AzureVMWareSolutionMicroHack (#158)

* First set of updates and structure created

* Lab deployment scripts

* Lab deployment scripts

* adjusted links to Microhack repo

* Adjusted script references

* Fixed typo

* First task description

* Task 2 added content

* Task 2 added

* Challenge 3 added

* Challenge 3 created

* Fixed path for Challenge 3

* Challenge 4 added

* Challenge 5 added

* Challenge 6 added

* Challenge 7 added

* Challenge 8 added

* Challenge 9 added

* Challenge 10 added

* Challenge 11 added

* Fixed typos

* Challenge 12 added

* Challenge 13 added

* Rest of challenges added

* Added HCX deployment and draft for cleanup script

* Linked solution guide to challenge

* Update for Microhack and adjustements for first delivery

* Small fixes

* Fixes

* little fixed

* fixed

* fixed

* Added architecture overview and fix of little mispellings

* Typo change

* Minor typos and prerequisites updates

* Minor changes in read me, pre-requisites and challenge 1

---------

Co-authored-by: Bernd Loehlein <[email protected]>
Co-authored-by: Andreas Schwarz <[email protected]>
Co-authored-by: stabet04 <[email protected]>

Author: 4 people

03-Azure/01-03-Infrastructure/05_Azure_VMware_Solution/Challenges/00-Pre-Reqs.md

@@ -0,0 +1,38 @@
+# Getting started
+
+**[Home](../Readme.md)** - [Challenge One](./01-NSX-DHCP.md)
+
+## Pre-requisites for Challenges
+
+### 1. Deploying AVS
+
+
+Azure VMware Solution delivers VMware-based private clouds in Azure and is available for EA and CSP customers. Customers need to request a quota and register the Microsoft.AVS resource provider prior to deploying:
+
+[Request host quota for Azure VMware Solution - Azure VMware Solution | Microsoft Docs](https://docs.microsoft.com/en-us/azure/azure-vmware/request-host-quota-azure-vmware-solution)
+
+[Deploy and configure Azure VMware Solution - Azure VMware Solution | Microsoft Docs](https://docs.microsoft.com/en-us/azure/azure-vmware/deploy-azure-vmware-solution?tabs=azure-portal)
+
+As the service isn’t available in all regions yet please check for local coverage in the required regions:
+
+[Azure Products by Region | Microsoft Azure](https://azure.microsoft.com/en-us/global-infrastructure/services/?regions=all&products=azure-vmware)
+
+Each private cloud will have a minimum of one vSAN cluster that consists of three hosts. Additional hosts, clusters or even private clouds can be added to your Azure subscription depending on your requirements and available host quotas.
+
+There is also the option of a trial cluster, these are limited to three hosts and one month duration. After the trial period those hosts will be converted to regular AVS hosts.
+
+
+### 2. Setting up the environment
+
+#### Connecting to Jumpbox
+
+To connect to NSX-T you need to connect to the Jumpbox virutal machine using Bastion.
+
+- Jumpbox VM: AVS-SDDC-FOM-Jumpbox
+- VM username: avsjump
+- VM password: can be found in Key Vault
+
+
+## Learning resources
+
+[Concepts - Private clouds and clusters - Azure VMware Solution | Microsoft Docs](https://docs.microsoft.com/en-us/azure/azure-vmware/concepts-private-clouds-clusters)

03-Azure/01-03-Infrastructure/05_Azure_VMware_Solution/Challenges/01-NSX-DHCP.md

@@ -0,0 +1,44 @@
+# NSX DHCP
+
+[Previous Challenge](./00-Pre-Reqs.md) - **[Home](../Readme.md)** - [Next Challenge](./02-NSX-Add-Segment.md)
+
+## Introduction
+
+In this challenge we will configure a NSX-T DHCP server.
+
+## Challenge
+
+In this challenge, you will perform the following tasks:
+
+1. Create a DHCP server
+2. Check the DHCP configuration in NSX-T
+
+As a part of this challenge you are expected to <u>log on to the AVS Private cloud within Azure Portal</u> assigned to your team and to deploy a DHCP server, such that we can provide dynamic IPs to VMs when they need.  
+
+### Use Case Tip 
+
+VMs within the AVS environment will recieve IP from various sources 
+
+1. Some VMs may be migrated and they will retain their IPs from On-Prem to AVS if they are on an extended L2 stretch
+2. Some VMs may be migrated and they will need new IP from AVS if they are on a non-extended VLAN. in such cases the VM will get a new IP (DHCP based) or static IP
+3. Some VMs may be created locally within AVS and thats then they will either be provided static or dynamic IP
+
+Feel free to reach out to your facilitator in case you have any questions regarding the tabs within the AVS Private Cloud. 
+
+Please carefully follow the instructions provided by your facilitator. 
+
+Work with the instructor to ensure your VMware environment has the required permissions to access your AVS vCenter Server and the NSX Manager.
+
+Applications and workloads running in an Azure VMware Solution private cloud environment require name resolution and DHCP services (optionally) for lookup and IP address assignments. A proper DHCP and DNS infrastructure are required to provide these services. You can configure a virtual machine to provide these services in your private cloud environment.
+
+## Success Criteria
+
+When you login to the NSX Manager in AVS the DHCP server should be configured and running. It should be attached to the Tier 1 gateway.
+
+## Learning resources
+
+[Configure DHCP for Azure VMware Solution](https://learn.microsoft.com/en-us/azure/azure-vmware/configure-dhcp-azure-vmware-solution)
+
+### Solution - Spoilerwarning
+
+[Solution Steps](../Solutionguide/01-NSX-DHCP.md)

