This blueprint deploys a virtual machine from an OVA image and the security prerequisites to run the Migrate for Compute Engine (v5) connector on VMWare ESXi.
The blueprint is designed to deploy the M4CE (v5) connector on and existing VMWare environment. The network configuration required to allow the communication of the migrate connector to the GCP API is not included in this blueprint.
This is the high level diagram:
This sample creates several distinct groups of resources:
- virtual machine
- IAM
| name | description | type | required | default |
|---|---|---|---|---|
| m4ce_ssh_public_key | Filesystem path to the public key for the SSH login. | string |
✓ | |
| vcenter_password | VCenter user password. | string |
✓ | |
| vsphere_environment | VMVware VSphere connection parameters. | object({…}) |
✓ | |
| m4ce_appliance_properties | M4CE connector OVA image configuration parameters. | object({…}) |
{…} |
|
| m4ce_connector_ovf_url | http URL to the public M4CE connector OVA image. | string |
"https://storage.googleapis.com/vmmigration-public-artifacts/migrate-connector-2-0-1663.ova" |
Once this blueprint is deployed a VCenter user has to be created and binded to the M4CE role in order to allow the connector access the VMWare resources. The user can be created manually through the VCenter web interface or through GOV commandline if it is available:
export GOVC_URL=<VCENTER_URL> (eg. https://192.168.1.100/sdk)
export GOVC_USERNAME=<VCENTER_ADMIN_USER> (eg. [email protected])
export GOVC_PASSWORD=<PASSWORD>
export GOVC_INSECURE=true
govc sso.user.create -p <USER_PASSWORD> -R gcp-m4ce-role gcp-m4ce-user
govc permissions.set -principal [email protected] -propagate=true -role gcp-m4ce-role