Background
vCenter provides an alarm feature which causes vCenter to automatically look for certain events or conditions within your virtual environment, and automatically take some action when conditions are met. There are quite a lot of criteria supported, you can generate alarms based on vCenter's event stream, so for example you could create an alarm any time a virtual machine is powered off. Alarms could also be created based on vCenter statistics, for example an alarm can be generated if an ESX host's memory utilization is above 90% for too long.
There are a number of actions you can take in response to an alarm. For example you can send email or generate an SNMP trap. You can also run scripts. A popular topic on the PowerCLI forum lately is how to run PowerCLI scripts in response to vCenter actions. Unfortunately the process is pretty tricky, so I've created some sample scripts and laid out a process that will hopefully give you everything you need to get going.
Note: These instructions were prepared based on vSphere 4.0. If you're using VirtualCenter, things may vary a bit (or maybe a lot), I haven't actually tried it. If you try this with VirtualCenter, please leave a note with your experiences.
Step 1: Within vCenter, decide on a well-defined location for your scripts.
Your life will be a lot easier if you put everything in one place, so you should decide where you want all your scripts and data to go. I recommend using a directory called %ALLUSERSPROFILE%\application data\VMware\VMware VirtualCenter\scripts. You'll have to create this directory but using this location has the advantage that your scripts will exist alongside a lot of other vCenter data.
One thing to note is that vCenter doesn't actually make use of environment variables, so henceforth I'm always going to use the location of C:\Documents and Settings\All Users\\application data\VMware\VMware VirtualCenter\scripts. Your drive letter and location may vary, so make the adjustment accordingly.
Step 2: Copy all the sample scripts into this location.
Getting the scripts just right is a tedious and painful process, so I've created some starter content that should make it a lot easier. After you've decided on your script location, copy all the files from the Alarms repository below into your directory.
After you've done that, your target directory will look a little something like this:
Step 3: Decide on an authentication strategy.
If you don't want to log in to vCenter in response to an alarm, skip this section. However there's a good chance that when an alarm is fired, you want to do something to vCenter in response to it. Of course, you'll need to authenticate to vCenter to do that. PowerCLI supports SSPI and single-sign-on, but chances are that won't help you here. The reason is that vCenter runs alarm scripts using the same account that is used for the vCenter service. By default this is the local system account, and a script running as local system won't be able to use SSPI to log in the vCenter.
There are 3 ways to deal with this:
- Code usernames and passwords into your scripts. This is the easiest and least secure approach.
- Change the vCenter service to use an actual domain login. To be honest I'm not sure if this is even possible, but if it is it will be difficult to use this approach if you're not already using it. On the other hand this approach would allow use of SSPI and would not require any ongoing maintenance.
- Store encrypted credentials for the local system account to use when running the script. This approach is much more secure than the first approach yet is not nearly as difficult as the third approach. It's also the approach I took, so I'll spend a bit of time discussing how to do it.
Approach 3 relies on the fact that PowerShell makes it pretty easy to deal with the Windows Data Protection API. This allows us to store a credential in a file in such a way as it can only be decrypted by someone who has logged in using the same identity that was used to export the credential. If you look at the screenshot above, there's a file called systemCredentials.enc.xml. This is my exported credential.
The trick is that the alarm script is going to be running as local system, so to make it possible to read this credential, I have to export this credential as local system. If I export it as Administrator, the alarm script won't be able to use it. This means that somehow I have to run PowerShell as local system. There are tricks for starting command prompt as local system, if you're running pre-Vista it's pretty simple to launch one using the "at" command. If you're on Windows 2008 you can use the psexec utility (also described in the same link).
Once you manage to get a local system command prompt, launch PowerShell and navigat to your script directory. Then "dot source" the credentialManagement.ps1 file and run Export-PSCredential. This brings up a prompt for credentials, so type in the user name and password you want to use against vCenter. This will cache your credential and you're ready to start running alarm scripts securely. Check your directory against my screenshot above to ensure that things appear to be in order.