03-Azure/01-03-Infrastructure/05_Azure_VMware_Solution/Challenges/02-NSX-Add-Segment.md

@@ -0,0 +1,40 @@
+# NSX Add Segment
+
+[Previous Challenge](./01-NSX-DHCP.md) - **[Home](../Readme.md)** - [Next Challenge](./03-NSX-Add-DNS-Forwarder.md)
+
+## Introduction
+
+In this challenge we will configure a NSX-T Segment.
+
+## Challenge 
+
+In this challenge, you will perform the following tasks:
+
+1.	Add a Network Segment
+2.	Attach a Virtual Machine to the Network Segment
+
+As a part of this challenge you are also expected to <u>log on to the jump server assigned to your user</u> and create a network segment from NSX and then a DHCP range will be defined within that segment. When a  virtual machine will be connected to that segment they VM will automatically obtain the IP from the DHCP range.  
+
+### Note
+
+An AVS segment can be created both in the NSX portal and AVS portal
+
+## Use Case Tip 
+
+VMs within the AVS environment can be easily segmented into multiple subnets etc. without the need for physical routers and switches
+
+Customers can easily achieve data center segmentation with a few simple steps without changing any of the underlying physical network configurations with VMware NSX and vSphere 
+
+Please carefully follow the instructions provided by your facilitator. 
+
+Work with the instructor to ensure your VMware environment has the required permissions to access your AVS vCenter Server and the NSX Manager.
+
+## Success Criteria
+
+The virtual machine attached to the segments should be getting an IP from the DHCP.
+
+## Learning resources
+
+### Solution - Spoilerwarning
+
+[Solution Steps](../Solutionguide/02-NSX-Add-Segment.md)

03-Azure/01-03-Infrastructure/05_Azure_VMware_Solution/Challenges/03-NSX-Add-DNS-Forwarder.md

@@ -0,0 +1,35 @@
+# NSX Add Segment
+
+[Previous Challenge](./02-NSX-Add-Segment.md) - **[Home](../Readme.md)** - [Next Challenge](./04-HCX-Manager-Appliance.md)
+
+## Introduction
+
+By default, Azure VMware Solution management components such as vCenter can only resolve name records available through Public DNS. However, certain hybrid use cases require Azure VMware Solution management components to resolve name records from privately hosted DNS to properly function, including customer-managed systems such as vCenter and Active Directory.
+
+Private DNS for Azure VMware Solution management components lets you define conditional forwarding rules for the desired domain name to a selected set of private DNS servers through the NSX-T DNS Service.
+
+This capability uses the DNS Forwarder Service in NSX-T. A DNS service and default DNS zone are provided as part of your private cloud. To enable Azure VMware Solution management components to resolve records from your private DNS systems, you must define an FQDN zone and apply it to the NSX-T DNS Service. The DNS Service conditionally forwards DNS queries for each zone based on the external DNS servers defined in that zone.
+
+## Challenge 
+
+In this challenge, you will perform the following tasks:
+
+1.	Configure a DNS forwarder within NSX such that the On Prem FQDN can be resolved from AVS itself
+
+Since the default DNS is preconfigured with AVS, to test DNS we are using a feature where we need name resolution
+
+As a part of this challenge you are also expected to <u>log on to the AVS Private cloud assigned to your team</u> and create a DNS forwarder within NSX such that the On Prem FQDN can be resolved from AVS itself. You can use this to also import images from On Prem to AVS using a content library which is configured On Prem
+
+## Success Criteria
+
+By the end of this challenge you should independantly be able to answer the following questions
+
+1. What benefits does DNS forwarder get here?
+2. How can you resolve AVS On-Prem FQDN on AVS?
+3. How will you go about configuring LDAP integration for NSX? 
+
+## Learning resources
+
+### Solution - Spoilerwarning
+
+[Solution Steps](../Solutionguide/03-NSX-Add-DNS-Forwarder.md)

03-Azure/01-03-Infrastructure/05_Azure_VMware_Solution/Challenges/04-HCX-Manager-Appliance.md

