Reconfiguring a Cloud Extension

A Cloud Extension can be reconfigured as needed, in particular the credentials being used regardless of which cloud. 

  • For GCP, the edge network tags and the default network tags for workloads can be updated.
  • For AWS and Azure, the edge security group that contains the Velostrata components and the default security group to be used for generic workloads can be updated.
To reconfigure a Cloud Extension for GCP
  1. On the VSphere Web Client, select Datacenter > Velostrata > Reconfigure Cloud Extension.
  1. Select the required Cloud Extension.
  2. Click Next.
  1. For the Cloud Credential do one of the following:
    • Choose Select From existing credentials and select one of the saved credentials.
    • Select Update Credentials Entry.
    • Select Create New Credential, enter the Credential Name and click Choose File, select the JSON file, and then click OK.

Note: The JSON file is automatically downloaded when creating the service account in Google.

Note: To delete a credential using PowerShell. See Remove-VelosCredentials.

  1. Click Next.
  1. Enter the Edge Network Tags in a comma-separated list. These are for the cloud edges. The list may include network tags that do not exist yet but will be added to the FW later.
  2. Enter the Default Network Tags for Workloads in a comma-separated list. These are the default network tags assigned to the workloads (unless other network tags are specified when running in cloud) . These are used by networks to identify which VM instances are subject to certain firewall rules and network routes. For example, if you have several VM instances that are serving a large website, tag these instances with a shared word or term and then use that tag to apply a firewall rule that allows HTTP access to those instances. The tags must be validated by GCP, for example, tag  values can only contain lowercase letters, numeric characters, and dashes, and must start with and end with either a number or a lowercase character.
  3. Click Next.
  1. Review the summary and click Finish.
To reconfigure a Cloud Extension for AWS
  1. On the VSphere Web Client, select Datacenter > Velostrata > Reconfigure Cloud Extension.
  1. Select the required Cloud Extension.
  2. Click Next.
  1. For the Cloud Credential do one of the following:
    • Choose Select from existing credentials and select one of the saved credentials.
    • Select Update Credentials Entry.
    • Select Create New Credential, enter the Credential Name, paste the Access Key and Secret Key retrieved before you started this procedure (see Pre-requisites for Adding a Cloud Extension).

Note: To delete a credential using PowerShell. See Remove-VelosCredentials.

  1. Click Next.
  1. From the Edge Security Group dropdown list, select the security group to contain the Velostrata components. (for example, <VPCName>-sgVelostrata-…).
  2. From the Default Security Group for Workload dropdown list, select the security group to be used for generic workloads (for example, < VPCName>-sgWorkloads-…).
  3. Click Next.
  1. Review the summary and click Finish.
To reconfigure a Cloud Extension for Azure
  1. On the VSphere Web Client, select Datacenter > Velostrata > Reconfigure Cloud Extension.
  1. Select the required Cloud Extension.
  2. Click Next.
  1. For the Cloud Credential do one of the following:
    • Choose Select from existing credentials and select one of the saved credentials.
    • Select Update Credentials Entry.
    • Select Create New Credential, enter the Credential Name, paste the Subscription ID, App Owner Tenant ID, App ID, and App Key retrieved before you started this procedure (see Pre-requisites for Adding a Cloud Extension).

Note: To delete a credential using PowerShell. See Remove-VelosCredentials.

  1. Click Next.
  1. From the Edge Security Group dropdown list, select the security group to contain the Velostrata components. (for example, <VPCName>-sgVelostrata-…).
  2. From the Default Security Group for Workload dropdown list, select the security group to be used for generic workloads (for example, < VPCName>-sgWorkloads-…).
  3. Click Next.
  1. Review the summary and click Finish.