Deploy the VMware OVA Template

You can deploy  as a virtual appliance using a VMware OVA template.
capam32
You can deploy 
Privileged Access Manager
 as a virtual appliance using a VMware OVA template.
First, deploy the VMware OVA template then configure the virtual appliance network settings. Before you can configure the network settings, the 
Privileged Access Manager
 license is required. After you upload the license, configure the network connection so that it can autoprovision (import) your virtual machine devices.  
The steps to deploy the virtual appliance include:
2
Deploy the OVA Template
Download and deploy the Virtual Appliance OVA within a VMware ESX or ESXi environment. 
Follow these steps:
 
  1. Download the Virtual Appliance OVA from the CA Support site to local environment.
  2. Log in to the vSphere Virtual Infrastructure Client or vSphere web client.
  3. Select 
    File, Deploy OVA Template
    . In the web client, select 
    Home
    VMs and Templates
    . Right-click the vCenter, and select 
    Deploy OVF Template
    .
  4. Browse to the location of the OVA file and select the file and select Open.
    The OVA template is imported. Continue with the rest of the configuration. Select Next to move through the configuration.
  5. In the Name and Location settings:
    1. Enter a new name for this appliance.
    2. In the 
      Inventory Location
      , select the data center location where you want to install 
      CA PAM
      . Select 
      Next
      .
  6. For the 
    Host/Cluster
     settings, specify the host or cluster location where you want to deploy the template.
  7. For the Storage, select where you want to store all data files that are associated with the VM.
  8. For the Disk Format, select 
    Thick Provision Eager Zeroed
    . Thin Provisioning is not supported.
  9. Accept the remaining default settings.
  10. Review the settings. Verify that the 
    Power on after deployment
     check box is 
    not
     selected.
    If any setting is changed, failure to keep this box unchecked results in redeployment of the OVA template. Edit the settings before the first power-up cycle of the guest VM instance.
  11. Select Next.
    The OVA template is imported into the VMware host, cluster, or data center location that you previously selected.
The VMware virtual appliance deployment is complete. Go to the next section to edit the virtual machine settings.
Edit the Virtual Machine Settings
The tasks that are required to set up the virtual machine settings include:
  • Add network adapters
  • Modify virtual RAM and CPU settings
Add Network Adapters
The OVA template ships with one virtual network adapter out of the box. The virtual appliance supports a total of eight virtual network adapters per virtual machine.
You can add the additional virtual network adapters even if there are no immediate plans to use them. Doing so allows for expansion when redeploying a new virtual appliance.
Add the virtual network adapters 
before
 the first power-on cycle of the virtual appliance.
Follow these guidelines:
 
  • Add virtual network adapters two through eight.
  • If you are deploying adapters on ESX/ESXi hosts, select the right VM network.
  • Select the correct network adapter type (Host Only, Bridged, or NAT) when adding virtual network adapters.
  • Optional: If the deployment only requires one virtual network adapter, set adapters two through eight so they do 
    not
     connect when the virtual appliance powers on.
  • Optional: Set all virtual network adapters with static MAC addresses. You can set a static MAC address that contains the VMware OUI prefix in compliance with the following format:
    00:50:56:
    XX
    :
    YY
    :
    ZZ
    XX is a valid hexadecimal number between 00 and 3F
    YY and ZZ are valid hexadecimal numbers between 00 and FF.
    Do not set the value for XX greater than 3F. Otherwise, the address might conflict with MAC addresses that the vSphere vCenter Server generates, or addresses that are assigned to the adapters for infrastructure traffic. See the VMware vSphere documentation for more information about VMware OUI allocation. To generate MAC addresses that meet the requirements, third-party sites are available. 
Adjust Virtual RAM and CPU Settings 
See the Virtual Instances section of the Installation Requirements page for guidance on configuring RAM, CPU, and storage. 
Clone and Launch the Virtual Machine Instance
After the virtual appliance settings are complete, complete the following steps:
  1. Take a snapshot of the instance and make a full clone. This newly cloned instance serves as the new template for future deployments in your environment.
    Any changes to the virtual machine settings require a new full clone.
  2. Launch a new virtual appliance instance from the cloned VM.
  3. Power on the virtual machine.
    After the boot process is complete, the Virtual Utility Console displays in the VMware Virtual Console.
  4. Configure the network settings using the Virtual Utility Console.
Configure Network Settings
For initial network configuration, configure a default gateway and one or more network interfaces. These first steps enable the virtual appliance to connect to a network.
Basic Network Setting
From the Virtual Utility Console, configure the settings for the first IP address. For other interfaces, you can use the 
Privileged Access Manager
 user interface.
The Main Menu of the console shows which keys are used to navigate through each menu.  
Follow these steps:
 
  1. From the Main Menu of the utility console, select 
    Basic Network Settings
    . The Network Setup screen appears.
  2. For the Default Gateway field, enter an IP address of the virtual appliance.
  3. Specify a name as the host name for the virtual appliance.
  4. Set the Domain (if applicable)
  5. Save your configuration. You return to the Main Menu.
Interface Network Settings
Enable the required network interfaces for the virtual appliance.
Follow these steps:
 
  1. From the Main Menu, select 
    Interface Network Settings
    .
  2. For each network enabled network interface, enter an IP address. At least one interface is required.
  3. Set the subnet mask for each enabled network interface.
  4. Save the configuration.
  5. From the Main Menu, restart Networking.
  6. Verify that the network configuration is valid by contacting (pinging) the configured IP address from another PC.
The remaining configuration steps can be completed from the 
Privileged Access Manager
 user interface or Workstation Client.