Skip to main content

Managing check-in/check-out and power management of Instances

Bravura Security Fabric can manage VMWare virtual machines where the Bravura Security Fabric can start and stop individual virtual machines as well as containers through Bravura Privilege check-out/check-in process.

Virtual machines and containers are listed as accounts in Bravura Privilege . In these cases, the account ID is prefixed with _VirtualMachine and an underscore followed by the type of container respectively.

Checking out a virtual machine:

  • Ensures only a single person has access to it at any one given time.

  • Allows for authorization and approval of use of the virtual machine via work-flow.

  • Powers on the VM, on demand, so that VMs are not left running.

When the end user is finished with the instance they can check it in, which will:

  • Power off the VM, so that extra running costs are not incurred.

  • Allow access to the VM by other users.

    The virtual machine is automatically checked in after the expiry time, in case the end user forgets to check it back in.

The following example shows how to check-out (or power on) an instance:

  1. Add the VSphere target.

  2. Run psupdate to list accounts (VMs and vApps).

  3. Add an IDAPI user.

  4. Manage the VSphere accounts whose account ID is pre-fixed with _VirtualMachine.

  5. Copy the sample file pxnull-vsphereco.cfg to the instance script folder.

  6. Update the credentials of the IDAPI user in pxnull-vsphereco.cfg.

  7. Configure the plugin points RES_CHECKOUT_SUCCESS and RES_CHECKIN_SUCCESS to execute pxnull.exe -cfg pxnull-vsphereco.cfg.

  8. As an end user, check-out the VM.

  9. After the request is approved, verify the instance is powered on.

  10. Check-in the instance, and verify the instance is powered off.

In this section: