惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

L
LangChain Blog
博客园 - 司徒正美
美团技术团队
WordPress大学
WordPress大学
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
人人都是产品经理
人人都是产品经理
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
T
Troy Hunt's Blog
S
Schneier on Security
T
The Exploit Database - CXSecurity.com
P
Proofpoint News Feed
云风的 BLOG
云风的 BLOG
Engineering at Meta
Engineering at Meta
Cisco Talos Blog
Cisco Talos Blog
T
Tor Project blog
B
Blog
NISL@THU
NISL@THU
月光博客
月光博客
博客园 - 【当耐特】
AWS News Blog
AWS News Blog
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
腾讯CDC
L
Lohrmann on Cybersecurity
The Cloudflare Blog
L
LINUX DO - 最新话题
S
Security @ Cisco Blogs
S
Secure Thoughts
Spread Privacy
Spread Privacy
有赞技术团队
有赞技术团队
The Last Watchdog
The Last Watchdog
Project Zero
Project Zero
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
Vercel News
Vercel News
H
Hacker News: Front Page
S
SegmentFault 最新的问题
Schneier on Security
Schneier on Security
aimingoo的专栏
aimingoo的专栏
P
Privacy & Cybersecurity Law Blog
博客园 - 三生石上(FineUI控件)
Forbes - Security
Forbes - Security
C
CXSECURITY Database RSS Feed - CXSecurity.com
I
InfoQ
T
Tailwind CSS Blog
Application and Cybersecurity Blog
Application and Cybersecurity Blog
G
GRAHAM CLULEY
W
WeLiveSecurity
小众软件
小众软件
Recorded Future
Recorded Future
Cyberwarzone
Cyberwarzone
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org

