Add public cloud
- 1 Choose your public cloud use case
- 2 Obtain your public cloud credentials
- 3 Modify user roles to add public cloud
- 4 Create a public cloud region
- 5 Reseller hierarchy
- 6 Create a reseller scope
- 7 Create a reseller administrator user
- 8 Create a reseller enterprise
- 9 Create or modify a reseller customer scope
- 10 Create or modify a reseller customer tenant
- 11 Create customer cloud accounts
- 12 Create a customer tenant with XaaS and Abiquo Setup Service
This guide describes how to add public cloud to your Abiquo cloud platform. This guide assumes that you already have a private cloud platform.
For a brief introduction to public cloud, see https://abiquo.atlassian.net/wiki/spaces/ABI60/pages/408158796.
For details of some important public cloud features in Abiquo, see https://abiquo.atlassian.net/wiki/spaces/ABI60/pages/408161757.
Choose your public cloud use case
Before you add a cloud provider you should get to know the platform and its public cloud features.
Check which features that the platform supports for your provider. See https://abiquo.atlassian.net/wiki/spaces/ABI60/pages/408206656.
Read about how the platform works with the provider. See Public cloud integrations.
If your customer would like to use their own account (partner or standard), Abiquo can manage accounts for the major public cloud providers.
For details of how Abiquo manages accounts in VCD, see https://abiquo.atlassian.net/wiki/spaces/ABI60/pages/408167896
You can offer your customers access to a public cloud provider with:
Compute features and/or
Billing features, such as billing dashboards and budgets
You can use Abiquo with reseller accounts for AWS and Azure.
You can use Abiquo to create customer accounts in the cloud providers and automatically add compute credentials to customer tenants.
You can use Abiquo to create users in the cloud provider portal, and use a shortcut link to connect to the portal.
You can display billing data for the tenants in the hierarchy
Obtain your public cloud credentials
Abiquo uses two kinds of credentials: compute credentials and pricing credentials.
For reseller customer credentials, there may be different credentials to use for compute features and for billing only.
For details, see Obtain public cloud credentials .
Modify user roles to add public cloud
Based on which public cloud providers and features you will offer, you should modify your roles to add new privileges to enable the new features.
These lists contain some example privileges to consider. ALWAYS test your user roles in your own environment.
Users and tenant administrators
The privileges to consider for users and tenant administrators are as follows:
Home
View bills
Display optimization dashboard tab
Display hybrid dashboard tab
Display VM cost view widget on Hybrid dashboard tab
Virtual datacenters
Manage floating IPs (currently assigned to enterprise administrators)
Manage VPNs (currently assigned to enterprise administrators)
Manage classic firewalls (vCloud)
Manage virtual machine hard disks (vCloud)
Assign public IPs to VMs
Access public network tab
Manage public network elements
Assign external IPs to VMs (vCloud)
Access external network tab (vCloud)
Assign firewalls to virtual machines
Assign load balancers
Apps library
Export a virtual machine template to public cloud region
Users
Manage provider credentials
Manage virtual datacenter roles
Access budgets section
Manage budgets
Platform administrators
If your platform administrators do not have cloud administrator roles, please check that they have all the appropriate privileges for public cloud, which may include the user list plus the following privileges:
Home
Manage bills
Infrastructure
Manage public cloud regions
Access infrastructure view and PCRs
View public cloud region details
Virtual datacenters
Manage default virtual datacenter firewall
Manage VDC default roles
Users
Manage enterprise properties
Manage virtual datacenter roles
Pricing
Add a cost code when editing a VM template
Access Pricing view
Manage pricing
Manage pricing credentials
Control
View enterprise hierarchy
Create a public cloud region
Reseller hierarchy
In public cloud, when you have a reseller account, such as an Azure CSP or Amazon partner account, you can use a reseller hierarchy to manage your reseller customers.
Create a reseller scope
If you are not using a tenant hierarchy in private cloud, create a new reseller scope. If you already have a reseller scope, check that your reseller scope is correctly configured for public cloud as described here.
To define a tenant hierarchy you will need a reseller scope and one or more customer scopes.
Your reseller tenant with a reseller scope will be at the top of a hierarchy of customer tenants with customer scopes.
To define a scope hierarchy, select a Parent scope for each scope.
To create a scope for a reseller tenant:
Go to Users → Scopes
Click + add
Enter the details
For the reseller's Parent scope, select the
Global scope
or no scope.
Go to Entities
Select the tenant Enterprises that the reseller will manage directly, e.g. to manage users
Select the Locations that the reseller and their customers can use.
Remember to select your new public cloud providers or regions!
Click Save
Create a reseller administrator user
To create a reseller administrator user.
Go to Users view → Users
Create or edit a reseller administrator user
For the Role, if you created a new role with added privileges for public cloud, select the new Role
For the Scope, select the reseller scope
Create a reseller enterprise
If you are not using a reseller hierarchy for private cloud, create a new reseller enterprise for public cloud.
See Abiquo cloud reseller guide | Create a reseller enterprise.
Notes and related links:
Display cloud provider billing data, see https://abiquo.atlassian.net/wiki/spaces/ABI60/pages/408204839
Tenant metadata for reseller, see Enterprise properties for resellers
To inject tenant metadata into VMs, see https://abiquo.atlassian.net/wiki/spaces/ABI60/pages/408178736/Manage+enterprise+credentials+and+properties#Inject-enterprise-properties-as-VM-variablesTo onboard the prices of hardware profiles from public cloud, see https://abiquo.atlassian.net/wiki/spaces/ABI60/pages/408179686
If you have pricing models assigned to reseller customers and you add public cloud pricing credentials for AWS or Azure, then Abiquo will automatically onboard hardware profile prices for them.
After the initial onboard, to stop the synchronization, you can stop the cron job that runs it
Create or modify a reseller customer scope
For your new or existing cloud tenants that will be customers of your reseller in a reseller hierarchy.
Go to Users view → Scopes
Create or edit a tenant scope
For the Parent scope, select the
reseller scope
Go to Entities and select the new public cloud providers or regions
Click Save
Create or modify a reseller customer tenant
For your new or existing cloud tenants that will be customers of your reseller in a reseller hierarchy.
Log in as the
reseller administrator
userGo to Users view
Create or edit an enterprise
For the Default scope, select the
reseller customer
scopeIf the customer will have sub-tenants, select the Key node checkbox
Optionally, set Allocation limits to control your tenant’s resource usage
Go to Datacenters, and drag the new public cloud providers or regions into the Allowed column
If the reseller customer will use billing only, go to Credentials and follow the instructions at https://abiquo.atlassian.net/wiki/spaces/ABI60/pages/408184524
Go to Properties and enter custom price factors as required
Click Save
Create customer cloud accounts
As a reseller administrator, you can automatically create a cloud account for your reseller customer tenant in AWS or Azure.
Log in as the
reseller administrator
userEdit the
reseller enterprise
Go to Credentials
Next to the cloud provider name, click the building Create account button
Select the
customer enterprise
and enter the customer account details
Abiquo will add the new customer compute credentials to the customer enterprise.
Create a customer tenant with XaaS and Abiquo Setup Service
With XaaS and the AbiquoSetupService, you can automatically create a customer tenant structure in Abiquo.
A child scope with name “SCOPE-” + “New enterprise name”.
A key node enterprise in the new scope with name = “New enterprise name”.
A new user with role = “Default user role” and name = “admin” + “New enterprise name”
For more details, see https://abiquo.atlassian.net/wiki/spaces/ABI60/pages/408211940
Copyright © 2006-2024, Abiquo Holdings SL. All rights reserved