2 Replies Latest reply on Jan 17, 2017 2:36 PM by Moe Hassan

    MOVE 4 Agentless NSX Policies

    davei

      Hi

       

      As vCNS is now deprecated, NSX Manager is the only option.

       

      We've deployed MOVE AV 4 Agentless using NSX Manager and all is working.  However i'm trying to understand policy management now.

       

      Is it right to state that the job of enforcing policies onto the SVMs (and thus per-VM policies) is now NSX Manager rather than ePO?  And that policy assignment in the ePO system tree is now irrelevant and ignored (in terms of per-VM and SVA policies)?

       

      If I create a policy in ePO, assign it to a bunch of VMs sync'd in the datacenter connector, like we used to in Agentless 3.6, will any of the settings be applied?   Or do i have to create an NSX Security Policy - for each per-VM policy - and apply it, via NSX, to the relevant VMs\Clusters?

       

      What if i create a policy in ePO and don't create a security policy for it in NSX?

       

      Just trying to understand.

       

      Thanks.

       

      Davei