vSphere Admin scripts
Some scripts that I use to manage vSphere Turn off SSH if running Count the number of VMs that are in each vSphere cluster List the 10 largest VMs per cluster Per RAM Example output Export to CSV as well…
Tag Architecture
vSphere Admission Control – Slot Policy Calculation
I wrote the post explaining what Admission control is So, if we have Slot Policy in Admission control active, how do we determine the maximum number of VMs we can run? We can calculate it manually or we can calculate…
ESXi Lockdown Mode
ESXi Lockdown Mode is a security feature in VMware ESXi that restricts direct access to the ESXi host, allowing access only through vCenter Server. This feature is designed to enhance security by preventing unauthorized users from modifying the ESXi host…
Encryption at rest – Worth the effort for vSphere HCI?
Encrypting data drives makes sense on a laptop. If you turn it off and it gets lost, a key has to be provided to decrypt the data on the drives to make it readable. But what about the disks of…
Secure ESXi – execInstalledOnly
In a previous article, I described how to activate UEFI Boot, which will disable the ESXi OS from loading 3rd party packages. What is execInstalledOnly enforcement? execInstalledOnly will ensure that non-signed scripts can be run against the ESXi. Important to…
MFA for Remote Desktop
Option 1: Duo MFA for RDP (fast, easy, proven) Pros: High-level install steps: ▶ Link to official Duo guide:Duo MFA for Windows RDP – Step-by-Step Option 2: Azure MFA with NPS Extension (Microsoft “native” method) Pros: High-level install steps: ▶ Link to official Microsoft guide:Configure NPS…
UEFI Secure Boot
UEFI Secure Boot is a platform feature within the UEFI specification that ensures the system boots using only the software trusted by the hardware manufacturer. Secure Boot provides a verification mechanism in which the firmware validates a boot loader before executing…
Update switches via Code
A use case I was presented recently was how multiple switches can be upgraded via automation tooling. Prerequesits As with any automation, standardisation is key. For this to work the switches should be close to the same model, the ports…