I’ve seen a number of queries around the behaviour of vSphere with Tanzu when it comes to querying Kubernetes objects on the Supervisor Cluster. More often than not, it is a question which arises when a user get an error similar to the following: Error from server (Forbidden): wcpnamespaces.appplatform.wcp.vmware.com is forbidden: \ User “sso:Administrator@vsphere.local” cannot list resource “wcpnamespaces” in API group \ “appplatform.wcp.vmware.com” in the namespace “cormac-ns” The reason for these errors is because the Supervisor Cluster is not treated as a general purpose Kubernetes cluster. The predominant role of the Supervisor Cluster is to provide services, such as the…
One of the key features of the TKG 2.0 on vSphere 8 announcement at VMware Explore 2022 is the consolidation of our the Tanzu Kubernetes offerings into a single unified Kubernetes runtime. This can be considered the second edition of VMware Tanzu Kubernetes Grid. It will still come in two flavors. One flavor is as a VM-based standalone management cluster whilst the other flavor will be Supervisor-based, integrated into vSphere with Tanzu. However, the important point is that both flavors now have the same APIs for cluster provisioning, same tooling for extension management, and the same model for release distribution.…
In my earlier overview of vSphere 8 announcements at VMware Explore 2022, I highlight a number of new products and features. One of the most significant announcements is vSphere Distributed Services Engine, formerly known as Project Monterey. As mentioned in the post, this enhancement gives us the ability to offload tasks to a Data Processing Unit (DPU aka SmartNIC). These tasks have historically been done by x86 CPUs on the hypervisor. Now these tasks are offloading to the DPU. And the programmable hardware accelerator on the DPU is also leveraged to boost overall performance. The first wave of innovation around…
Following on from last week’s preview of multi-AZ in vSphere with Tanzu available in vSphere 8.0, I now turn my attention to another great feature. In this post, I will preview the new Pinniped integration to provide an easy and secure login to Tanzu Kubernetes clusters. I’ve discussed Pinniped a number of times on this site, but those previous posts relate to standalone TKG clusters (often referred to as TKGm). However, with vSphere 8.0, vSphere with Tanzu also has Pinniped integration. In a nutshell, vSphere Administrators can now federate an external Identity Provider (IDP) with the Supervisor cluster. This means…
One of the most interesting announcements for me at VMware Explore 2022 was around the introduction of vSphere Zones. This feature, when it becomes available with vSphere 8.0, enables vSphere with Tanzu deployments to be rolled out across geographically dispersed vSphere clusters placed in separate racks in a single physical datacenter, as per the release notes. This provides an extra level of availability that wasn’t previously possible. This extra availability is not just for the Supervisor Cluster, but also for the Tanzu Kubernetes clusters deployed by the TKG service. And indeed, it provides additional availability to the applications running on…
I was looking for a way to migrate VMkernel adapters back from a VDS to a VSS. This was because I am testing various upcoming releases of vCenter Server 8.0 and vSphere with Tanzu. vSphere with Tanzu, if you do not use NSX-T, requires a distributed switch and distributed portgroups. After building out some test environments, I wanted to roll back a distributed switch (VDS) configuration to a standard vSwitch (VSS) configuration. The process seems to have changed a few times in the past, and I could not find anything that demonstrated how to do task on vSphere 7.0. Thus…
It is a long time since I wrote a post like this. However, I am thrilled to announce that I am back presenting at the VMware User Group conferences again this autumn. In October, I have been invited to speak at no fewer than four VMUG meetings around Europe. Without further ado, this is where you can hear me talk about some of our recent VMware Explore 2022 announcements regarding vSphere 8.0 and vSAN 8.0, vSphere+ and vSAN+, as well as Kubernetes on vSphere, and my thoughts around the vSphere Administrators journey towards managing Kubernetes platforms. I am delighted to…