@@ -0,0 +1,41 @@
+# HCX Manager Appliance
+
+[Previous Challenge](./04-NSX-Firewall.md) - **[Home](../Readme.md)** - [Next Challenge](./05-HCX-Site-Pair.md)
+
+## Introduction
+
+1. Customer migration is often driven by a need to move a known set of existing applications to a new infrastructure. The most common use case for HCX is migration from On-Prem to Azure VMware Service (AVS).
+2. Customer wants to realize value faster for new AVS environments while driving down operational costs.
+3. Due to time constraint choosing HCX proves to be beneficial as parallel migration scenarions like bulk migrations as well as live non-disruptive migrations to and from On-Prem to AVS.
+
+## HCX Deployment view 
+
+![](./Images/04-HCX-Manager-Appliance/HCXLayered.png)
+
+## Challenge 
+
+In this challenge, you will perform the following tasks:
+
+1.	Configure HCX Manager Appliance On-Prem
+
+As a part of this challenge you are also expected to <u>log on to the On Prem and AVS vCenter servers from the jumpbox assigned to your user</u>. You will also be expected to log on to the AVS portal to retrieve the HCX activation key for On-Prem HCX appliance.
+
+Please carefully follow the instructions provided by your facilitator. Incorrectly deploying the HCX may result in multiple forthcoming steps not operating as expected.
+
+Work with the instructor to ensure your VMware environment has the required permissions to access your AVS vCenter Server.
+
+### Note
+
+The HCX Manager VM within the On Prem vCenter server was deployed through an OVA (appliance) that we downloaded from AVS HCX. This step was done during the environment preparation to save time.
+
+You can ask your coach to show you how this step was done
+
+## Success Criteria
+
+You can login to the HCX Manager UI and see the HCX Manager Appliance is up and running.
+
+## Learning resources
+
+### Solution - Spoilerwarning
+
+[Solution Steps](../Solutionguide/04-HCX-Manager-Appliance.md)

03-Azure/01-03-Infrastructure/05_Azure_VMware_Solution/Challenges/05-HCX-Site-Pair.md

@@ -0,0 +1,34 @@
+# HCX Site Pair
+
+[Previous Challenge](./04-HCX-Manager-Appliance.md) - **[Home](../Readme.md)** - [Next Challenge](./06-HCX-Network-Profiles.md)
+
+## Introduction
+
+In this challenge we will configure a site pair using HCX.
+
+## Challenge 
+
+In this challenge, you will perform the following tasks:
+
+1.	Configure Site Pair
+
+As a part of this challenge you are expected to <u>log on to the On Prem and AVS vCenter servers. You will also be expected to log on to HCX manager and configure HCX from On Prem</u> and connect it with AVS and deploy the interconnect and network extension appliances such that migration and network extension related activities can be achieved 
+
+Please carefully follow the instructions provided by your facilitator. Incorrectly deploying the HCX may result in multiple forthcoming steps not operating as expected.
+
+Work with the instructor to ensure your VMware environment has the required permissions to access your AVS vCenter Server.
+
+## Configure Site Pairing
+
+Now you're ready to add a site pairing, create a network and compute profile, and enable services such as migration and network extension.
+
+## Success Criteria
+
+The VMware HCX Cloud Manager in AVS and the On-Prem VMware HCX Connector are connected (paired).
+
+## Learning resources
+
+### Solution - Spoilerwarning
+
+[Solution Steps](../Solutionguide/05-HCX-Site-Pair.md)
+

03-Azure/01-03-Infrastructure/05_Azure_VMware_Solution/Challenges/06-HCX-Network-Profiles.md

