My Technology Blog
Published date 5 December 2025
With the introduction of VCF 9, Broadcom has changed the way we look at Private Cloud. With Containers now being treated as “first class citizens” and VCF Operations centralising the management of entire VCF Fleets, we are now able to create a “hyperscaler-like” user experience. Part of this new Private Cloud user experience is done by activating vSphere Supervisor, which…
Published date 22 October 2025
The certificate management on VCF 9 is done using VCF Operations, under the Fleet Management menu. When using Microsoft CA to manage SSL certificates on VCF 9, there are 2 separate places where this is configured. The first place is under VCF Management, which can be used to configure SSL certificates of both VCF Operations and the Fleet Management appliance….
Published date 24 October 2022
When looking at a physical network, we can think of the DMZ as an area where our internet-facing services will reside, keeping our LAN isolated. I recognise that there isn’t a single formula that satisfies all use cases but, for the sake of argument and simplicity, I will be considering the DMZ as a barrier that exists between the Internet…
Published date 11 September 2022
PowerCLI can be very useful to automate tasks in a number of different use cases. On my home lab, I sometimes need to deploy new instances of NSX-T for testing purposes. Instead of installing those manually, I have created a simple script to automate this process. Instructions on how to install PowerCLI can be found at: As usual, I feel…
Published date 21 February 2022
On version 3.1.1, NSX-T introduced OSPF v2 support, which provides an alternative for customers that are not willing to work with BGP and/or Static Routes. On this post I will go over a basic configuration of OSPF on NSX-T, demonstrating the neighbour adjacencies that are established and testing connectivity between a VM on an NSX-T segment and a Loopback interface…
Published date 4 July 2021
On my post How to use Workspace ONE Access APIs I showed how to authenticate to the Workspace ONE Access APIs using the HZN cookie. Although using the HZN cookie provides a quick an easy way to do API calls, it may not the best approach in case you need to programmatically interact with Workspace ONE Access using APIs. Below…
Published date 16 June 2021
For starters, I feel that I it is my duty to advise that the contents of this post are not supported by the manufacturers and it is definitely not a good idea to implement this in any Production environments. With the release of vSphere/ESXi 7.0 a number of changes were introduced, including the deprecation of VMKLinux drivers. This means that…
Published date 6 March 2021
Okta offers the Universal Directory which is a user management system that provides a view of all integrated directories, including Okta’s internal user directory, from a single pane of glass. When integrating Workspace ONE UEM with Okta, we can leverage the the LDAP Interface, which is a component that allows us to connect LDAP applications to the Okta Universal Directory…
READ MORE Okta LDAP Interface integration with Workspace ONE UEM
Published date 2 March 2021
Typically, on an highly available Workspace ONE Access deployment, initially the first server is configured and services such as the KDC (used for iOS Mobile SSO) are initialized. After that, this server is cloned and the 3-node cluster is formed. The KDC service is usually initialized by running the following command: There might be a case where you need to…
READ MORE How to change the Workspace ONE Access KDC configuration on a cluster
Published date 29 January 2021
When deploying the Workspace ONE Access appliance we would usually login to the vSphere Client and use the Deploy OVF Template function. However unlikely, there might be a case where this interface is not available, so we would then need to find an alternative, such as using PowerCLI to perform this deployment. PowerCLI is a command-line tool that runs over…