. .\credentialManagement.ps1
Export-PSCredential -path systemCredentials.enc.xml
The downside to this approach is that if your vCenter password ever changes, you need to go in and re-cache the credential.
The other thing to note is that my scripts assumes you use this approach. If you don't, you'll have to edit each of them accordingly.
Step 4: Associate an alarm with a sample script.
You may think that from here it's just as simple as associating an alarm with your favorite .ps1 file. Unfortunately no, vCenter will only run batch files. So we need to create an intermediate batch file that will call our PowerShell file. This is the purpose of redirect.bat, we can use this batch file to call any PowerShell file we want. Since redirect.bat takes a script as an argument, we avoid the situation of having one batch file per PowerShell file.
Let's walk through the whole process of associating an alarm with a PowerCLI script. We'll create an alarm that fires any time a host's CPU utilizatoin is less than 75% and launches a script that will create a new VM on this not-busy-enough host. Of course this is a pretty stupid thing to do, but it's a good way to prove that everything is working as it should be.
First, let's create an alarm. If you've never created an alarm you may have a hard time figuring out how to actually do it. To do it, go to the very top of your inventory tree and right click on the root node, then select Alarm > Add Alarm
There are 4 tabs to fill out with the new alarm. Until you master all of this stuff I recommend just copying what I've got here.
In the first tab, within that Alarm Type group, select Hosts under the Monitor pulldown.
In the Triggers tab, add a trigger based on Host CPU Usage (%). Set the condition to "Is below". Set the condition length for both warning and alert to 30 seconds.
In the Reporting tab change "Repeat triggered alarm every" to 1 minute.
In the Actions tab, within the Frequency group change "Repeat actions every" to 1 minute. Then create an action. For the action type select "Run a command". On the right-hand side there are 4 pulldowns based on the state transitions. Set the first 3 of these to Repeat. Now comes the important part: within Configuration you need to enter the path to the redirect batch script, giving it an argument of the PowerShell script to run. For our purposes enter:
"C:\Documents and Settings\All Users\Application Data\VMware\VMware VirtualCenter\scripts\redirect.bat" "C:\Documents and Settings\All Users\Application Data\VMware\VMware VirtualCenter\scripts\sampleHostAlarm.ps1"
This extremely long line needs to go in without spaces or linefeeds. If you're using a different directory from the one I suggested, you'll also need to adjust that here.
Now we're ready to go. If you've done everything right, all of your not-too-busy hosts will start getting new VMs in less than a minute. That will continue until you disable or delete the alarm, so don't let it run too long. You can modify or delete an alarm by clicking the Alarms tab.
Step 5: Decide if you want to play it safe.
Your scripts may never exit. There are thousands of reasons why, it may enter an infinite loop, it may sit waiting for input, who knows? When vCenter runs a script, it times the operation and kills it after 5 minutes. Unfortunately it only kills the command prompt that it launches and not any child processes the command prompt may have created, so in reality vCenter is unable to reign in any runaway scripts.
One way we can cope with that is: before running any alarm script, check for old leftover scripts and kill them. If you want to play it safe and do that for yourself, I've provided a script called alarmCleanup that will do it. To use it, all you have to do is uncomment the relevant line in redirect.bat and you'll have extra protection against runaway scripts.
Step 6: Write your own scripts, using the samples as a guide.
I've provided 3 sample scripts to get you going, but there are two things worth pointing out that are not really obvious as you start writing your own scripts.
