Oracle Cloud Infrastructure Documentation

Creating an SDDC

Create a multi-host SDDC with 3 to 64 ESXi hosts or a single-host SDDC on supported Oracle Cloud Infrastructure (OCI) bare metal Compute instances by using the VMware Solution service.

There are two types of SDDC configuration available: a multi-host SDDC, and a single-host SDDC used for testing and short-term development. For more information about SDDC types, see SDDCs.

Before You Begin:

  • You need an existing VCN with an IP address CIDR of /24 or larger available for running the SDDC. The following list shows the allowed CIDR sizes and the number of nodes you can create in each:
    • CIDR block size /24, segment size /28, number of nodes in cluster 3-12.
    • CIDR block size /23, segment size /27, number of nodes in cluster 3-28.
    • CIDR block size /22, segment size /26, number of nodes in cluster 3-60.
    • CIDR block size /21, segment size /25, number of nodes in cluster 3-64.
  • We recommend that you set up connectivity between the VCN and your on-premises network before provisioning your SDDC. See Access to Your On-Premises Network.
  • You can quickly create a VCN for your SDDC and set up an IPSec connection between your on-premises network and the VCN by using the Site-to-Site VPN workflow. To learn how, see Site-to-Site VPN Quickstart.
  • The Create SDDC workflow can automatically create and configure the SDDC's networking resources for you. Alternatively, you can use pre-existing networking resources that you create manually before you create the SDDC. SDDC provisioning requires the following resources:
    1. Open the navigation menu, click Hybrid, and then click VMware Solution.
    2. Click Create SDDC.
    3. Provide basic information for the SDDC:

      • SDDC name: Enter a descriptive name for the SDDC. This name must be unique among all SDDCs in the creating, active, or updating state across all compartments in the region. The name must be from 1 to 16 characters long and must start with a letter. It can contain only alphanumeric characters and hyphens (-), and hyphens can't be next to each other. The name is not case sensitive. For example, "test" and "Test" are treated as the same name. Avoid entering confidential information.

      • SDDC compartment: Select the compartment in which to create the SDDC. All ESXi hosts for this SDDC are placed in this compartment.
      • HCX: If you're using standard shapes, the Enterprise license type is automatically included at no cost and can't be changed. If you're using dense shapes, configure the following options:
        • Select the Enable HCX check box to have the workflow install the HCX Manager plugin and integrate it with vCenter in the SDDC. You can't install this plugin later.
        • Choose the HCX License Type to install. For more detail, see HCX License Types. You can change the license type after provisioning if you're using dense shapes.
      • VMware software sersion: Select the version of VMware software to install on the ESXi hosts. Although the VMware software bundle includes vSphere, vSAN, NSX, and vCenter components, the version you specify here is the version of vSphere. Compatible versions of the other components are installed with the version of vSphere that you select. For details about the vSAN, NSX, or vCenter component versions installed, see About the VMware Software. You can change this software version after provisioning.
      • Pricing interval commitment: Select the pricing interval to apply to the ESXi hosts. For more information about available pricing intervals, see Billing Options. Choose an option, and then select Pricing interval must be confirmed to continue.
      • Availability domain: Select the availability domain in which to create the SDDC. You can choose to deploy dense shape ESXi hosts across multiple availability domains. Standard shape ESXi hosts can be deployed only in a single availability domain. To ensure high availability, ESXi hosts in the SDDC are distributed across the fault domains in the availability domain. The management subnet and VLANs for this SDDC must be in this same availability domain.
      • SDDC hardware type: Select a shape to use for ESXi hosts in the SDDC. A shape is a template that determines the number of CPUs, amount of memory, and other resources allocated to a newly created instance. If you choose a shape with an AMD processor, select the number of cores. Standard shapes require block volume storage. A management datastore is automatically created for you. If you want more storage, you can create it later in this workflow. For more information, see Supported Shapes.
      • Single-host SDDC To create a multi-host SDDC (3-64 hosts), do not select the check box.
      • Number of ESXi hosts: Enter the initial number of ESXi hosts to create in a multi-host SDDC. Specify at least 3 hosts and at most 64 hosts.
      • Prefix for ESXi hosts: (Optional) Enter a prefix to use for the names of the ESXi hosts to help identify them. This string has the same criteria as the SDDC name. It must be from 1 to 16 characters long, must start with a letter, and can contain only alphanumeric characters and hyphens (-). Avoid entering confidential information.
      • Enable shielded instance: Select this check box to enable shielded instances for all ESXi hosts created in the SDDC. You can enable this option only when you create the SDDC. You can't enable this option later, or only for specific ESXi hosts.
      • Capacity type: Select a capacity type to use when the ESXi hosts are created.
        • On-demand capacity provisions the compute capacity when the host is created.
        • Capacity reservation uses capacity that is counted against a previously created reservation. Choose a compartment and the name of a reservation. For more information, see Capacity Reservations.
          Note

