a working state, if required.

VCE Vision software creates backups of the database in tar.gz file format to the /opt/vce/fm/backup/postgres/ directory. By default, VCE Vision software stores the PostgreSQL databasebackups for the current day and the previous two days.

The following example describes how VCE Vision software stores PostgreSQL database backup files:

• At 11:59 PM on Tuesday, VCE Vision software stores backup files for Tuesday, Monday, andSunday.

• At 12:00 AM on Wednesday, VCE Vision software stores backup files for Wednesday, Tuesday,and Monday. VCE Vision software deletes the backup files for Sunday.




VCE Vision software runs the task to back up the database schema and data every 10 minutes. You canchange the schedule and frequency of the backup tasks. Likewise, you can run backups on demandoutside of the scheduled tasks.

Vblock System configuration backup

A Vblock System is deployed with configuration backups for each Vblock System component, as follows:

Vblock System Component

Vblock System 100 Cisco Catalyst 3750-X Switch

Cisco Nexus 3064-T Switch

Vblock compute servers (CIMC)

Management servers (CIMC)

Vblock System 200 family Cisco Nexus 5000 Switch

Cisco Nexus 1000V Switch

Cisco Nexus 3000

Cisco C-Series server(s)

Vblock Compute Servers (CIMC)

EMC VNX


Vblock System 300 family Cisco MDS 9000

Cisco Nexus 5000

Cisco Nexus 1000V

Cisco Nexus 3000

Cisco UCS fabric interconnects (UCS Manager)

EMC VNX

EMC VNXe (AMP-2HA)


Vblock System 540 Cisco MDS 9000

Cisco Nexus 3000, 5000, 7000, and/or 9000

Cisco Nexus 1000V


EMC XtremIO

EMC VNXe (AMP-2HA)





Vblock System Component

Vblock System 700 family Cisco MDS 9000

Cisco Nexus 3000, 5000, 7000, and/or 9000

Cisco Nexus 1000V


EMC Symmetrix VMAX

EMC VNXe (AMP-2HA)


Vblock Specialized Systems for ExtremeApplications


Cisco Nexus 3000

Cisco Nexus 5000

Cisco Nexus 1000V

EMC VNXe

EMC XtremIO


By default, the Vblock System Configuration Collector backs up configuration files twice a day at 1:30 AMand 1:30 PM to the following directories:

• /opt/vce/backup/amp2

• /opt/vce/backup/storage

• /opt/vce/backup/network

• /opt/vce/backup/compute




VCE Vision Plug-in for vCenter

Plug-in for vCenter overviewThe Plug-in for vCenter integrates with the VMware vSphere Web Client. It uses the API for SystemLibrary to provide a system-level view of a Vblock System cluster. The Plug-in for vCenter also enablesyou to view and monitor information about all the components in a Vblock System.

The graphical user interface of the Plug-in for vCenter provides a list view that displays the name of aVblock System, as well as its overall system health, description, prior state, serial number, and location.Additional information, such as the health status of the Vblock System and its components are displayedin the list view.

The Plug-in for vCenter integrates with the VCE Vision™ Compliance Checker, which is required forcomplete monitoring of your Vblock System. Together, they enable you to run reports that providedetailed information about how closely your Vblock System complies with established policies and profilesyou select.

VCE Vision Plug-in for vCenter VCE Vision™ Intelligent Operations Version 2.6 Technical Overview



VCE Vision software and Vblock SystemCompliance

Compliance CheckerThe Compliance Checker works with the Plug-in for vCenter to determine if your Vblock System iscompliant with a Release Certification Matrix (RCM) and established security policies.