VMware Blogs

Mastering Infrastructure Policies in VMware Cloud Foundation Automation 9.1 Modernizing the Private Cloud: Why VCF 9.1 Lifecycle Management is a Game Changer Announcing the VMware Cloud Foundation 9.1 Upgrade Planning Tool VCF Breakroom Chats Episode 86 – Containers Made Easy: The New “Container-as-a-Service” in VCF 9.1 Securing Your VCF 9.1 Infrastructure with the Symantec Identity Security Platform Virtually Speaking: The AI Reality Check with Dave Linthicum Zero Touch Provisioning: Activating Edge Sites with VMware Cloud Foundation Edge 9.1 VCF Breakroom Chats Episode 85 – Cloning Success at Scale: Inside VCF 9.1’s App Stack Formation VMware Cloud on AWS の使用状況を確認できる API Unlocking the Full Potential of Programmable Infrastructure with VMware Cloud Foundation 9.1 – New Features and Capabilities Smarter Patching at Scale: Vulnerability Assessment and Remediation with VMware Tanzu Platform Encrypted vMotion Offload to Intel QAT in VMware Cloud Foundation 9.1 Deepen Your Expertise: Four Key Benefits of Attending Increase Deployment Flexibility with VCF Edge Automation 1.0.3 Avi Advantage: Automating Certificate Management of VCF Workloads More Memory, Less Effort: Configuring Memory Tiering in VCF 9.1 VCF 9.1 Licensing: Programmatic, Centralized, and Built to Scale Why APJ Networking Professionals Need Private Cloud Expertise VCF 9.1 Networking: Simpler VPC Connectivity Control VCF 9.1 Networking: Exploring Network Services for Virtual Private Clouds VCF Networking 9.1: Seamless DDI Integration with Infoblox The Open Source Advantage: Building from Source for Ultimate Security Expand Shared VMDKs with Clustered Applications in VMware vSAN for VCF 9.1 Monetizing Zero-Trust Security with VCF 9.1 and VMware vDefend VMware vSAN Protection and Recovery Enhancements for VCF 9.1 Deliver Production SQL Server DBaaS with VMware Data Services Manager 9.1 Maximizing Profitability: VCF 9.1 Cost-Focused Approach for VMware Cloud Service Providers Modernizing Your Infrastructure: Introducing VMware Cloud Foundation 9.1 to VCSPs VCF 9.1 is Available: Explore the New Features in Hands-on Labs What’s New with vSphere in VMware Cloud Foundation 9.1? Resizing VMware vCenter in VMware Cloud Foundation 9 Non-Disruptive VMware vCenter Patching in VMware Cloud Foundation 9.1 VMware vCenter Virtual Hardware Gets an Upgrade in vSphere with VCF 9.1 AI Has Changed the Threat Landscape. Is Your Infrastructure Ready? Simplifying Storage with the New Effective Capacity View in VMware vSAN for VCF 9.1 Auto-RAID in VMware vSAN for VCF 9.1 – Comprehensive System-Managed Data Resilience Introducing VMmark 4.1: Enhanced Power Efficiency Benchmarking for Private Cloud Infrastructure Advanced Memory Tiering Enhancements in VMware Cloud Foundation 9.1 VCF 9.1 Is Here. See It in Action. 博通發布 VMware Cloud Foundation 9.1 How Broadcom Is Helping Enterprises Win the AI Security Sprint How to Prepare for the World of AI Driven Exploits Avi Innovations for VCF 9.1: Powering Kubernetes, Agentic AI and VPC Workloads VCF 9.1: The Secure, Cost-Effective Private Cloud Platform for Production AI Announcing VCF 9.1: Modern Private Cloud Built for Efficiency and Resilience Announcing VMware Cloud Foundation Edge 9.1: A Scalable, Autonomous Edge Platform Accelerate, Streamline, and Control Your Self-Service Private Cloud with VMware Cloud Foundation 9.1 Deploy Modern Apps Faster, Scale Smarter, and Lower Your TCO with VMware vSphere Kubernetes Service in VCF 9.1 Scale Smarter, Save More: Redefining Infrastructure Economics with VMware vSphere in VCF 9.1 AI with VCF 9.1 on AMD GPUs: Build with open frameworks and simplify management, at a lower TCO Streamline, Simplify and Protect all your AI workloads with VCF 9.1 Simplify Workload Connectivity and Enhance Network Scale and Performance with VCF 9.1 VMware and CrowdStrike Deliver New Integration for Cyber Recovery Workflows How Many Users Can Your LLM Server Really Handle? From Infrastructure to Agents: A Hands-On Guide to Secure Private AI with Broadcom – Part 2 The New Frontier: Leading the Cloud-Native Evolution Replicating VMware vSphere Configuration Profile Desired State Webinar Recap: Design and Architecture Considerations for VMware vSphere Kubernetes Service on VMware Cloud Foundation Kubernetes 1.36: What Actually Changed for Enterprise Platforms Enhance Lateral Security and Ingress Load Balancing for Kubernetes Workloads Avi Load Balancer Analytics: Root Cause Application Performance Issues in Minutes Analyst Insight Series #3: Policy-Driven Governance and Multi-Tenant Control Post-Quantum Readiness on VMware Cloud Foundation Registration Is Live for Las Vegas | $ave with Early-Bird May 21, 2026: What’s New in VMware Tanzu Data Intelligence 10.4 From Infrastructure to Agents: A Hands-On Guide to Secure Private AI with Broadcom – Part 1 Stop Guessing: Advanced Monitoring and Troubleshooting for Data Services CPU, Disk, Network, and Memory Workload Profiles for DVD Store Database Testing How VMware Salt Automates Compliance Across Private Cloud Analyst Insight Series #2: Operational Scalability and Lifecycle Management MCP vs. APIs: Why You Need Both for AI Applications The Real Constraint on Enterprise AI isn’t GPUs; It’s Power Deploying Harbor Service in Air-Gapped VMware Cloud Foundation 9.0 Why Enhanced DirectPath Wins for High-Performance Apps Bridging the (.Local) Gap: A Split-Domain Design for VMware Cloud Foundation Deployment Observability on VMware vSphere Kubernetes Service VMware Cloud on AWS: Introducing the Usage Report APIs Converging VMware vSphere to VMware Cloud Foundation 9.0: The Top 10 Questions Answered May 6, 2026: What’s New in Tanzu Platform 10.4: Powering Agentic Apps at Scale VMware Tanzu RabbitMQ Powers the Modern Data Lakehouse with New Spark Integration and Enterprise Tooling Tanzu Data Intelligence 10.4 Delivers AI-Driven Analytics, Unified Real-Time Operations, and Sovereign Resilience Enterprise-Ready Agents Made Simple & Safe with VMware Tanzu Platform Agent Foundations Introducing Tanzu Platform 10.4: Extending Platform as a Service to Agentic Applications How AI-Assisted Analytics in Tanzu Data Intelligence Can Help Remove the SQL Bottleneck From Prototype to Production: Securing Database MCP at Enterprise Scale The Compelling Case for a Private Cloud Data Intelligence Platform The Unification Dividend: Consolidating Database Operations on VMware Cloud Foundation The Modern Spring Workflow Is Enterprise-Ready and AI-Boosted [TAM Blog] セキュアブート証明書の有効期限切れに関する注意点と対応について Accelerate Lateral Security and Ingress Load Balancing for Kubernetes Workloads From Platform to Data: Building a Cloud-Native Developer Experience On-Prem with VMware Cloud Foundation How VMware Cloud Foundation (VCF) Training Helps Keep Top Tech Talent in APJ Build Your Case for Attending VMware Explore 2026 Spring 開発元が提供する商用サポート「VMware Tanzu® Spring Essentials」とは VMware Cloud on AWS より i7i.metal-24xl インスタンスの提供開始 VMware Advanced Memory Tiering Tips for Success VMware Cloud Foundation Edge 9.0: Two-Host Edge Site Deployment with Brownfield Import Your Database Is About to Become an AI Tool. Is It Ready? Applying GitOps Principles to Maintain Desired State Configuration using VMware vSphere Configuration Profile – Part 3 Webinar Recap: Converging VMware vSphere to VMware Cloud Foundation 9.0
Modern Automation with VMware Cloud Foundation Part 2: Modern Infrastructure as Code with VCF
Bryan Sullins · 2026-06-11 · via VMware Blogs

