VCP7-CMA – Objective 3.1

Disclaimer: These are my notes from taking the 2V0-731 exam. If something doesn’t make sense, please feel free to reach out.

The goal of this objective is to understand how to deploy vRA.

Objective 3.1 – Install a Minimal Deployment


These are the key inbound ports required for vRA, for more information check the documentation listed in the references.

Port Number(s) Usage
TCP 4369, 5671, 5672, 25672 RabbitMQ Messaging
TCP 5488, 5489 Internally used - vRA Updates
TCP 8230, 8230, 8281, 8283 Internal vRO
TCP 8443 Identity Manager Administration
TCP 8444 VMware Remote Console
TCP 8494 Internal service cluster sync
TCP 9300 - 9400 Identity Manager auditing
TCP 40002, 40003 vIDM cluster sync

These are the key outbound ports required for vRA, for more information check the documentation listed in the references.

Port Number(s) Usage
TCP 443 IaaS Manager & infrastructure endpoint, vRA software service, Identity Manager server, View connection server
TCP 445 ThinApp repo for Identity Manager
TCP 902 ESXi network file copy and VMware Remote Console
TCP 8281 External vRO
TCP 8494 Container service cluster sync

Install the vRA appliance as a usual appliance deployment. Once deployed the IaaS installer files are available at https://vra.fqdn/installer. Also available on that page are:

The Windows server pre-requisites are:

Automated Installation

The installation wizard that is run from the vRA appliance runs a pre-requisite check which should validate all components. Time synchronisation is important, can use either NTP or host time to synchronise. If using host time, ensure host is using reliable NTP source.

The installation wizard from the vRA appliance takes you through the full installation. After it has run the pre-requisite check on the IaaS components you can attempt to ‘fix’ any gaps. I find this to actually be quite reliable but there is an option of a retry if it’s not successful. I typically manually fix anything the automated wizard fails on, then run the re-check.

Once the wizard is satisfied that all the pre-requisites are complete, it will move on to the full installation & configuration of vRA. Before starting this process it will prompt you to take snapshots of all servers involved.

Manual Installation

Make sure pre-requisites are installed on IaaS box(es):

These are the IIS installation options, essentially the default install plus ASP.NET 3.5 & ASP.NET 4.6.

IIS_Install_1 IIS_Install_2 IIS_Install_3 WPA_Install WCF_Install HTTP_Activation

And this is the required DTC Configuration:


Then log on to the vRA appliance administrative page. Go through each tab and make changes as appropriate to your environment. Start with hostname, then certificate, I find it useful to wait a few minutes before completing the remaining configuration to allow services to restart.