How the Compliance Checker works

The Compliance Checker scans your Vblock System settings and compares those values to the expectedvalues in VCE compliance policies and profiles. The Compliance Checker displays the results of thescans in detailed compliance reports. These reports show an overall compliance score that tells you howclosely the Vblock System complies to a policy. The Compliance Checker uses these compliance policygroups to ensure that your Vblock System is compliant. The compliance report also lists all componentsthat were scanned for compliance and displays each individual result. You can save the results of thecompliance scan to your local system in order to:

• Send report content to the VCE Support organization for help in analyzing and correcting errors

• Compare with other scan reports

You can save compliance results as follows:

• PDF document

• Comma-separated value (CSV) file

• ZIP archive of the Security Content Automation Protocol (SCAP) content (OVAL and XCCDFfiles)

• ZIP archive of the PDF document, CSV file, and SCAP content

The Compliance Checker also provides enhanced features such as:

• Profile tailoring that lets you modify existing compliance policies to fit your environment.

• Scheduling compliance scans with an intuitive wizard style user interface.

VCE Vision™ Intelligent Operations Version 2.6 Technical Overview VCE Vision software and Vblock System Compliance



Available compliance content packs

VCE provide the following content packs for Vblock System compliance:

Vblock System Release Certification Matrix (RCM)

RCMs define software, firmware, and hardware that VCE tests and validates as supported for aVblock System. You can run compliance scans against an RCM to easily identify Vblock Systemcompliance with that RCM.

VCE security hardening guidelines (Security Compliance Validation)

VCE security hardening guidelines optionally provide security best practices that help you identifyrisks that might exist on the Vblock System. The scan uses the VCE security standards described inthe VCE Vblock System Security Guide: Configuration.

VCE Security Alert (VSA) and VCE Technical Alert (VTA)

The VSA enables you to rapidly identify and remediate security vulnerabilities for Vblock Systemcomponents. The VTA enables you to quickly assess and resolve technical issues for Vblock Systemcomponents.

Compliance Policy DesignerThe Compliance Policy Designer (CPD) is a standalone HTML5 application that allows you to create oredit VCE Vision software compliance policies. This application allows for a customized extension of thecompliance framework to support additional objects discovered in the VCE Vision software object model.Policies that are generated from the CPD can be added to the VCE Vision™ Plug-in for vCenter to takefull advantage of the VCE Vision software compliance framework.

VCE Vision software and Vblock System Compliance VCE Vision™ Intelligent Operations Version 2.6 Technical Overview



RCM Content Pre-positioning

RCM content pre-positioningVCE Vision software enables you to retrieve software and firmware for components in your VblockSystem to easily maintain compliance with the current Release Certification Matrix (RCM) and moreefficiently upgrade to new RCM versions.

RCM content pre-positioning enables you to perform tasks such as the following either through the VCEVision™ Plug-in for vCenter or a command line interface in VCE Vision software:

• Viewing RCM content downloaded to your Vblock System.

• Discovering RCM content available for download.

• Downloading RCM content.

• Monitoring the status of RCM content downloads.

• Managing downloaded RCM content.

When you decide to upgrade your Vblock System to a new RCM version, VCE Vision software providesyou with a list of all available RCM versions on the RCM content distribution network. To ensure you get alist of RCM content that applies to your Vblock System, VCE Vision software performs an entitlementcheck using the Vblock System serial number.

VCE Vision™ Intelligent Operations Version 2.6 Technical Overview RCM Content Pre-positioning



The following diagram illustrates how RCM content is uploaded to the RCM content distribution networkand then downloaded to the Vblock System:

Figure 1: RCM content management

RCM Content Pre-positioning VCE Vision™ Intelligent Operations Version 2.6 Technical Overview



VCE Vision Adapter for vCenter OperationsManager

Adapter for vCenter Operations ManagerThe Adapter for vCenter Operations Manager is an optional product that discovers and monitors VblockSystem hardware and VMware vCenter software components. The Adapter for vCenter OperationsManager works with VMware vCenter Operations Manager to collect and analyze component metrics.Metric data include health, operability, and resource availability that measure the performance of VblockSystem components and determine the health and status of the system.

The Adapter for vCenter Operations Manager uses the following processes to gather and analyzemetrics:

Process Description

Describe Determines the types of resources to import and the set of metrics to collect from eachtype of resource. This process runs automatically during deployment.