First, when your script is run, several environment variables will be defined, as this table shows.
|
Environment |
Sample |
|
VMWARE_ALARM_TRIGGERINGSUMMARY |
Metric Usage = 0% |
|
VMWARE_ALARM_DECLARINGSUMMARY |
([Yellow metric Is below 75%; Red metric Is b… |
|
VMWARE_ALARM_OLDSTATUS |
Green |
|
VMWARE_ALARM_TARGET_NAME |
192.168.1.11 |
|
VMWARE_ALARM_ALARMVALUE |
Current values for metric/state |
|
VMWARE_ALARM_TARGET_ID |
host-1560 |
|
VMWARE_ALARM_NAME |
New Alarm |
|
VMWARE_ALARM_NEWSTATUS |
Red |
|
VMWARE_ALARM_EVENTDESCRIPTION |
Alarm 'New Alarm' on 192.168.1.11 changed fro… |
|
VMWARE_ALARM_ID |
alarm-46 |
If you want to get the object that actually triggered the alarm, the best thing to use is the ID. Most PowerCLI Get cmdlets support a -ID argument that lets you load objects by ID. However, the ID that PowerCLI cmdlets use are a bit different from the IDs that will be set in the environment variable. For example, in the table above we have an id of host-1560. However, we can't call Get-VMHost -ID host-1560 and expect it to work, instead we have to prepend the term HostSystem- to it. In other words we would run:
Get-VMHost -Id HostSystem-host-1560
to get the host that triggered the alarm. The same is true of other objects, and you can see a table of prefixes below.
|
When |
Prepend |
|
Virtual Machines |
VirtualMachine |
|
Hosts |
HostSystem |
|
Clusters |
ClusterComputeResource |
|
Datacenters |
Datacenter |
|
Datastores |
Datastore |
Since alarms can only be associated with one type of object, you can hard-code this string inside the script that will respond to the alarm. Again there are samples to get you started in the right direction.
Troubleshooting.
Unfortunately this process is pretty tricky and you're probably not going to get it right the first time. If you need to diagnose what's going on, I recommend downloading Process Explorer.Some of the key things to note, when the alarm fires you should see a new process spawn as a child of vpxd.exe, then quickly disassociate from it (this is due to the use of "start" within redirect.bat).
Another important thing to note, if your PowerShell process isn't behaving properly, right-click on it and take a look at its environment and command line.
Expect the process of getting alarm scripts to take a bit of experimentation, but once you've got the first one working the rest is very easy. Good luck!
Hi Carter,
Please also let us know how to “Reset Status to Green”
http://communities.vmware.com/thread/233087
Thanks/HK
DoSMM is the world’s leading provider of the best quality virtual products and services at the lowest prices. We mainly provide SMM and SEO based products and services with high security and loyalty. SMM services include Facebook, Google services, Gmail, reviews and bank cards Keyword ranking in SEO services is the best quality of all our products. We cater to the needs of our customers because our sole goal is to achieve customer satisfaction. View all our products Choose and order first to get quality products. Thanks for choosing the right place – DOSMM.
https://dosmm.com/
Hi Carter,
How can I create alarms by script?
Do you have any samples?
Thank you very much for your help.
Thanks,
Olegarr
Check out http://communities.vmware.com/thread/239298?tstart=0 there are two options, some code that LucD wrote and some code that’s in the VI Toolkit Extensions.
Hey Carter – great post.
But I got a wierd issue I wonder if you can hellp with…
Im trying to run the above with a powershell script that writes events to the application event log.
When I run this script under the account running virtualcenter it runs fine but when its initated by an alarm it fails to write events.
I can see that the powershell process has kicked off from events in vc and in the powershell event log but nothing else happens.
Any ideas why this would happen?
The ps script to write events is below:
$evt=new-object System.Diagnostics.EventLog(“Application”)
$evt.Source=” Health Alarm”
$infoevent=[System.Diagnostics.EventLogEntryType]::Warning
$evt.WriteEntry(“A host in the Virtualcenter $args is reporting as having health issues. Please investigate further on this server”,$infoevent,1000)
Just a note to say the issue above was related to the 2 versions of powershell on my 64 bit server and that the execution policy on one of them was still disabled! One to note as vCenter now works on 64bit servers.
I have a SUSE based vCenter, where would I need to store these scripts?
Hi,
I have a dumb/silly question.