In my last post, we learned about push-button automation with the UI provided by the SDDC Manager. We learned that the SDDC Manager allows us to manage the automation of new clusters, add new hosts into existing clusters, and that it can manage infrastructure across multiple vCenters Fleet-wide.

Here, we are going to take a look at the infrastructure as code (IaC) approach and detail how we can leverage the VCF APIs to achieve a more automated way of provisioning and life-cycling VCF infrastructure.

Dispatches from the Field: A Word on Automation Platforms

Talking to VMware engineers on the daily, I commonly get the question whether or not we “support Terraform” or if we “support Ansible”.

Those are the wrong questions.

We don’t care what tool you use:

The advantage of using VCF is that we provide a standard and unified REST API endpoint that provides flexibility in automation platform choice.

Here are some more details on that with VCF 9.1.

Since a VCF Fleet allows you to have one single API endpoint to easily manage your entire VMware infrastructure, you won’t need to make multiple calls across multiple vCenters, ESX hosts, etc.

Additionally, with unified policies and guardrails, they are all enforced/accessible through the set of VCF APIs.

We have API reference docs for every VCF component. You can also access the local swagger documentation for all VCF components, like here is how to access that for VCF Operations.

Let’s Do Something on VCF, Shall We!

The example I will use here is an API call on the VCF SDDC Manager through Terraform. I want to see some information about my VCF domain and test to see if I need to add more memory or more hosts into my cluster. If I have less than 15% memory capacity, then add a host (possibly); if not, do nothing.

To be fair, Terraform may not be ideal for runtime remediation, but I am using it because it’s super common. My point here, and the larger lesson, is that I am filing the receipt that cloud-native tools like Terraform can be used.

Can you use Ansible, bash, Python, or PowerCLI to do the same thing?

Absolutely!

My example here is just the code for the test. Actions will be up to you, but the main lesson from this is a working example of using an automation tool on our SDDC Manager API.