Auto-discovery Identifies Vblock System resources. The Adapter for vCenter Operations Manager queriesthe Vblock System and retrieves a list of the monitored components, or resources. Afterthe query is complete, new resources are created in VMware vCenter OperationsManager and metric data is collected.

This is the default method for collecting Vblock System resource information.

Manual discovery Monitors components that are manually discovered and added by users. Use theResource Discovery option in VMware vCenter Operations Manager to manually addVblock System resources. Manual discovery is useful if you want to monitor only a subsetof Vblock System components.

Adapter for vCenter Operations Manager dashboardsThe Adapter for vCenter Operations Manager adds four dashboards to vCenter Operations Manager.These dashboards use widgets to show the health of your Vblock System and each component.

Dashboards

Metrics dashboard

Presents a consolidated view of Vblock System resource metrics.

Heat Maps dashboard

Shows the health score of your Vblock System.

Inventory dashboard

Shows a full inventory of Vblock System resources with associated relationships in a tree structure.

Alerts dashboard

VCE Vision™ Intelligent Operations Version 2.6 Technical Overview VCE Vision Adapter for vCenter Operations Manager



Shows all the operational alerts from Vblock System resources.

Dashboard widgets

Vblock System component dashboards use widgets to show the health of compute, storage, and networkcomponents. You can connect dashboard widgets to more than one Vblock System.

Dashboard widget Description

Resources Lists all Vblock Systems discovered by all Adapter for vCenter Operations Managerinstances.

This widget shows all categorical components in a Vblock System, such as compute,network, and storage. The widget shows the current health score for all discoveredVblock System component groups. Resource health scores are determined bycomparing current metric values to reference values. vCenter Operations Managerdetermines a metric's reference value by combining values observed over time withpredefined hard thresholds.

Alerts Shows alerts for components selected in the Health Tree.

The Alerts widget also shows alerts for compute, network, or storage components andtheir subcomponents. Alerts shown here are also shown in the Alert Summary pageand on component icons in the Health Tree.

Metric Selector Shows available metrics for components selected in the Health Tree.

Health Tree Shows Vblock System components in the following categories: compute, storage, andnetwork.

Connected components are shown in a hierarchical manner. Alerts and sparklines areshown for selected components. Health alerts are shown for the Vblock System,compute, storage, and network categories. The Health Tree widget can also show theparent-child relationship between blade servers and active vSphere ESXi hosts.

Metric Sparklines Shows a line graph of health values over time.

The widget shows the values collected for aggregate Vblock System componentsselected in the Health Tree.

Heat Map Shows all components for all Vblock Systems that the Adapter monitors.

The rectangles in this widget represent all components in each Vblock System that youmonitor. Components that are not in collection mode are displayed as white squares.

Note: This widget is available only in the Main dashboard.

VCE Vision Adapter for vCenter Operations Manager VCE Vision™ Intelligent Operations Version 2.6 Technical Overview



Application Programming Interfaces

API for System LibraryThe API for System Library provides a set of RESTful resources for retrieving information about a VblockSystem. The API provides a complete set of resources that allow you to retrieve data on the entire modelassociated with each Vblock System.

Representational State Transfer (REST) is an application architecture for distributed systems that relieson HTTP. Each REST call specifies a URL for a resource along with an HTTP method such as GET, PUT,or POST. The URLs can be tested with most standard browsers. The response for each URL is typicallyformatted in XML.

All URLs for the API for System Library that retrieve data about the model use the GET method and returnan XML response. Some URLs retrieve configuration information about the system and return archivedcontent in .ZIP files.

You can find complete reference documentation for the API for System Library on the VCE DeveloperPortal.

API for Compliance CheckerThe API for Compliance Checker is a set of RESTful resources that enable you to work with VblockSystem compliance.

The API for Compliance Checker allows you to:

• Perform compliance checks.

• Customize or add new policies and profiles.

• Create, update, or delete schedules to perform scans at desired intervals.

• Obtain detailed reports for further analysis.

You can find complete reference documentation for the API for Compliance Checker on the VCEDeveloper Portal.

