• Download and deploy a cloud extensibility proxy
• Configure an Automation Orchestrator integration in Automation Assembler
  Upgrading a cloud extensibility proxy
• Configure an on-premises action-based extensibility integration in Automation Assembler
• Forwarding cloud extensibility proxy logs to Operations for Logs
• Activate or deactivate Automation Orchestrator integrations
• Managing multiple Automation Orchestrator integrations with project constraints
• Managing multiple Automation Orchestrator integrations with cloud account capability tags
• Migrating a vRealize Orchestrator 7.6 SaaS instance to the cloud extensibility proxy
• Configuring Automation Orchestrator by using command line interface commands
• Common known issues during the deployment of VMware Aria Automation, VMware Aria Orchestrator, Cloud Proxy and Cloud Extensiblity Proxy (93142)

1. Validating services and appliance health

docker ps
sh /data-collector-status --docker
sh /data-collector-status --traceroute
kubectl get pods -n prelude
vracli service status
vracli status first-boot
/opt/health/run.sh

Suggestions

• sh /data-collector-status –traceroute indicates that a data collector is not able to access of one URLs. Validate your internet connectivity and firewall configuration.
• If several of the pods are not running/healthy (kubectl get pod -n prelude) this could be caused by:
  • The appliance was not restarted gracefully following Starting and stopping VMware Aria Automation.
  • The restart process failed. The log /var/log/deploy.log may provide more information.
• When running the script /opt/health/run.sh, the most common issues are
  • validate on vCenter that the appliance(s) has/have an IP. Validate the disk space as suggested in the following section. Validate DNS as suggested in the following sectio

2. Validating Disk Space

   vracli disk-mgr
   df -hi
   

find ID1 -size +100M -exec du -h {} \; | less

find / -size +100M -exec du -h {} \; | less
find /data -size +100M -exec du -h {} \; | less
find /var/log -size +100M -exec du -h {} \; | less
find /home -size +100M -exec du -h {} \; | less

• If there are old log bundles, database dumps, or *.hprof files, they may be safely removed. The log bundles are usually located in /home/root/log-bundle-YYYYMMDDTHHMMSS.tar
• If required, the disk space may be expanded following Increase VMware Aria Automation appliance disk space.
• If there are disk space issues in the /data partition this can be caused due to a table growing abnormally. Follow the next steps:

1. Take a snapshot of the appliance.
2. SSH to the appliance and run the following commands in order to understand the largest databases.

   vracli dev psql
   #type yes#
   SELECT pg_database.datname as "database_name", pg_database_size(pg_database.datname)/1024/1024 AS size_in_mb FROM pg_database ORDER by size_in_mb DESC;

3. Once you have identified the database name that is consuming the space, connect to the DB and validate the largest tables. Replacing ID2 with the DB name.

   \c ID2
   SELECT nspname || '.' || relname AS "relation", pg_size_pretty(pg_total_relation_size(C.oid)) AS "total_size" FROM pg_class C LEFT JOIN pg_namespace N ON (N.oid = C.relnamespace) WHERE nspname NOT IN ('pg_catalog', 'information_schema') AND C.relkind <> 'i' AND nspname !~ '^pg_toast' ORDER BY pg_total_relation_size(C.oid) DESC LIMIT 20;

• Articles related to DB growing issues:
• The appliance disks fill up frequently due to vmo_tokenreplay growing rapidly when using VMware Aria Automation or Automation Orchestrator (81213)
• The appliance disks fill up frequently due to vmo_workflowtokencontent growing rapidly when using VMware Aria Automation or Automation Orchestrator (81387)

3. Validating DNS

   1. Run the following commands in the appliance

      nslookup $( iface-ip eth0 )
      nslookup $( uname -n)

   2. The DNS record must use Fully Qualified Domain Names (FQDNs), no short name. A single A record and a single PTR record is required. Then, run these commands:

      /usr/bin/dig +noall +answer +nocookie -x $( iface-ip eth0 )
      /usr/bin/dig +noall +answer +noedns -x $( iface-ip eth0 )
      /usr/bin/dig +noall +answer -x $( iface-ip eth0 )

• If the answers are blank, it is required to create a PTR record.
• If only the last command succeeds and a Microsoft AD DNS server is being used, please review this Microsoft Article Some DNS name queries are unsuccessful after you deploy a Windows-based DNS server.

4. Validating NTP

vracli ntp status

5. Restarting all the pods

   /opt/scripts/deploy.sh
   

6. Restarting specific pods

   kubectl -n prelude scale deployment ID1 --replicas=0
   kubectl -n prelude scale deployment ID1 --replicas=1
   

Note: Where ID1 is the pod name, for example:

kubectl -n prelude scale deployment vco-app --replicas=0
kubectl -n prelude scale deployment vco-app --replicas=1

7. Log bundle creation

   sh /generate-log-bundle
   

• Log locations

8. VMware Aria Automation Orchestrator service

• In case the Cloud Extensibility proxy is used for integrating with VMware Aria Orchestrator, there is a helpful health validation that may be found in VMware Aria Automation Orchestrator Control Center.
  • Login using root credentials to control center https://CEXPFDN/vco-controlcenter
  • Click on Validate Configuration.

9. Best Practices

• Power ON and OFF following this document Starting and stopping VMware Aria Automation. Instead of using /opt/scripts/deploy.sh --shutdown it is required to use /opt/scripts/deploy.sh --onlyclean
• Custom modifications to the guest operating system of the appliances are not supported.
• The Orchestrator Service upgrades occurs automatically. 
  • You may manually disable the application upgrade following the article Suppress the auto-update of vRealize Orchestrator for vRealize Automation SaaS cloud extensibility proxy (87726)
• The CEXP appliance upgrade is triggered manually following this document Upgrading a cloud extensibility proxy, running the command vracli version will show the appliance version, not the orchestrator or abx service version.