Ansible based VCenter 5.5 deployment of Linked Clones

As part of my position I need to be able to quickly roll out test machines, previously this meant waiting for a VSphere clone on slow central storage to take place and then connecting to it with Ansible and configuring it. In an effort to speed this process up I set to work on hacking linked clone support into Ansible's vsphere_guest module and into Pysphere's clone function. This way I can supply a base image with a snapshot and use that snapshot to rapidly roll out new test VM's. Below is the code required to make it work.

Working Runbook with Linked Clone Support:

- hosts: connection: local user: root sudo: false gather_facts: false serial: 1


  • vsphere_guest:
    vcenter_hostname: VCSHOST
    username: something@vsphere.local
    password: VI PASSWORD
    guest: tst-ops-lc-05
    state: powered_on
    source: LinkedBaseVM
    snapshot: Linked_Clone_Base
    computername: tst-ops-lc-05
    Type: SYSPREP
    administratorPassword: ADMINPASSWORD
    timezone: 10
    fullName: none
    orgName: NONE
    domainAdminPassword: WINDOWSADMIN
    domainAdmin: DOMAINADMIN
    joinDomain: DOMAIN vm_disk:
    size_gb: 80
    type: thin
    datastore: DATASTORE
    type: vmxnet3
    network: NETWORK
    network_type: standard`

Modifications to the vsphere_guest Ansible Module:

def deploy_linked(vsphere_client, guest, resource_pool, esxi, module, cluster_name, linkedclone, customize=None): vmTemplate = vsphere_client.get_vm_by_name(linkedclone['source']) vmTarget = None try: vmTarget = vsphere_client.get_vm_by_name(guest) except Exception: pass try: if vmTarget: changed = False else: vmTemplate.clone(guest, resourcepool=resource_pool, linked=True, snapshot=linkedclone['snapshot'], customize=customize['Type'], data=customize) changed = True vsphere_client.disconnect() module.exit_json(changed=changed) except Exception as e: module.fail_json( msg="Could not clone selected machine: %s" % e )

You will have to locate the module definition and make the following modifications.

module = AnsibleModule( argument_spec=dict( vcenter_hostname=dict(required=True, type='str'), username=dict(required=True, type='str'), password=dict(required=True, type='str'), state=dict( required=False, choices=[ 'powered_on', 'powered_off', 'present', 'absent', 'restarted', 'reconfigured' ], default='present'), vmware_guest_facts=dict(required=False, choices=BOOLEANS), from_template=dict(required=False, choices=BOOLEANS), template_src=dict(required=False, type='str'), guest=dict(required=True, type='str'), vm_disk=dict(required=False, type='dict', default={}), vm_nic=dict(required=False, type='dict', default={}),
vm_hardware=dict(required=False, type='dict', default={}), vm_extra_config=dict(required=False, type='dict', default={}), vm_hw_version=dict(required=False, default=None, type='str'), resource_pool=dict(required=False, default=None, type='str'), cluster=dict(required=False, default=None, type='str'),
force=dict(required=False, choices=BOOLEANS, default=False), esxi=dict(required=False, type='dict', default={}), # Jeremy Starts His Hack here, Adding linked clone support.
linkedclone=dict(required=False, type='dict',default={}), customize=dict(required=False, type='dict',default={}), ),
supports_check_mode=False, mutually_exclusive=[['state', 'vmware_guest_facts'],['state', 'from_template']], required_together=[ ['state', 'force'], [ 'state', 'vm_disk', 'vm_nic', 'vm_hardware', 'esxi' ], ['resource_pool', 'cluster'] #, #['from_template', 'resource_pool', 'template_src'] ], )

Modifications to PySphere:

#--------------# #-- CLONE VM --# #--------------# def clone(self, name, sync_run=True, folder=None, resourcepool=None, datastore=None, host=None, power_on=True, template=False, snapshot=None, linked=False, customize=None, data=None): """Clones this Virtual Machine @name: name of the new virtual machine @sync_run: if True (default) waits for the task to finish, and returns a VIVirtualMachine instance with the new VM (raises an exception if the task didn't succeed). If sync_run is set to False the task is started and a VITask instance is returned @folder: name of the folder that will contain the new VM, if not set the vm will be added to the folder the original VM belongs to @resourcepool: MOR of the resourcepool to be used for the new vm. If not set, it uses the same resourcepool than the original vm. @datastore: MOR of the datastore where the virtual machine should be located. If not specified, the current datastore is used. @host: MOR of the host where the virtual machine should be registered.
IF not specified: * if resourcepool is not specified, current host is used. * if resourcepool is specified, and the target pool represents a stand-alone host, the host is used. * if resourcepool is specified, and the target pool represents a DRS-enabled cluster, a host selected by DRS is used. * if resource pool is specified and the target pool represents a cluster without DRS enabled, an InvalidArgument exception be thrown. @power_on: If the new VM will be powered on after being created. If template is set to True, this parameter is ignored. @template: Specifies whether or not the new virtual machine should be marked as a template. @snapshot: Snaphot MOR, or VISnaphost object, or snapshot name (if a
name is given, then the first matching occurrence will be used). Is the snapshot reference from which to base the clone. If this parameter is set, the clone is based off of the snapshot point. This means that the newly created virtual machine will have the same configuration as the virtual machine at the time the snapshot was taken. If this parameter is not set then the clone is based off of the virtual machine's current configuration. @linked: If True (requires @snapshot to be set) creates a new child disk backing on the destination datastore. None of the virtual disk's existing files should be moved from their current locations. Note that in the case of a clone operation, this means that the original virtual machine's disks are now all being shared. This is only safe if the clone was taken from a snapshot point, because snapshot points are always read-only. Thus for a clone this option is only valid when cloning from a snapshot """
try: #get the folder to create the VM folders = self._server._retrieve_properties_traversal( property_names=['name', 'childEntity'], obj_type=MORTypes.Folder) folder_mor = None for f in folders: fname = "" children = [] for prop in f.PropSet: if prop.Name == "name":
fname = prop.Val elif prop.Name == "childEntity": children = prop.Val.ManagedObjectReference if folder == fname or (not folder and self._mor in children): folder_mor = f.Obj break if not folder_mor and folder: raise VIException("Couldn't find folder %s" % folder, FaultTypes.OBJECT_NOT_FOUND) elif not folder_mor:
raise VIException("Error locating current VM folder", FaultTypes.OBJECT_NOT_FOUND)

