Aria Automation Configuration Properties: The Chamber of Secrets
Warning 🧪 This may get you in serious trouble. If you are working in customer’s environment, changing these parameters may render the environment unusable or make it unstable. The owner of the blog won’t be held responsible for any such ordeals. Play in your labs first.
Please make changes to these values under proper supervision of Broadcom\VMware engineers. This is coming straight from someone I know in Broadcom.
List of all possible keys
| cloud.zones.overlapping.enabled | Enable overlapping of cloud zone computes. |
| cooldown.ui.image.sync.minutes | E2E test for Sync Images button |
| disable.abx.integration | Disables ABX integration endpoint creation with Extensibility proxies |
| disable.deployment.sharing.ui | Disables deployment sharing between all users in the project |
| disable.gitlab.terraform.support | Disables Gitlab support for Terraform |
| disable.ipam.ip.blocks | Disables IPAM IP blocks in Network Profiles |
| disable.metering.policy | Disables price metering policy configuration |
| disable.project.constraints | Hides project constraints until the contraints functionality is fully implemented |
| disable.project.properties | Disables project properties |
| disable.project.tags | Disables tags on projects |
| disable.tenant.management | Hide the Tenant Management Tab |
| disable.ui.authorization | Disables the UI authorization, providing maximum rights in the UI |
| disable.ui.endpoint.edit.polling | Disables endpoint status polling to update data collection status |
| disable.ui.endpoint.polling | Disables endpoint polling |
| disable.ui.machines.infrastructure.view | Hides the Machines view in Infrastructure |
| disable.ui.onboarding.menu | Disables onboarding UI which is enabled by default |
| disable.ui.security.infrastructure.view | Hides the Security view in Infrastructure |
| disable.ui.volumes.infrastructure.view | Hides the Volumes view in Infrastructure |
| disable.ui.workloads.view | Disables the side navigation in Workloads and rename them to Deployments |
| disable.vpc.zones | Disables VPC zones. |
| disable.vrai.integration | Disables vRAI integration |
| disable.vrops.integration | Disables vROps integration |
| disable.vsphere.fcd | Disables First class disk (FCD) |
| disable.workflow.enumeration | Disables enumeration of workflows after adding a VRO endpoint |
| ENABLE_EXTENSIBILITY_SUPPORT | Enable extensibility support for onPrem appliances. |
| enable_request_stage_info | Enable request stage info in dev mode. |
| enable.amazon.resource.name.ui | Enables Amazon resource name UI when adding AWS cloud account |
| enable.aria.automation.standalone.mode | Allows user to open Assembler, Service Broker, Pipelines, and Config without being redirected to Aria Automation |
| enable.aria.naming | Enables Aria naming |
| enable.aws.application.load.balancer | Enables cloud-specific ‘Application Load Balancers’ resource types for AWS Endpoints within Blueprint UI |
| enable.aws.classic.load.balancer | Enables cloud-specific ‘Classic Load Balancers’ resource types for AWS Endpoints within Blueprint UI |
| enable.aws.network.load.balancer | Enables cloud-specific ‘Network Load Balancers’ resource types for AWS Endpoints within Blueprint UI |
| enable.branding | Enables org branding features |
| enable.ccs.ui | Enables Cloud Consumption tab |
| enable.cloud.specific.load.balancers | Enables cloud-specific ‘Load Balancers’ resource types for Azure, and NSX Endpoints within Blueprint UI |
| enable.cloudhealth.endpoint | Enables CloudHealth endpoint integration |
| enable.cmx.onboard.tkg.clusters | Enable onboarding of TKG clusters in vRA. |
| enable.cmx.sv.namespaces.project.change | Enable changing the project of supervisor namespaces. |
| enable.create.resource | Enable TTV or VM Creation in Service Broker UI. |
| enable.custom.naming | Enable new custom naming for your organization. |
| enable.custom.naming.migration | Migrate existing single project level template in project page to the new custom name templates. |
| enable.custom.resource.actions | Enables custom resource actions for existing resource types |
| enable.custom.resources | Enables custom resource types |
| enable.deployment.api.in.create.vm | Use deployment POST API for creating the VM. |
| enable.discovered.computes | Fetch all discovered computes for all Cloud Account regions |
