In my most recent post, we saw how to setup a privileged user which would write SPNs for database users to enable Windows Authentication. We also saw how this user could update DNS entries automatically when a database is created. We followed these steps and provisioned a SQL Server instance. Once the instance was provisioned, we create a login for the owner and saw how the user could successfully login to the instance using Windows Auth. This is all great, but really one of the key points of DSM is self-service or DBaaS, database as a service. Therefore, what I…
Whilst Microsoft SQL Server is still in technical preview in Data Services Manager 9.0.1, our team continues to release significant enhancements for our customers as we gravitate towards full support. As I mentioned in the DSM 9.0.1 overview post, this release includes the ability to specify a privileged AD user who can create Service Principal Names (SPNs) for database users and update DNS entries. This means that the privileged user can now do the necessary tasks in Active Directory to allow Windows Authentication to work seamlessly on MS SQL Server instances and databases which have been provisioned via DSM. You…
The most visible feature in Data Services Manager (DSM) 9.0.1 is the appearance of some additional new objects in the navigation menu on the left hand side of the DSM UI. These are Namespaces and Data Services Policy. Customers who have already looked at VCF Automation, particularly as it integrates with DSM, may have some familiarity with these. Their purpose in DSM 9.0.1 is to align with RBAC features that are already in VCF Automation, specifically around multi-tenancy controls. Through the use of Namespaces and Data Service Policies in DSM 9.0.1, a DSM admin can now control which DSM users…
On a recent customer call regarding Postgres instances and databases provisioned by Data Services Manager (DSM), there was a question regarding Active Directory / LDAP integration. Specifically, there was a question on how to automatically provide an Active Directory / LDAP group access to a Postgres database. Now, as many readers are aware, DSM already supports Directory Services such as Active Directory and LDAPS for Postgres databases. See this earlier blog post on how to do that. But once Directory Services is configured in DSM, and selected during Postgres database provisioning, the DBA needs to create logins and grant access…
A quick note to highlight that I have published a new video on Data Services Manager integration with Aria Automation. This is on the back of a recent blog post discussing the same topic. This video shows the new config.yaml which makes it easier to include certificate information. It also shows you how to configure primary and secondary Postgres databases for replication purposes. Check it out below.
VMware Data Services Manager (DSM) 2.2.1 is now available with General Availability (GA) status and can be accessed directly from the Broadcom Product download Portal. One major new feature is the ability to now do Subnet Customisation during product installation, something many customers have been requesting. We have also included a number of security fixes, predominantly to address the critical security vulnerability CVE-2025-1094 to improve platform security. However, the purpose of this post is too look at another features which became available at the same time as DSM v2.2.1. This is the plugin for Aria Automation which allows the Service…
I have been doing some work with OpenLDAP in my lab, with a goal to give OpenLDAP users access to a PostgreSQL databases that I have been deploying via Data Services Manager v2.2. There are a few steps involved in achieving this. First, of course, is that I have to configure Directory Services on DSM, and point it at my OpenLDAP server. Second step is to provision a Postgres database which has Directory Service Authentication enabled. The third and final step is to give my OpenLDAP user permissions to login and access the database. In this blog post, each of…