Abiquo Documentation Cookies Policy

Our Documentation website uses cookies to improve your experience. Please visit our Cookie Policy page for more information about cookies and how we use them.


Abiquo 5.0

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

This manual is a basic guide to how to Administer and Use Public Cloud in Abiquo

The following basic roles are described in this manual: cloud administrator, enterprise administrator, and user.

Table of Contents
maxLevel32

Cloud administrator tasks

This section describes the cloud administrator tasks in public cloud.

Numbered Headings

Introduction to public cloud integrations

Include Page
Public cloud concepts
Public cloud concepts

Configure your user account

All users should configure their user accounts before starting work with the cloud platform.

Edit user details

Include Page

...

Edit your user account details for cloud admin

...

Edit your user account details for cloud admin

Enable two factor authentication

Include Page
Enable two factor authentication
Enable two factor authentication

Create public cloud regions

 

Include Page

...

Control tenant resources

You can control the resources that an enterprise may consume. This will help prevent resource over allocation, enterprises using resources from other enterprises, and even DoS attacks. Allocation limits will also help system administrators to anticipate user needs and forecast resource demand. Hard and soft limits are used by the resource scheduler to decide if a user can deploy a virtual appliance or not.

  • Hard Limit: the maximum amount of resources (CPU, RAM, Hard Disk, etc.) that an enterprise may consume.
  • Soft Limit: triggers a warning for users that they nearing the hard limits for their enterprise.

...

Enterprise allocation limits are checked during configuration or deploy, or before operations as shown in the above table.

...

Allow the tenant to access regions

To set the datacenters and public cloud regions that an enterprise is allowed to access, edit the Enterprise and click the Datacenters tab.

Select one or more datacenters or public cloud regions in the left pane and drag and drop them into the "Allowed Datacenters" right pane.

Access to at least one datacenter or public cloud region is required in order to deploy VMs. The left pane contains datacenters, which are "Prohibited Datacenters" by default.

Info
titleDatacenters Automatically Assigned to Current Enterprise on Creation

By default, when a datacenter or public cloud region is created it is automatically assigned as Allowed for the current user's enterprise only.

Note that Allowed datacenters are working datacenters where users can deploy. This is different to an admin user having administration Scope to administer the infrastructure of datacenter. 

Image Removed

Create a public cloud region
Create a public cloud region


Create tenants

Include Page
Create tenants
Create tenants

Set allocation limits for an enterprise

Include Page
Set allocation limits for an enterprise
Set allocation limits for an enterprise

Allow the tenant to access regions

Include Page
Allow a tenant to access datacenters and cloud providers
Allow a tenant to access datacenters and cloud providers

Limit tenant resources in the region

...

Include Page
Set allocation limits for

...

a tenant in a datacenter or

...

Limit resources for an enterprise in a public cloud region

...

Validation of resource limits in a location

As for overall enterprise limits, resource limits in a datacenter or public cloud region are validated as described in the following table. 

...

Tenants obtain cloud provider credentials

If the tenant does not have cloud provider credentials, they should follow their cloud provider's instructions on how to obtain access to the provider's API.

Abiquo provides basic guides to obtaining credentials, but the tenant should always consult the cloud provider for the most up-to-date information.

Add tenant credentials for each provider

Before you enter public cloud credentials, there must be an existing public cloud region for the provider.

Image Removed

To add credentials for a public cloud provider

  1. Check in Infrastructure view or with your Administrator, that the public cloud region is already created
  2. Edit the enterprise and select the Credentials tab
  3. From the Provider pull down list, select the public cloud provider
  4. Enter your Access key ID, which may be a Username, a specific API access key ID or other account identifier
  5. Enter your Secret access key, which may be an API key or other API credential
  6. Click Validate account
  7. After the account has been validated, click Save

...

Onboard virtual datacenters from public cloud

...

Abiquo automatically onboards from public cloud regions

If you public cloud provider does not support virtual datacenter entities, Abiquo will automatically onboard when you select the public cloud region.

...

Restrict user access to virtual datacenters

By default, all users have access to all virtual datacenters. However, you can select a list of virtual datacenters for each user and they will only be able to access these virtual datacenters.

To restrict VDC access, open Users view and create or edit a user who is not an administrator or who does not have the No VDC restriction privilege.

On the create or edit dialog, select the Restrict access to VDC checkbox to open the list of available virtual datacenters. If none are selected, the user will have access to all VDCs. Select the VDCs where this user will be able to deploy VMs. You can only restrict the VDC access of users without the No VDC restriction privilege.

provider or region
Set allocation limits for a tenant in a datacenter or provider or region

Add public cloud provider credentials for a tenant

Include Page
Add public cloud credentials for a tenant
Add public cloud credentials for a tenant

Create enterprise properties to store tenant data

Include Page
Set enterprise properties to store details and metadata
Set enterprise properties to store details and metadata


Image Added

Control how VMs onboard from public cloud

Include Page
Control onboard of VMs to VApps
Control onboard of VMs to VApps




Prepare foundation template library

In the Abiquo Apps Library you can compile a selection of certified public cloud templates for your users to deploy by self-service.