API for Vision SecurityThe API for Vision Security provides a set of RESTful resources for controlling access to systemresources through role-based access control (RBAC). You use RBAC to restrict access to systemresources to only those users who have been authorized to use them.

VCE Vision™ Intelligent Operations Version 2.6 Technical Overview Application Programming Interfaces



The API for Vision Security allows you to perform the following tasks to manage users:

• Create users

• Create roles

• Assign roles to permissions

• Assign users to roles

The API for Vision Security relies on a set of predefined permissions. Each permission has a name, adescription, and one or more internal resource identifiers that specify the type of access granted with thepermission. Some resource identifiers apply to REST API calls, whereas others apply to applicationfunctions that are not REST-based.

All URLs for the API for Vision Security that retrieve data use the GET method and return an XMLresponse. Several of the URLs use the POST, PUT, and DELETE methods to create, modify, and deleteRBAC objects. These operations also use XML as the content type.

You can find complete reference documentation for the API for Vision Security on the VCE DeveloperPortal.

Application Programming Interfaces VCE Vision™ Intelligent Operations Version 2.6 Technical Overview



SNMP Integration

SNMP with VCE Vision softwareYou can enable communication between VCE Vision software and your network management system(NMS) using SNMP to monitor and maintain your Vblock System.

VCE Vision software provides a set of Management Information Base (MIB) modules, and supportsvarious RFC MIB modules, that define the structure of the Vblock System. System Library populatesthese MIB modules so that your NMS can access the various objects in the Vblock System.

System Library can also send SNMP traps and events to your NMS to facilitate discovery polling andreport health status changes or issues with physical and logical components.

VCE Vision™ Intelligent Operations Version 2.6 Technical Overview SNMP Integration



Software Development Kit

SDK for VCE Vision softwareThe SDK provides a set of examples and components that third-party developers can use to build customapplications that run with VCE Vision software. The examples provide an introduction to applicationdevelopment with VCE Vision software APIs.

SDK components

• Sample code that illustrates how to use the VCE Vision software APIs.

The sample code shows you how to:

— Use Java and REST to access Vblock System resource information through the API forSystem Library.

— Access information about Vblock System events using AMQP.

— Work with the API for Compliance Checker.

— Use the API for Vision Security.

• Java binding library that accesses the VCE Vision software APIs without having to make RESTcalls.

• Schema files for the following:

— API for System Library

— System Library FM Event

— API for Compliance Checker

— API for Vision Security

• SNMP MIBs for the Vblock System

SDK simulator

The SDK works with a simulator for VCE Vision software. The SDK simulator lets you interact with datathrough REST and SNMP to develop applications without having to access VCE Vision software on anactual Vblock System.

Software Development Kit VCE Vision™ Intelligent Operations Version 2.6 Technical Overview



Access the SDK

You can download the SDK for VCE Vision software from the VCE Developer Portal. The DeveloperPortal provides registered developers with quick and easy access to all of the resources necessary todevelop functionality using VCE Vision software APIs.

Related information

VCE Developer Portal

VCE Vision™ Intelligent Operations Version 2.6 Technical Overview Software Development Kit



http://www.vce.com/developer

www.vce.com

About VCE

VCE accelerates the adoption of converged infrastructure and cloud-based computing models that dramatically reduce thecost of IT while improving time to market for enterprises and service providers globally. Through its leading VblockSystems, VCE delivers the industry's only true converged infrastructure, leveraging Cisco compute and networktechnology, EMC storage and data protection, and VMware virtualization and virtualization management. VCE solutionsare available through an extensive partner network and cover horizontal applications, vertical industry offerings andapplication development environments, enabling customers to focus on business innovation instead of integrating,validating, and managing IT infrastructure.

For more information, go to http://www.vce.com.

© 2015 VCE Company, LLC. All rights reserved. VCE, Vblock, VCE Vision, and the VCE logo are registered trademarks ortrademarks of VCE Company, LLC. and/or its affiliates in the United States or other countries. All other trademarks usedherein are the property of their respective owners.

