公开(公告)号：US20230229482A1

公开(公告)日：2023-07-20

申请号：US17722417

申请日：2022-04-18

Applicant: VMWARE, INC.

Inventor： SANDEEP SINHA ,  Akash Kodenkiri ,  Varun Rajasekar ,  Prachi Singhal ,  Ivailo Vladimirov Loboshki ,  Dimitar Dimitrov ,  Hakan Sunay Halil

IPC: G06F9/455 ,  G06F9/50

CPC classification number: G06F9/45558 ,  G06F9/5072 ,  G06F9/45545 ,  G06F2009/4557

Abstract: An example method of creating an autonomous cluster of hosts in a virtualized computing system includes: enabling, by a virtualization management server executing a cross cluster control plane (xCCP), an infravisor in a seed host of the hosts, the infravisor a component of a hypervisor executing on the seed host; running, by the infravisor, a cluster control plane (CCP) pod on the seed host executing a CCP; providing, by the infravisor, a CCP configuration to the CCP pod; applying, by an initialization script of the CCP pod, the CCP configuration to the CCP to create the autonomous cluster having the seed host as a single node thereof; and extending the autonomous cluster with remaining hosts of the hosts other than the seed host as additional nodes thereof, the CCP applying a cluster personality to each of the remaining hosts derived from the seed host.

公开(公告)号：US20230229484A1

公开(公告)日：2023-07-20

申请号：US17722428

申请日：2022-04-18

Applicant: VMWARE, INC.

Inventor： Sandeep Sinha ,  Akash Kodenkiri ,  Vaun Rajasekar ,  Prachi Singhal ,  Ivailo Vladimirov Loboshki ,  Dimitar Dimitrov ,  Hakan Sunay Halil

IPC: G06F9/455 ,  G06F9/50 ,  G06F9/445 ,  G06F9/54

CPC classification number: G06F9/45558 ,  G06F9/5072 ,  G06F9/44505 ,  G06F9/541 ,  G06F2009/45587 ,  G06F2009/4557 ,  G06F2009/45595

Abstract: An example method of establishing trust between a cross-cluster control plane (xCCP) and a cluster control plane (CCP) of an autonomous cluster of hosts in a virtualized computing system includes: providing, by the xCCP, trust data of the xCCP to a hypervisor of a host in the autonomous cluster that is executing the CCP; providing, by the hypervisor, the trust data to the CCP through a volume attached to a virtual machine (VM) that executes the CCP; persisting, by the CCP, the trust data in a database; and accessing, by a security token service (STS) of the CCP, the trust data in the database to authenticate access to the CCP by the xCCP.