How can I get in the triggered script the type of alarm trigger that happened? (if it’s from warning to green for example)
I want to make some “if” statements in my script and take different actions depending on the status going from green to red or red to green (or intermediary states)
Thanks!
i am getting error every time when i setup alarm. Why ?
Shibas are very smart but are somewhat mischievous and independent and can be difficult
to train. not only can it be dangerous for your dog (for
example, if he. Pet nutritionists are advising owners to feed good quality natural treats grown organically.
Thanks for the inspiration on this post – I have detailed out how I am using this in my latest blog entry!
With the advancement of technology and growing use of the internet, there has been observed a great hike in the number of viruses. These viruses directly attack your computer systems, resulting in corrupting your important data and stealing your confidential information. Viruses like Ransomware can also lock your data permanently until you pay some ransom to get the access back.
Mcafee.com/activate Online Help – Step by Step guide for McAfee Activate, Download & complete installation online. We are providing independent support service if in case you face problem to activate or Activate McAfee product. Just fill the form below and will get in touch with you as quick as possible.
Norton, one of the largest security products providers, has made it quite easy to protect your computer system from the malicious online activities, viruses, Trojan horses, scams and other threats. By installing a Norton setup to your device, you can be sure of the privacy of your important files as well as confidential information. Be it a business or consumer, Norton offers a special security software to suit the needs of everyone. You can choose anyone from the following:
Students are anxiously waiting for the TS Inter Results 2018 announcement because the students know the importance of the exams and also the importance of the score at the time of further studies
Looking for Vaastu Consultant In Hyderabad? here is the right place you. The best part of home or office or in personal life is peace.
Hey, nice post! Thanks for sharing. I am already following you blog.
I work in a Classfied website in Brazil, where people advertise there car for sale, it is free and it really works.
How can I create alarms by script?
Buy SoundCloud Reposts
https://www.instafollowers.co/buy-soundcloud-reposts
Do you want to protect your system data from malware and viruses? Then, you need first to download the Eset antivirus.Eset.com/us/activate & eset.com/ca/activate- Get steps to download, install, and activate the Eset antivirus. To enter the product key, visit eset.com/activate
Norton Antivirus is the best internet security that protects your data and device from being lost and damaged. Get your Norton Products started today.
norton.com/setup
To install Norton that you purchased from norton.com/setup or from a retail store, you must create a Norton account or add the purchased product to the existing account.
norton.com/enroll
Norton Setup is easy to install and activate than that of any other internet security. norton.com/setup will here provide you easy and quick understanding about Norton.
norton.com/enroll
webroot Antivirus is the best program to protect your device from any threat and virus. Get started with your Webroot Antivirus today at webroot.com/safe. https://answer-webroot.com/
It is great to refresh the site with the progression of time so the clients can discover new https://www.webhostingscoupon.com/interserver-promo-code.html Interserver coupon codes stuff here about your administrations. It is an extraordinary activity for the general population use to come here and need to think about your items.
Best Place to buy pots online for plants in India. Order all types of pots online at very affordable prices. Fast Delivery & COD Available
webroot Antivirus is the best program to protect your device from any threat and virus. Get started with your Webroot Antivirus today at webroot.com/safe. http://situsgame.co/
What does TBH meaning? What’s more slangs should we know in 2020? 21+ ridiculously useful slangs on social media, such as Instagram, Twitter, Facebook. TBH meaning
Trustnet.tech is an award winning IT company that provides web and mobile development services to StartUps, SMEs, Agencies as well as Enterprises
Thank you for this it is amazing. I am a beginner and this has helped me tremendously.
The Amazon Kindle got overall thankfulness since the time the primary day of its dispatch. The individuals who love to peruse depend on the solace and convenience of this contraption.
Very nice article and content, thanks a lot and keep doing this nice job,
regards
alex
I found very helpful information on your post, thanks for sharing with your great knowledge.
It was a very good post indeed. I thoroughly enjoyed reading it.
Thank you So much for sharing this useful information, I was searching this from last one month I found this article really helpful.
