Skip to content
CA Privileged Access Manager - 2.8.2
Documentation powered by DocOps

Deploy the VMware OVA Template

Last update November 14, 2017

You can deploy CA PAM  as a virtual appliance using a VMware OVA template.

First deploy the VMware OVA template then configure the virtual appliance network settings. Before you can configure the network settings, the CA PAM license is required. After you upload the license, configure the network connection so that it can autoprovision (import) your virtual machine devices.

The steps to deploy the virtual appliance include:

Deploy the OVA Template

Download and deploy the Virtual Appliance OVA within a VMware ESX or ESXi environment.

Follow these steps:

  1. Download the Virtual Appliance OVA from the CA Support site to local environment.
  2. Log in to the vSphere Virtual Infrastructure Client or vSphere web client.
  3. Select File, Deploy OVA Template.
  4. Browse to the location of the OVA file and select the file and click Open.
    The OVA template is imported. Continue with the rest of the configuration. Click Next to move through the configuration.
  5. In the Name and Location:
    1. Enter a new name for this appliance.
    2. In the Inventory Location, select the data center location where you want to install CA PAM. Click Next.
  6. For the Host/Cluster settings, specify the host or clulster location where you want to deploy the template.
  7. For the Storage, select the where you want to store all data files associated with the VM.
  8. For the Disk Format, select Thick Provision Eager Zeroed. Thin Provisioning is not supported.
  9. Accept the remaining default settings.
  10. Review the settings. Verify that the Power on after deployment check box is not selected.
    If any setting is changed, failure to keep this box unchecked results in redeployment of the OVA template. Edit the settings before the first power-up cycle of the guest VM instance.
  11. Click Next.
    The OVA template is imported into the VMware host, cluster, or data center location that you previously selected.

The VMware virtual appliance deployment is complete. Go to the next section to edit the virtual machine settings.

Edit the Virtual Machine Settings

The tasks that are required to set up the virtual machine settings include:

  • Add network adapters
  • Modify virtual RAM and CPU settings

Add Network Adapters

The OVA template ships with one virtual network adapter out of the box. The virtual appliance supports a total of eight virtual network adapters per virtual machine.

You can add the additional virtual network adapters even if there are no immediate plans to use them. Doing so allows for expansion when redeploying a new virtual appliance.

Important! Add the virtual network adapters before the first power-on cycle of the virtual appliance.

Follow these guidelines:

  • Add virtual network adapters two through eight.
  • If you are deploying adapters on ESX/ESXi hosts, select the right VM network.
  • Select the correct network adapter type (Host Only, Bridged, or NAT) when adding virtual network adapters.
  • (Optional). If the deployment only requires one virtual network adapter, set adapters two through eight so they do not connect when the virtual appliance powers on.
  • (Optional). Set all virtual network adapters with static MAC addresses. You can set a static MAC address that contains the VMware OUI prefix in compliance with the following format

     00:50:56:XX:YY:ZZ XX is a valid hexadecimal number between 00 and 3F

    YY and ZZ are valid hexadecimal numbers between 00 and FF.

    To avoid conflict with MAC addresses that the vSphere vCenter Server generates, or addresses that are assigned to the adapters for infrastructure traffic, do not set the value for XX greater than 3F. See the VMware VSphere documentation for more information about VMware OUI allocation. To generate MAC addresses that meet the requirements, third-party sites are available. 

Adjust Virtual RAM and CPU Settings 

  • The OVA template ships with 16 GB RAM. You can adjust the virtual RAM settings as low as 2048 for small development or pre-production deployments.

  • The OVA ships with one virtual CPU. You can adjust the virtual CPU settings as high as:

    • One virtual CPU with four cores

    • Four virtual CPUs each with one core

Clone and Launch the Virtual Machine Instance

After the virtual appliance settings are complete, complete the following steps:

  1. Take a snapshot of the instance and make a full clone. This newly cloned instance serves as the new template for future deployments in your environment.
    Any changes to the virtual machine settings require a new full clone.
  2. Launch a new virtual appliance instance from the cloned VM.
  3. Power on the virtual machine.
    After the boot process is complete, the Virtual Utility Console displays in the VMware Virtual Console.
  4. Configure the network settings using the Virtual Utility Console.

Configure Network Settings

For initial network configuration, configure a default gateway and one or more network interfaces. These first steps enable the virtual appliance to connect to a network.

Basic Network Setting

From the Virtual Utility Console, configure the settings for the first IP address. For other interfaces, you can use the CA PAM user interface.

The Main Menu of the console shows which keys are used to navigate through each menu. 

Follow these steps:

  1. From the Main Menu of the utility console, select Basic Network Settings. The Network Setup screen displays.
  2. For the Default Gateway field, enter an IP address of the virtual appliance.
  3. Specify a name as the host name for the virtual appliance.
  4. Set the Domain (if applicable)
  5. Save your configuration. You return to the Main Menu.

Interface Network Settings

Enable the required network interfaces for the virtual appliance.

Follow these steps:

  1. From the Main Menu, select Interface Network Settings.
  2. For each network enabled network interface, enter an IP address. At least one interface is required.
  3. Set the subnet mask for each enabled network interface.
  4. Save the configuration.
  5. From the Main Menu, restart Networking.
  6. Verify that the network configuration is valid by contacting (pinging) the configured IP address from another PC.

The remaining configuration steps can be completed from the CA PAM  user interface or Workstation Client.

Was this helpful?

Please log in to post comments.