          Capacity reservation is not supported for an SDDC that uses multiple availability domains.
      • SSH key: Provide the public key portion of the SSH key. This key is required for remote connections to the ESXi hosts.
      • Show advanced options: (Optional) Click this link to apply tags to the SDDC. If you have permissions to create a resource, then you also have permissions to apply free-form tags to that resource. To apply a defined tag, you must have permissions to use the tag namespace. For more information about tagging, see Resource Tags. If you're not sure whether to apply tags, skip this option (you can apply tags later) or ask an administrator. Any tags that you specify are applied to all of the resources in the SDDC.
    4. Click Next to advance to the Networking page.
    5. Choose a VCN for the SDDC. The VCN can be in a different compartment than the SDDC and its ESXi hosts.
      If you enabled HCX in step 3, the selected VCN must have a NAT gateway attached to it.
      • If a NAT gateway already exists for the VCN, the name, compartment, and public IP address information is displayed.
      • If no NAT gateway is attached to the selected VCN, the workflow creates one for you. Enter a name and select a compartment for the NAT gateway.
    6. To have the workflow create the network resources for this SDDC (recommended), click Create new subnet and VLANs, and then provide the following values. To use existing resources, skip to step 7.
      1. Click Create new subnet and VLANs.
      2. Enter an available CIDR block in your selected VCN for the SDDC management CIDR. The workflow divides this CIDR into equal segments to use for the provisioning subnet and the required VLANs. The workflow creates 1 subnet and 7 VLANs for version 6.x and 1 subnet and 9 VLANs for version 7.x of the VMware software. If you enable HCX, one additional VLAN is created.
      3. (Optional) Click Show network details to view or edit the information for the subnet and VLANs that the workflow will create. Details include the route table and security list for the subnet, and the route table and NSG for each VLAN. To update the information for the subnet or a VLAN, click the Actions menu () on a row, and select Edit subnet or Edit VLAN.

        If you have enabled HCX, an additional route rule is created to allow traffic from the vSphere VLAN to the NAT gateway.

    7. To use existing network resources for this SDDC, click Select existing subnet and VLANs, and then provide the following values:
      1. Choose the compartment and provisioning subnet for your SDDC's management network. You cannot change the subnet after provisioning.

        The CIDR value shown is the private address space for the chosen subnet.

      2. Choose the compartment and VLAN for each function of the SDDC's management network.

        The VLAN gateway CIDRs shown are the CIDR blocks from which to derive IP addresses for each VLAN's layer 3 traffic. These CIDR blocks also provide the private IP addresses that Oracle uses as attachment objects for public IP addresses when ESXi hosts require internet access.