Great post you have shared with everyone. We can get valuable knowledge from this site. Thanks for sharing this informative stuff with us.
This is a genuine site. I really liked this site. Everything about this site is cool.
very nice post, i found it very explanatory and helpful, best regards and thanks for sharing!
your follower
jake
Excellent work. Yours appreciate able efforts in this blog are really helpful and satisfactory for me. You mentioned quality information. I will suggest your blog to others. This article will be helpful to them. For more quality, unique information I use the (Package point)guide its also a helpful guide regarding different bundle updates like SMS or Jazz Call Package etc. keep sharing your informative and unique knowledge with us. I will wait for your more unique articles.
Treatment through ethical Ayurveda, counselling, modern medicine, exercises, and food logs. It is one of the most professional and reliable Ayurvedic clinics in New Delhi. The clinic has been treating patients across India for more than 70 years.
Thanks You Very Nice Information. Buy Google reviews Cheap
Great Article. Your Blog especially Different From Other. Buy Facebook Ad Accounts
Supreb Article & Great Blog. Thanks for Writing. BUY AMAZON ACCOUNTS
So far more than 20000 patients have consulted Dr. Verma for Herbal treatment of ulcerative colitis and successfully avoided the painful J-pouch colon surgery.
ayurvedic doctor for ulcerative colitis
Yüzlerce marka model ve ürün ile güvenli online alışveriş siteleri başında gelen e-ticaret sitesi.
The clinic has been treating patients across India for more than 70 years.
Sushruta
thank you for this good content!
Hey,
Really nice post, thanks for sharing.
I have been reading your posts for quite some time. And every time, it adds to my knowledge. But could you please elaborate on the last section in your upcoming post? Keep writing.
Thanks for your post. I’m half suprised… very informative
Thanks for your post. I’m half suprised… very informative
To install Norton that you purchased from norton.com/setup or from a retail store, you must create a Norton account or add the purchased product to the existing account.
https://www.yesidowedding.com.br/
Really great and useful post, thanks for sharing.
It’s a superb article. Thanks for this information
I like this, but I hope that the VCSA provides more functionality to make the interface more accessible for programming scripting jobs. I doubt VMware wants me to be taught Python to trigger alert actions, I don’t want to keep a separate box if I can help it, I’d like PowerCLI scripts to be re-written.
Not-so-tangentally: Do you know any dynamic logic that would be used in the configuration of resource pool shares? It’s very prone to mistakes, and I haven’t yet read an accurate blog post about how to set them up. I’ve got the possibility to set it by script (which needs PowerCLI).
I read this aticle Honestly. Buy Google Reviews
Really Nice Posting Also article… Buy Google Reviews
Thanks for your previous informative and important post and specially this post.
Thanks for your previous informative and important post and specially this post.
The procedure of cleaning the mattress and how long does it carpet to dry after shampooing
Apple TV 4K combines the best of television with your favorite Apple devices and services for a special experience in your living room. To activate apple TV visit URL Activate.apple.com. In some countries and areas, you may be able to use your Apple TV to sign in with your cable or TV provider to view TV series and movies that are part of your cable or TV subscription.
Activate.apple.com
In some countries and areas, you may be able to use your Apple TV to sign in with your cable or TV provider to view TV series and movies that are part of your cable or TV
Terimakasih Good Job, for your previous informative and important post and specially this post.
https://mitraboiler.com
Thanks for sharing,
Great article. Really informative and helpful. Thanks for sharing it with us. Appreciate it.
Really good work. Keep it up.
Great work. It really helped me. Interesting one.
https://www.khanleathers.in/Saddle-pad.php Saddle Pad manufacturers Nagpur
Instagram account is generally known by IG or insta. Instagram account is created by Kevin Systrom and Mike Krieger. This is an American company that is mostly used to Photo and video sharing social services. Now its algorithm is developed by Facebook inc. the Instagram account is released on 6 October 2010. Again, Instagram can connect to any other social networking sites and also can share their photo, videos, etc. Now, in 2021, Instagram gives new features which name is “Room”. By using these features, Every user goes live together with four people. Instagram also gives Hashtags that help users generate both photos and videos.
http://www.techrar.org/fix-the-message-keeps-stopping-error
message+ keeps stopping
Great post you have shared with everyone. We can get valuable knowledge from this site. Thanks for sharing this informative stuff with us.