Abiquo will store the details of these templates but not their disks.

Include Page
Manage the Public Cloud Apps Library
Manage the Public Cloud Apps Library

...

Tenant administrator tasks

This section describes tasks that will generally be performed by a tenant administrator.

Obtain credentials for public cloud

Abiquo provides basic guides to obtaining credentials, but the you should always consult the cloud provider for the most up-to-date information. 

Prepare enterprise templates

Depending on their user privileges, the tenant administrator may be able to do the following tasks

  • Search the Apps library for templates
  • Add templates to the Apps library
  • Modify templates
  • Share templates with their customers

...

Onboard from public cloud

...




Import public cloud templates

Include Page
Import public cloud templates
Import public cloud templates




Onboard from public cloud

Excerpt Include
Onboard from Public Cloud
Onboard from Public Cloud
nopaneltrue




Create virtual datacenters

Excerpt Include
Virtual Datacenters View
Virtual Datacenters View
nopaneltrue

Include Page
Create a virtual datacenter
Create a virtual datacenter



Manage storage

This section describes how to work with storage in Amazon and Azure.

Excerpt Include
Manage storage in public cloud
Manage storage in public cloud
nopaneltrue

Manage Networks

This section describes how to manage networks in private datacenters and public cloud providers. 

Excerpt Include
Manage Networks
Manage Networks
nopaneltrue

Add public IP addresses

Excerpt Include
Obtain public IP addresses in public cloud
Obtain public IP addresses in public cloud
nopaneltrue




Manage

...

firewalls

Excerpt Include
Manage Firewalls
Manage Firewalls
nopaneltrue




Manage load balancers

Excerpt Include
Manage Load Balancers
Manage

...

Load Balancers
nopaneltrue

...




Manage virtual machines

This section describes the tasks that may be performed by the cloud user.

...

Add public key to user account

...

 

Edit your user account details

Include Page
Edit your user account details
Edit your user account

...

Image Removed

Create virtual appliances

To create a new virtual appliance, open the Virtual datacenters view. Then select the virtual datacenter where the virtual appliance will be deployed, click the  Image Removed  add button, and complete the form.

  Image Removed

 

Work with VMs

The basic process for working with VMs is the same throughout the whole Abiquo cloud platform, regardless of the underlying technology, which may be hypervisors, public clouds or Docker. The following screenshots show a private cloud environment, but they would be very similar for a public cloud or even a Docker environment.

...

Configure VMs

Configuring VMs in public cloud is similar to private cloud.

Edit VM general information in public cloud

Warning
titleDo NOT change the Abiquo tag on the Amazon Instance

Do not change the Abiquo platform's tag on an Amazon instance in Amazon or you will break the link between Abiquo and the VM. If the link is broken, you will not be able to manage the VM with Abiquo.

...

Edit Public Cloud Network Configuration

You can edit the network configuration of an AWS machine if it is:

  • Saved but not deployed
  • Deployed and powered off

Click on the Network tab to edit the network configuration.

Warning
titleDo Not Rename the Amazon Instance

Do not change the virtualmachine tag of an AWS instance in AWS or you will break the link between Abiquo and the VM. If the link is broken, you will not be able to manage the VM with Abiquo. 

Add an Elastic IP as a Floating Public IP
Info
  • Your AWS account will have a limit for Elastic IPs independent of any Abiquo public IP limit for your virtual datacenter
  • Add the Elastic IP to the virtual datacenter before you add it to a VM
  • You can only add ONE Elastic IP to each VM in Abiquo
  • You cannot move the Elastic IP to another VM

To add a floating public IP to your VM:

  • First obtain the floating public IP for your virtual datacenter from the public cloud provider
  • Edit the VM configuration
  • Select the Network tab
  • Select the Public page
    • you will see the IPs that are already allocated to your enterprise in the virtual datacenter. You can select from these IPs.
  • Drag and drop the IP address into the network interfaces list
Note
  • AWS charges for Elastic IPs that are allocated but NOT USED by running VMs, so:
    • Deploy or power on your VM as soon as possible after adding an Elastic IP
    • When you undeploy your VM, remember to remove the Elastic IP from your VM and remove it from your VDC
  • Elastic IPs are counted in your Abiquo Public IP limits

A floating public IP should be displayed as shown in the following screenshot.  The floating IP is not part of any Abiquo VLAN.

  Image Removed

 

Remove a Floating IP

To remove a floating IP from your VM, power off or undeploy the VM and click the X button near the IP address.

Warning

The floating IP will still be assigned to your virtual datacenter.

Your public cloud provider may charge for a public IP that is assigned to a virtual datacenter but not in use.

When you undeploy the VM, remember to remove the floating IP after you undeploy the VM because AWS charges for floating IPs that are not in use.

To ensure that your public cloud provider does not charge you for the floating public IP, remove it from your virtual datacenter. The floating public IP will be released and you cannot add it to another machine. When you add another floating IP to your virtual datacenter and VM, there is no guarantee that it will have the same IP address.

Bootstrap Scripts

...

Assign Firewalls to VMs

If firewalls are offered in your datacenter and firewalls have been created in your virtual datacenter, then you can assign firewalls to your VMs.