| enable.flagman.custom.naming | Enables new custom naming type used in generic allocation via helper. |
| enable.flavor.mapping.core.count | Enables use of Core Count for vSphere endpoints in flavor mappings. |
| enable.form.designer.code.editor | Enable code editor in Form Designer request tab |
| enable.form.designer.external.validations.code.editor | Enable code editor in Form Designer validations tab |
| enable.gcp.gpu.properties.phase.two | Enables use of GPU properties for GCP endpoints in flavor mappings and Day2 policies |
| enable.github.enterprise | Enable GitHub Enterprise Integration. |
| enable.github.enterprise.on.prem | Enable GitHub Enterprise Integration on-prem for testing. |
| enable.gitlab.enterprise | Enable GitLab Enterprise Integration. |
| enable.gitlab.enterprise.on.prem | Enable GitLab Enterprise Integration on-prem for testing. |
| enable.global.search | Enables global search in navigation header |
| enable.grid.inline.sorting.resources | Enables sorting directly from the grid column for grids under resources |
| enable.guardrails.ui | Enables Guardrails tab |
| enable.hcmp.actions | Enables actions from HCMP (Hybrid Cloud Management Platform). |
| enable.hcmp.alerts | Enables alerts from HCMP (Hybrid Cloud Management Platform). |
| enable.hcmp.insights | Enables insights from HCMP (Hybrid Cloud Management Platform). |
| enable.image.mapping.ungrouped.view | Enables the ungrouped view for image mappings |
| enable.ipam.ip.blocks.vmc | Enables IPAM IP blocks in Network Profiles for VMC |
| enable.keyboard.shortcuts | Enables keyboard shortcuts |
| enable.live.agent | Enables integrated live agent instead of intercom |
| enable.migration.ui | Enables Migration tab |
| enable.multi.project.scope.secrets | Enables Multi project scoped secrets |
| enable.multiple.networks.on.local.ip.range | Enable support for multiple networks on a local IP range |
| enable.network.step.in.create.vm | Enables the network step in create VM. |
| enable.new.image.mapping.impl | Enables updates to image mappings views. |
| enable.new.security.groups | Enable new security groups provisioning and management |
| enable.nsx.alb.cloud.account | Enables nsx_alb cloud account creation in the UI |
| enable.nsx.load.balancer.enhancements | Enable nsx load balancer with nsx specific settings |
| enable.nsx.load.balancer.healthcheck.enhancements | Enable nsx load balancer with nsx health check specific settings |
| enable.pendo.io.onprem.tracking | Enable telemetry data to Pendo.io for user tracking in On-Prem |
| enable.pendo.io.saas.tracking | Enable telemetry data to Pendo.io for user tracking in SaaS |
| enable.policy.approval.onboarding | Enables policy approvals during onboarding. |
| enable.prelude.unified | Enables Prelude with Unified shell |
| enable.project.encryption.property | Enables encryption of the value of a custom property in a project |
| enable.project.system.properties | Enables viewing and creating system custom project properties starting with ‘__’ |
| enable.quick.onboarding | Enables quick onboarding feature on the virtual machines page |
| enable.saltstack.integration | Enable SaltStack Integration |
| enable.spot.machine | Enables option to allow spot machine in AWS cloud zones |
| enable.tenant.management.image.mappings | Enables the image mapping tab under Tenant Management |
| enable.tenant.subscriptions | Enables tenant subscriptions in provider organization). |
| enable.tmc.cluster.groups | Enable the feature toggle for cluster groups for TMC Integration. |
| enable.tmc.integration | Enable the feature toggle for TMC Integration. |
| enable.tmc.workspaces | Enable the feature toggle for workspaces for TMC Integration. |
| enable.ui.azure.environment | Enables selecting an environment for Azure Endpoints. |
| enable.ui.day2.resources | Enables the Day2 operations on the machines page |
| enable.ui.delete.resources | Enables the ‘delete’ button on machines and volumes page |
| enable.ui.endpoint.region.caching | Enables caching of endpoint regions in the UI |
| enable.ui.legacy.machines.workloads.view | Enables the legacy (Infrastructure) Machines view in Workloads |
| enable.ui.machines.workloads.view | Enables the Machines view in Workloads |
| enable.ui.manual.datacollector.id | If true, use tango-vsphere as the data collector for endpoint creation |
| enable.ui.networks.workloads.view | Enables the Network view in Workloads |