        • NSX Edge Uplink 1: Uplink used for communication between the VMware SDDC and OCI.
        • NSX Edge Uplink 2: Reserved for future use to deploy public-facing applications on the VMware SDDC.
        • NSX Edge VTEP: Used for data plane traffic between the ESXi host and NSX Edge.
        • NSX VTEP: Used for data plane traffic between ESXi hosts.
        • vMotion: Used for vMotion (VMware migration tool) management and workload.
        • vSAN: Used for vSAN (VMware storage) data traffic.
        • vSphere: Used for management of the SDDC components (ESXi, vCenter, NSX-T, and NSX Edge). If you selected the Enable HCX check box in step 3, verify that the VLAN selected for vSphere contains a route table rule that allows traffic to the NAT gateway. For more information, see VLANs
        • HCX: Used for HCX traffic. This VLAN appears only if you selected the Enable HCX check box.
        • Replication Net: Used for the vSphere Replication engine. (VMware version 7.x only)
        • Provisioning Net: Used for virtual machine cold migration, cloning, and snapshot migration.
    8. (Optional) Provide an SDDC workload CIDR block for the workflow to create an initial logical segment for your VMs. The value must be /30 or larger and must not overlap with the VCN or the SDDC network CIDRs. Note that you can add network segments for the SDDC in NSX Manager after the SDDC is provisioned.
    9. Click Next to advance to the Notifications page.
    10. (Optional) If you chose a standard shape, create additional block volumes.
      The workflow automatically creates a management datastore with 8 TB capacity and VPUs/GB 10 (Balanced). If you want more storage for the SDDC, you can create additional block volumes here.
      1. Click Create block volume.
      2. Enter the required information for the block volume. For information about block volume configuration, see Creating a Volume.
      3. Click Submit.
    11. (Optional) Enable monitoring and provide information about alarms and notifications. For more information, see Configuring Notifications.
      1. (Optional) Enable instance alarms and provide information about the alarm. To see the Interval and Trigger delay fields, click Show default alarm values.
        • Alarm name prefix: Each bare metal ESXi host has a separate alarm created for it. Enter a prefix that will appear at the beginning of the alarm names for this SDDC.
        • Alarm severity: Choose a severity for the alarm: Info, Warning, Error, or Critical. All nonzero health issues for a bare metal instance will trigger an alarm with the selected severity.
        • Interval: Select the interval at which the metric is emitted. The default is 1 minute.
        • Trigger delay: Select the number of minutes that the condition must be maintained before the alarm is in firing state. The default is 1 minute.
      2. Select an existing notification topic, or create a new one. If you select Create new, enter the following information:
        • Topic name: Enter a friendly name for the notification topic.
        • Subscription protocol: Select the protocol that you want to use to receive your notifications. The default is email.
        • Email address: Enter the email address or address list that you want to send notifications to.
        • URL: If you select the Pager Duty protocol, enter a URL to send notifications to.
        • Notification compartment: Choose a compartment for the notification.
      3. Choose events that you want to receive notifications for. By default, all available notifications are selected.
        • To deselect a notification event, click the X on the notification.
        • To reselect a notification event, click on the selection field and select the notification from the list.
    12. Click Next to review the summary of settings for creating the SDDC.

      If you need to make changes, click Edit to return to a page, and update the settings.

    13. When you're satisfied with the summary information, click Create SDDC.

      The page shows the provisioning status of each resource.

      When provisioning is complete, the SDDC's details page includes a username and an initial password that lets you access the vCenter management utility for the SDDC.

      Note

      The password value displayed in the Console is not updated after you change it.
    14. (Optional) You can check the status of provisioning by viewing its work request item from the SDDC's details page, under Resources

    Provisioning takes approximately two and a half hours to complete.

    If errors occur, you can click Retry Provisioning. Clicking Cancel Provisioning cancels the provisioning process and deletes all resources created for the SDDC.

  • Use the sddc-create command and required parameters to create an SDDC.

    oci ocvs sddc create --compartment-id compartment_id --compute-availability-domain compute_availability_domain
 --esxi-count esxi_count --instance-prefix instance_prefix --nsx-edge-up1-id nsx_edge_up1_id
 --nsx-edge-up2-id nsx_edge_up2_id --nsx-edge-vtep-id nsx_edge_vtep_id --nsx-vtep-id nsx_vtep_id
 --prov-subnet-id prov_subnet_id --ssh-authorized-keys ssh_authorized_keys --vmotion-id vmotion_id 
--vmware-version vmware_version --vsan-id vsan_id --vsphere-id vsphere_id [OPTIONS]

    For a complete list of flags and variable options for CLI commands, see the CLI Command Reference.

  • Run the CreateSddc operation to create a new SDDC and ESXi hosts.

Next Steps

After provisioning your SDDC, you might want to perform some of the following tasks:

  • Configure network connectivity between the SDDC and resources in your on-premises network, the Oracle Services Network, the internet through a NAT gateway, or other resources in the VCN. For information and instructions, see Configuring SDDC Network Connectivity.
  • Modify resources or properties of your SDDC. For example, add ESXi hosts. See SDDCs.
  • Create VMs in your SDDC or perform other VMware tasks. To do so, you can log into vCenter by using the vSphere Client link from the details page of the SDDC.