rutgerblom.com

recent posts

about

VMware Cloud Foundation Architect specializing in VCF, NSX, and Infrastructure Automation

Category: vmware cloud foundation

  • Using Kasm as a Browser-Based Jump Point for a VCF 9 Lab

    Using Kasm as a Browser-Based Jump Point for a VCF 9 Lab

    Using Kasm as a browser-based access layer in front of a VCF lab turned out to be a useful pattern. With Keycloak providing authentication for both Kasm and VCF SSO, the lab gets a cleaner access flow without exposing every VCF administrative interface directly to my workstation.

  • Building the Foundation for a VCF Automation All Apps Landing Zone with Terraform

    Building the Foundation for a VCF Automation All Apps Landing Zone with Terraform

    Terraform can describe parts of a VCF Automation 9.1 All Apps landing zone, but not the full model end to end. In this post I walk through the first layers of the landing zone foundation, including organization creation, identity provider configuration, quota, networking, content library and namespace consumption, while also calling out where the current…

  • Using Keycloak as an OIDC Identity Provider for a VCF Automation Organization

    Using Keycloak as an OIDC Identity Provider for a VCF Automation Organization

    I wanted to test organization-level OIDC authentication in VCF Automation 9.1 using Keycloak from my Provider Box setup. It worked in the end, but a few small details around group claims and claims mapping were easy to miss.

  • Guardrails in VCF Automation 9.1

    Self-service without guardrails is just delegated infrastructure access with a nicer interface. In this post I look at guardrails in the VCF Automation 9.1 All Apps model, and how organizations, quotas, namespaces, networking, policies, and extensibility work together to make private cloud consumption safer and more repeatable.