| enable.ui.remote.console | Enables the ‘remote console’ button on machines page |
| enable.ui.remote.desktop | Enables remote desktop |
| enable.ui.remote.ssh | Enables remote SSH |
| enable.ui.resource.details | Enables the detail pages of the resources in both Workloads All Resources and each individual resource page |
| enable.ui.volumes.workloads.view | Enables the Volumes view in Workloads |
| enable.vmc.cloud.account.integration | Enable VMC Cloud Account Integration. |
| enable.vro.cloud-plugin | Allows you to set an API token that will be used by the vRO integration to communicate with Tango |
| enable.workload.mobility | Enable workload mobility. |
| endpoint.validation.retry.count | Allows modifying the endpoint validation action retry count. If not set used the default which is 4. |
| iaas.api.integration.endpoints.enabled | Enable IaaS API integration endpoints. |
| iaas.api.tango.85.version.enabled | Enable new IaaS API Version. |
| interval.ui.endpoint.edit.poll | Sets the endpoint edit poll interval in seconds |
| interval.ui.endpoint.poll | Sets the endpoint poll interval in seconds. Default = 5 seconds |
| interval.ui.request.poll | Sets the request poll interval in seconds |
| limitservice.featurelimits.enabled | Enable limit service feature limits |
| provider.vra.feature.enabled | Enable vRA7 and vRA8 providers |
| rbacservice.projectscope.enabled | Enables project scope for custom role |
| SESSION_TIMEOUT_DURATION_MINUTES | Sets the session timeout duration in minutes |
| show.rbac.hidden.entities | Shows all roles/permissions, including the ones that have the hidden boolean flag |
| skip.origin.check | Enables frame communication even if the UIs are not hosted on the same domain (for debugging). |
| UI_STARGATE_PROXY_SHOW_FIPS_MODE | Enables FedRamp features to cloud proxy pages |
| vro.csp.user.token.enabled | When enabled user token is propagated to vRO, else vRO operations are called with service token. |
| vro.encryption.enabled | Use encryption when sending secure property values to vRO server |
| vro.endpoint.status.enabled | Allow manually enable/disable vRO endpoint |
| enable.vro.extensibility.proxy | Enables Extensibility proxies for the vro integrations |
| enable.vertical.nav.filter | Enables searching the left side menu |
| ENABLE_CREATE_RESOURCE | Enables creating resources |
| billable.resources.visibility.enabled | Enables billing visibility feature |
| nsxt.vm.tagging.enable | Enables replicating tags to NSX as it does for vSphere |
| allow.ui.admin.menu | Enables ‘Configuration Property’ side menu item |
| enable.dark.mode | Enables Clarity dark mode |
| ENABLE_EBS | Enables Event Broker Subscription |
| blueprint-ebs-events | Need to be checked |
| allow.all.load.balancer.types | Allows load balancers on network profile for NSX-P and AWS (NSX-V, NSX-T, Azure, and Azure EA are enabled by default) |
How to access it for the first time
Just go to Infrastructure tab and add configurationProperties to the URL or simply just use these URLs below.
On-Prem URL: https://VRA-FQDN/automation/#/service/automation-ui/provisioning-ui;ash=%2FconfigurationProperties
Access via API
GET method – to get all key options and set values if any.
Bash
curl --location 'https://vra-fqdn/provisioning/config/toggles' --header 'Authorization: Bearer eyJ0eX***********v'PATCH method – to toggle these options via API.
Bash
curl -k -s -H "Content-Type: application/json" -H "Authorization: Bearer $access_token" $url/iaas/api/configuration-properties?apiVersion=2021-07-15 -X PATCH -d '{"key":"SESSION_TIMEOUT_DURATION_MINUTES", "value":"360"}'Extra Bits (Unregister a Machine forcefully)
I was unregistering a machine which I onboarded earlier but added 2 disks to via Aria Automation Day-2 Operation. Unregister operation failed with error “Onboarded machine has one or more provisioned disk”. Alright, I got it! But What if you want to forcefully do that.
There is a way. Enabling this property below in your vRA Configuration Properties will let you unregister the machines forcefully. No – it wont break anything.
| Key Name | Description |
| enable.unregister.provisioned.machine | true |
What’s funny is that this key is missing from both UI and API. Unless you know it exists, there is no good way. I didn’t but thanks to my team lead Tyrone Hammergreen, I was able to fix the issue and put it here for everyone.
That’s all for now. Thanks. See you in other posts.
Comments
Post a Comment