        request = VI.CloneVM_TaskRequestMsg()
        _this = request.new__this(self._mor)
        spec = request.new_spec()
        if template:
        location = spec.new_location()
        if resourcepool:
            if not VIMor.is_mor(resourcepool):
                resourcepool = VIMor(resourcepool, MORTypes.ResourcePool)
            pool = location.new_pool(resourcepool)
        if datastore:
            if not VIMor.is_mor(datastore):
                datastore = VIMor(datastore, MORTypes.Datastore)
            ds = location.new_datastore(datastore)
        if host:
            if not VIMor.is_mor(host):
                host = VIMor(host, MORTypes.HostSystem)
            hs = location.new_host(host)
        if snapshot:
            sn_mor = None
            if VIMor.is_mor(snapshot):
                sn_mor = snapshot
            elif isinstance(snapshot, VISnapshot):
                sn_mor = snapshot._mor
            elif isinstance(snapshot, basestring):
                for sn in self.get_snapshots():
                    if sn.get_name() == snapshot:
                        sn_mor = sn._mor
            if not sn_mor:
                raise VIException("Could not find snapshot '%s'" % snapshot,
            snapshot = spec.new_snapshot(sn_mor)
        if linked and snapshot:
        if not template and customize:
            if data is None:
                raise VIApiException("Cannot use Customization without data")

            customization = spec.new_customization()

            globalIPSettings = customization.new_globalIPSettings()

            # nicSettingMap
            nicSetting = customization.new_nicSettingMap()
            adapter = nicSetting.new_adapter()
            dhcp = VI.ns0.CustomizationDhcpIpGenerator_Def("ip").pyclass()

            if customize == "SYSPREP":
                # here starts windows
                identity = VI.ns0.CustomizationSysprep_Def("identity").pyclass()

                guiUnattended = identity.new_guiUnattended()

                passw = guiUnattended.new_password()
                passw.set_element_value( data["administratorPassword"] )

                # 85 is GMT Standard Time
                timeZone = data.get("timezone", 85)

                userData = identity.new_userData()
                userData.set_element_fullName( data.get("fullName", "PyShere"))
                userData.set_element_orgName( data.get("orgName", "PySphere") )
                computerName = VI.ns0.CustomizationFixedName_Def("computerName").pyclass()
                computerName.set_element_name(name.replace("_", ""))
                userData.set_element_computerName( computerName )

                identification = identity.new_identification()

                if data.get("joinDomain", False):
                    # join the domain
                    identification.set_element_domainAdmin( data["domainAdmin"] )
                    domainAdminPassword = identification.new_domainAdminPassword()
                    domainAdminPassword.set_element_value( data["domainAdminPassword"] )
                    identification.set_element_joinDomain( data["joinDomain"] )
            elif customize == "SYSPREPTEXT":
                identity = VI.ns0.CustomizationSysprepText_Def("identity").pyclass()

            elif customize == "LINUX":
                identity = VI.ns0.CustomizationLinuxPrep_Def("identity").pyclass()
                identity.set_element_domain( data["domain"])
                hostName = VI.ns0.CustomizationFixedName_Def("hostName").pyclass()
                hostName.set_element_name(name.replace("_", ""))

        task = self._server._proxy.CloneVM_Task(request)._returnval
        vi_task = VITask(task, self._server)
        if sync_run:
            status = vi_task.wait_for_state([vi_task.STATE_SUCCESS,
            if status == vi_task.STATE_ERROR:
                raise VIException(vi_task.get_error_message(),
            return VIVirtualMachine(self._server, vi_task.get_result()._obj) 
        return vi_task

    except (VI.ZSI.FaultException), e:
        raise VIApiException(e)


This is not all my creation, it is an amalgamation of information I found online and a modification of the Ansible module in order to get this all working.

When complete I am able to roll a new test machine in under 5 minutes. Cloned, provisioned, added to SCCM, with a new host name, new sid, and ready to go.

I would be hesitant using this in production, linked clone support exists by default in vsphere but is not exposed to it. That being said VMWare's own products rely heavily on linked clones and there should be no issues in using it, until you find them.

Jeremy Tirrell