Panel
borderColor#ff9900
borderWidth1
borderStylesolid

Privilege: Assign firewall

To assign a firewall from the virtual datacenter to a VM, edit the VM and open the Firewalls tab. Mark the firewall with a tick in the Firewall policies checklist. You can add as many firewall policies as necessary, up the public cloud provider's limit. See http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_SecurityGroups.html#VPCSecurityGroups

Click Save.

Image Removed

Remove a firewall from a VM
Panel
borderColor#ff9900
borderWidth1
borderStylesolid

Privilege: Assign firewall

To remove a firewall from a VM, edit the VM and open the Firewalls tab. Remove the tick beside the firewall in the Firewall policies checklist. Click Save. 

Configure Chef Recipes and Roles

Chef is an infrastructure automation product that uses configuration recipes. You can use Abiquo Chef Integration to deploy a VM that will then configure itself using Chef recipes and roles. 

The Chef tab is enabled if the enterprise is Chef-enabled and the VM template is Chef-enabled. Before the VM is deployed, you can select from the available roles and recipes. These will be added to the machine's runlist. When the machine is deployed it will download the roles and recipes, and run them in order. Click the Chef tab. By default on this tab you can select roles. Mark the "Select individual components" checkbox to select individual recipes too. The selected recipes will be added to the Virtual Appliance's runlist in order of selection.

Image Removed

To change the order of the runlist, click on the pencil button beside a role or recipe, then edit the order number, then click OK.

Image Removed

Change the Order of Roles and Recipes After Deployment

To change the runlist order after deployment click on the pencil button, then edit the order number, then click OK. The Abiquo Chef Agent will connect to the Chef Server and update the runlist.

See also Configuring and Using Abiquo Chef Integration in the Abiquo HOWTOs and Troubleshooting Abiquo Chef Integration in the Administrator's Guide.

...

Configure Monitoring and Metrics

If you have the privilege to Manage VM monitoring and it is configured in your virtual datacenter, you can enable the option to fetch metrics from the hypervisor or public cloud region.

To enable VM monitoring and metrics, work with a VM that is powered off or undeployed.

Edit the VM and go to the Monitoring tab.

Image Removed

Mark the fetch metrics checkbox.

Select from the available options, f or example, for AWS, you can select detailed or basic monitoring.

The functionality and list of available metrics depend on the underlying virtualization technology.

Select the individual metrics you would like to retrieve for your VM.

Display Metrics for a VM

On the VM icon, click the Monitoring symbol to display the metrics. 

Image Removed

The metrics panel will open.

Select the refresh button Image Removed to update the display of a metric.

Select the filter button Image Removed to configure the display of the metric.

Set the

  • Granularity, which is how often the metric is sampled
  • Statistic, which determines how the raw values will be processed over time
  • "Last" period, which is how long the display will look behind at the processed data.

Click Accept to save the values.

To view the exact metric values in a call-out box, mouse over the monitoring graph line.

To create a highlight point, click on the metric graph line.

Image Removed

To simultaneously view the data for more than one VM, use the virtual appliance monitoring view.

details



Create a VM

Include Page
Create a VM
Create a VM




Filter templates for creating VMs

Include Page
Filter templates for creating VMs
Filter templates for creating VMs




Configure a VM before you deploy

Include Page
Configure a VM with general details
Configure a VM with general details

Include Page
Configure a VM with network
Configure a VM with network

Include Page
Configure a VM with firewall load balancer monitoring
Configure a VM with firewall load balancer monitoring



Deploy to launch a VM

Include Page
Deploy to launch a VM
Deploy to launch a VM



Display all VMs

Include Page
Display all VMs in your VDCs
Display all VMs in your VDCs




Move a VM to another virtual appliance

Excerpt Include
Move a VM to another virtual appliance
Move a VM to another virtual appliance
nopaneltrue



Move a VM to a restricted virtual appliance

Include Page
Move a VM to a restricted virtual appliance
Move a VM to a restricted virtual appliance




Save VM disks to an instance template

Include Page
Create instances to save VM disks to templates
Create instances to save VM disks to templates




Delete a VM

Include Page
Delete a VM
Delete a VM



Alarms

Excerpt Include
Manage cloud alarms
Manage cloud alarms
nopaneltrue




Alerts

Excerpt Include
Manage Alerts
Manage Alerts
nopaneltrue





Scaling groups

Excerpt Include
Manage Scaling Groups
Manage Scaling Groups
nopaneltrue




Automation

Introduction to action plans

Excerpt Include
Manage Action Plans
Manage Action Plans
nopaneltrue




Automate VM first boot with a configuration or script

Include Page
Add VM bootstrap script or cloud init configuration in public cloud
Add VM bootstrap script or cloud init configuration in public cloud

Add variables for the configuration of your VM

Include Page
Add VM variables
Add VM variables

Configure Chef Recipes and Roles to automate VM configuration

Excerpt Include
VM Chef
VM Chef
nopaneltrue



SEO Metadata
titleUse the multicloud platform for public cloud

Work with public cloud providers such as Amazon and Azure in the multicloud platform