All of the code I am running is from this repo. I will be referencing files from that repo, but feel free to expand on that repo or make it your own. The README should give you everything you need to run the terraform code.

Part 1: Formatting the Output with bash

The first piece is a shell script that will run as part of the terraform apply command. This script is not required, but it’s an easy way to format the output, rather than using the Hashicorp Configuration Language formatting. This is the examples/read-only-api-gate/scripts/sddc_probe.sh file in the directory.

Part 2: The main.tf File

In the main.tf file, I will ensure I am querying for the right information. Most of the parameters there are for connection to the SDDC Manager API and to query for memory usage in the Management Domain.

I also have some accompanying tfvars files and variables files; that’s part of the standard terraform directory setup. There is an example included for you to tweak according to your needs.

Part 3: Running Terraform Apply

Here’s the full terraform output:

terraform init                                                                                                                                                       ─╯

Initializing the backend...

Initializing provider plugins...

- Reusing previous version of hashicorp/external from the dependency lock file

- Using previously-installed hashicorp/external v2.3.5

Terraform has been successfully initialized!

You may now begin working with Terraform. Try running "terraform plan" to see

any changes that are required for your infrastructure. All Terraform commands

should now work.

If you ever set or change modules or backend configuration for Terraform,

rerun this command to reinitialize your working directory. If you forget, other

commands will detect it and remind you to do so if necessary.

Then the plan:

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

terraform plan                                                                                                                                                       ─╯

data.external.sddc_probe: Reading...

data.external.sddc_probe: Read complete after 2s [id=-]

Changes to Outputs:

  ~ domain_capacity    = [

      ~ {

          ~ current_capacity = {

              ~ cpu     = {

                  ~ used          = {

                      ~ value = 43.657998765267436 -> 34.97899901072632

                        # (1 unchanged attribute hidden)

                    }

                    # (2 unchanged attributes hidden)

                }

              ~ memory  = {

                  ~ used  = {

                      ~ value = 281.517578125 -> 281.328125

                        # (1 unchanged attribute hidden)

                    }

                    # (1 unchanged attribute hidden)

                }

              ~ storage = {

                  ~ used  = {

                      ~ value = 1.34421987600399 -> 1.3442330625457544

                        # (1 unchanged attribute hidden)

                    }

                    # (1 unchanged attribute hidden)

                }

            }

            id               = "9faa050c-216e-4b54-8e1f-177f1b5e0cac"

            name             = "vcf-m01"

        },

    ]

You can apply this plan to save these new output values to the Terraform state, without changing any real infrastructure.

───────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────

Note: You didn't use the -out option to save this plan, so Terraform can't guarantee to take exactly these actions if you run "terraform apply" now.

You can apply this plan to save these new output values to the Terraform state, without changing any real infrastructure.

And finally, the apply:

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

~ domain_capacity    = [

      ~ {

          ~ current_capacity = {

              ~ cpu     = {

                  ~ used          = {

                      ~ value = 43.657998765267436 -> 34.97899901072632

                        # (1 unchanged attribute hidden)

                    }

                    # (2 unchanged attributes hidden)

                }

              ~ memory  = {

                  ~ used  = {

                      ~ value = 281.517578125 -> 281.328125

                        # (1 unchanged attribute hidden)

                    }

                    # (1 unchanged attribute hidden)

                }

              ~ storage = {

                  ~ used  = {

                      ~ value = 1.34421987600399 -> 1.3442330625457544

                        # (1 unchanged attribute hidden)

                    }

                    # (1 unchanged attribute hidden)

                }

            }

            id               = "9faa050c-216e-4b54-8e1f-177f1b5e0cac"

            name             = "vcf-m01"

        },

    ]

In these past two posts, I have talked about automating the VMware Fleet infrastructure. In Part 3 we will take a look at automating VM and Kubernetes provisioning using VCF Automation.

Additional Resources

Discover more from VMware Cloud Foundation (VCF) Blog

Subscribe to get the latest posts sent to your email.

此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。