PowerCLI Script to Edit ESXi Host NTP Settings

Here's another quick one.  A customer of mine recently had to change their NTP settings across every ESXi host in their environment.  Given that they have a lot of clusters with different storage and network settings, host profiles didn't seem to be the best solution available.  Fortunately, PowerCLI has a few nice easy cmdlets to make life easier.  After a bit of quality time on google and the PowerCLI Cmdlet Reference Page, I was able to put together the following quick script.  It goes through every ESXi host in the environment, removes all configured NTP servers, adds whatever servers are specified in the $NTPServers array, sets the service to "on" (this site had some inconsistent configurations there) and restarts the service to ensure that the settings take effect.

If you want to make use of any of this, just change the variables near the top to be a list of your NTP Servers of choice.  If you want to limit the scope of the script, you can change the $AllHosts = Get-VMHost line to be something more specific.  You could "Get-VMHost <MySpecialESXServer>" to only target MySpecialESXServer, or you can just go wild (by which I mean, use wildcards)!

As always, this is posted for educational purposes only and has no guarantee, use it at your own risk.  As always, beware of unintended line breaks due to blog formatting.

#Edit the $NTPServers variable to create a comma delimited list of the NTP Servers that your ESXi hosts should use
$NTPServers = "66.7.96.1", "69.50.219.51"
#Edit this Get-VMHost command to limit the scope of the script.  For example, "Get-VMHost *test*" will only target hosts with "test" in their name
$AllHosts = Get-VMHost

#No need to edit anything below this line
#====================================
foreach ($ThisHost in $AllHosts){
    $AllNTP = get-vmhostntpserver -VMHost $ThisHost
    foreach ($ThisNTP in $AllNTP){
        echo "Removing $ThisNTP from $ThisHost"
        remove-vmhostntpserver -VMHost $ThisHost -ntpserver $ThisNTP -Confirm:$false
    }
    foreach ($ThisNTP in $NTPServers){
        echo "Adding $ThisNTP to $ThisHost"
        add-vmhostntpserver -VMHost $ThisHost -ntpserver $ThisNTP -Confirm:$false
    }
    Get-VMHostService -VMHost $ThisHost | where{$_.Key -eq "ntpd"} | restart-vmhostservice -Confirm:$false
    Get-VMHostService -VMHost $ThisHost | where{$_.Key -eq "ntpd"} | set-vmhostservice -policy "on" -Confirm:$false
}

Comments

  1. Casper42September 10, 2013 at 10:14 PM

    How do you also force the use of NTP v3 instead of 4 (the default) in this script?

    The VMware KB only mentions editing /etc/ntp.conf which is ugly for large environments.

    ReplyDelete
  2. Jason ColemanSeptember 11, 2013 at 1:21 PM

    Sorry, I've never had to force NTP v3 and so don't know an easy way to do it. If you're just appending a line to /etc/ntp.conf, you could use the process that I outlined in yesterday's post: http://virtuallyjason.blogspot.com/2013/09/monitoring-netgp-heap-en-masse.html to just create a bunch of "SSH $ThisHost echo 'your statement' >> /etc/ntp.conf" lines. Or, just copy a fully configured ntp.conf file over the existing ones in your environment.

    ReplyDelete

Post a Comment

Sorry guys, I've been getting a lot of spam recently, so I've had to turn on comment moderation. I'll do my best to moderate them swiftly after they're submitted,

Popular posts from this blog

Clone a Standard vSwitch from one ESXi Host to Another

One of my customers is standardizing the configurations on their HP C7000 enclosures (they've been set up at various sites by various administrators with varying involvement from the architecture team).  As such, we need to stand up some temporary resources so that we can take down the main enclosure for reconfiguration.  That's fine, we can easily ship a smaller enclosure to each site for temporary compute resources.  Some of the sites are using Standard vSwitches, so we need to be able to quickly copy the networking configuration over from their existing blades to these new, slightly different blades.  As I see it, we had 2 good options: 1) Capture a Host Profile with the desired vSwitch configuration.  Delete every other component of the Host Profile so that only the networking section is applied; design the new ESXi hosts so that the vSwitches'll work with the old vmnic-to-vswitch configurations. 2) Write a script to clone the vSwitch from ones ESXi host to another.
Read more

PowerShell Sorting by Multiple Columns

PowerShell's Sort-Object cmdlet is super useful, especially when preparing output for human consumption.  A few people have found my blog while looking for more information about its use, specifically while looking for how to sort by multiple columns (well, properties, technically).  I've never done so (much less written about it), so I hope those folks found answers elsewhere.  But, it got me curious... and it turns out that it's really easy. The Technet article on Sort-Object has the answer directly spelled out: just use commas to create a list of properties to sort by (in order to precedence).  Let's look at some examples!  First, prepare a variable with some good sortable data: $myData = get-eventlog System -newest 25 And then we can get to sorting!  Say you want to sort primarily by EntryType (Warning, Information, Error) and then by Source.  Easy-peasy: $myData | sort EntryType,Source How about if you want it to be in descending order?  Yeah, there&
Read more

Deleting Orphaned (AKA Zombie) VMDK Files

A problem that most Virtualization Administrators need to deal with is Orphaned VMDK files (or Zombie VMDK files, as some people call them).  These are Virtual Machine hard drive files that are just hanging out, taking up storage, but are attached to no VMs.  How can this happen?  Well, the most common way is when an administrator needs to delete a VMDK but isn't quite ready to commit... so, after pressing "remove", they select "remove from virtual machine" rather than "remove and delete files".  The intent is always good: "I want to be able to restore this if it turns out to be necessary... so I'll just come back and delete it next week if nothing breaks!"  But, of course, next week something else happens and the file doesn't get deleted.  After a little while, it turns into "which files did I rename, again?" and nothing seems to happen. So, how do you deal with these orphaned files?  Well, a few years ago I found a scrip
Read more