Good day! I genuinely enjoy reading your posts.
Recently I read this blog, I am found very valuable things about what you shared with this blog. Great work, Amazing word! Keep It working.
emlak sitesi
The Yogshala clinic has been treating patients across India for more than 7 years.
For more information visit https://www.theyogshala.com/
I reallly enjoy reading your blog
I reallly enjoy reading your blog
Accounting plays an important role in any organization, be it big or small. You can keep track of all the services related to your finances and monitor your future transactions only with accounting services. Accountancy Matters is one of the best accounting Firms Melbourne offering clients, advice and appropriate solutions related to accountancy. It aims at customer service and is an exclusive accounting firm located in the suburb of Prahran in Melbourne. Further, it is focusing on lending a helping hand to all the ambitious owners of Businesses in Melbourne.
https://businessaccountingmelbourne21.blogspot.com/2022/02/what-are-benefits-of-having-tax.html
Accounting plays an important role in any organization, be it big or small. You can keep track of all the services related to your finances and monitor your future transactions only with accounting services. Accountancy Matters is one of the best accounting Firms Melbourne offering clients, advice and appropriate solutions related to accountancy. It aims at customer service and is an exclusive accounting firm located in the suburb of Prahran in Melbourne. Further, it is focusing on lending a helping hand to all the ambitious owners of Businesses in Melbourne.
https://businessaccountingmelbourne21.blogspot.com/2022/02/what-are-benefits-of-having-tax.html
Hey, I’m an advanced advertiser furthermore, I give they best quality 100 percent long-lasting audits with a non-drop ensure. I have great information about how to give the best quality 100 percent stickable long-lasting audits. I know about Google, Facebook, Trustpilot, Yelp, Zillow, accounts, Sitejabber, reviews, io and substantially more click here…
https://usmultiservice.com/product/buy-google-5-star-reviews/
Online booking og priser på forrude udskiftning
A very beautiful post, the previous posts are very beautiful. Thank you so much for the important and informative post.
Relly informative article.
Anyone looking to buy gmail accounts you can check our website.
Relly informative article.
Anyone looking to buy gmail accounts you can check our website.
https://medium.com/@beedatimes22
Relly informative article.
The quality and quantity of work produced in here is absolute informative. Thanks for sharing…
http://datahk2023.org/
Hey, I’m an advanced advertiser furthermore, I give they best quality 100 percent long-lasting audits with a non-drop ensure. I have great information about how to give the best quality 100 percent stickable long-lasting audits. I know about Google, Facebook, Trustpilot, Yelp, Zillow, accounts, Sitejabber, reviews, io and substantially more click here…
https://usmultiservice.com/product/buy-google-5-star-reviews/
Professional Local Business Marketing Agency in USA Welcome to our site usmultiservice.com. Usmultiservice is a USA-based Digital Marketing Service type website. We are providing online reviews services, legit payment, social media accounts, marketing, and SEO services. We are experts on Google, Yelp, Home advisor, Trust pilot, App, and other reviewing services.
https://usmultiservice.com/product/buy-google-5-star-reviews/
You can keep track of all the services related to your finances and monitor your future transactions only with accounting services. yellowstone merchandise
Excellent article. Thanks so much for commenting on the post. Obviously, I really appreciate it https://jualthermaloil.com
It is really great to see your work. I work at Louis Vuitton, where there is a huge variety of OUIS VUITTON ONTHEGO MM, louis vuitton onthego bag. You can find the latest fashion trends at Louis Vuitton Neverfull Tote Enjoy the latest trends with louis vuitton onthego bag.
Nice post, thank you.