@@ -0,0 +1,55 @@
+# HCX Network Profiles
+
+[Previous Challenge](./05-HCX-Site-Pair.md) - **[Home](../Readme.md)** - [Next Challenge](./07-HCX-Compute-Profiles.md)
+
+## Introduction
+
+1. Network Profiles can be pre-created in the Network Profile tab or they can be created during the Compute Profile configuration. A Network Profile contains:
+
+2. One underlying vSphere Port Group (VSS or VDS) or NSX-based network.
+
+3. IP address information: The gateway IP, the network prefix and MTU, and DNS.
+
+4. A pool of IP addresses reserved for HCX to use during Service Mesh deployments.
+
+## Characteristics of Network Profiles
+
+1. Network Profile configurations are only used during Service Mesh deployments (IP addresses assigned to the IX and NE, and OSAM appliances).
+
+2. The HCX Manager only uses a Management interface, it does not use other Network Profile networks.
+
+3. A Compute Profile will always include one or more Network Profile.
+
+4. When Service Mesh is deployed, every Network Profile that is included in the Compute Profile configuration is used.
+
+5. When a Network Profile network is used in a Service Mesh, the HCX appliance will consume a single IP address out of the configured IP pool.
+
+6. When a Network Profile is assigned to a specific HCX traffic type (the traffic types are explained in the next section), a single IP address is used. For example, if the same Network Profile is assigned for HCX Management and HCX Uplink, one IP address is used, not two.
+
+7. A Network Profile can be used with multiple Compute Profiles.
+
+### Example network profile in a customer environment
+
+![](./Images/06-HCX-Network-Profiles/HCXNetworkProfileImage.png)
+
+## Challenge 
+
+In this challenge, you will perform the following tasks:
+
+1.	Create Network Profile
+
+As a part of this challenge you are also expected to <u>log on to the On Prem vCenter server and go to HCX Manager plugin on the vCenter</u> to configure the Network Profile
+
+Please carefully follow the instructions provided by your facilitator. Incorrectly deploying the HCX may result in multiple forthcoming steps not operating as expected.
+
+Work with the instructor to ensure your VMware environment has the required permissions to access your AVS vCenter Server.
+
+## Success Criteria
+
+The created network profiles will be avaiable to be used by Interconnect and Network Enxtension appliances within the Service Mesh.
+
+## Learning resources
+
+### Solution - Spoilerwarning
+
+[Solution Steps](../Solutionguide/06-HCX-Network-Profiles.md)

03-Azure/01-03-Infrastructure/05_Azure_VMware_Solution/Challenges/07-HCX-Compute-Profiles.md

@@ -0,0 +1,43 @@
+# HCX Configure Compute Profile
+
+[Previous Challenge](./06-HCX-Network-Profiles.md) - **[Home](../Readme.md)** - [Next Challenge](./08-HCX-Service-Mesh.md)
+
+## Introduction
+
+A Compute Profile configuration is required for Service Mesh deployments. It defines deployment parameters of interconnect and network extension appliances within On Prem
+
+## Characteristics of Compute Profiles
+
+1. An HCX Manager system must have one Compute Profile.
+
+2. Compute Profile references clusters and inventory within the vCenter Server that is registered in HCX Manager (other vCenter Servers require their own HCX Manager).
+
+3. Creating a Compute Profile does not deploy the HCX appliances (Compute Profiles can be created and not used).
+
+4. Creating a Service Mesh deploys appliances using the settings defined in the source and destination Compute Profiles.
+
+5. A Compute Profile is considered "in use" when it is used in a Service Mesh configuration.
+
+6. Changes to a Compute Profile profile are not effected in the Service Mesh until a Service Mesh a Re-Sync action is triggered.
+
+## Challenge 
+
+In this challenge, you will perform the following tasks:
+
+1.	Create Compute Profile
+
+As a part of this challenge you are also expected to <u>log on to the On Prem vCenter server and HCX Manager plugin in the On-Prem vCenter</u> to configure the Compute Profile
+
+Please carefully follow the instructions provided by your facilitator. Incorrectly deploying the HCX may result in multiple forthcoming steps not operating as expected.
+
+Work with the instructor to ensure your VMware environment has the required permissions to access your AVS vCenter Server.
+
+## Success Criteria
+
+The Compute Profile is created and can be used.
+
+## Learning resources
+
+### Solution - Spoilerwarning
+
+[Solution Steps](../Solutionguide/07-HCX-Compute-Profiles.md)

03-Azure/01-03-Infrastructure/05_Azure_VMware_Solution/Challenges/08-HCX-Service-Mesh.md

@@ -0,0 +1,29 @@
+# HCX Service Mesh
+
+[Previous Challenge](./07-HCX-Compute-Profiles.md) - **[Home](../Readme.md)** - [Next Challenge](./09-HCX-Network-Extension.md)
+
+## Introduction
+
+When HCX Migration, Disaster recovery, Network Extension, and WAN Optimization services are activated, HCX deploys Virtual Appliances in the source site and corresponding "peer" virtual appliances on the destination site. The Multi-Site Service Mesh activates the configuration, deployment, and serviceability of these Interconnect virtual appliance pairs.
+
+## Challenge 
+
+In this challenge, you will perform the following tasks:
+
+1.	Deploy a Service Mesh
+
+As a part of this challenge you are also expected to <u>log on to the On Prem vCenter server and HCX Manager plugin in the On-Prem vCenter</u> to deploy the interconnect and network extension appliances as a part of Service Mesh
+
+Please carefully follow the instructions provided by your facilitator. Incorrectly deploying the HCX may result in multiple forthcoming steps not operating as expected.
+
+Work with the instructor to ensure your VMware environment has the required permissions to access your AVS vCenter Server.
+
+## Success Criteria
+
+The service mesh between AVS and On-Prem is established.
+
+## Learning resources
+
+### Solution - Spoilerwarning
+
+[Solution Steps](../Solutionguide/08-HCX-Service-Mesh.md)