VCF 9.0 SDDC Manager: The Brain of Your Private Cloud

If VCF 9.0 is your private cloud platform, SDDC Manager is its brain. It is the centralized management and automation engine that ties together vSphere, vSAN, NSX, and the VCF operations stack into a single lifecycle management workflow. Understanding what SDDC Manager does — and what it does not do — is essential for anyone deploying or administering VCF 9.0.

What SDDC Manager Does

SDDC Manager is responsible for three core functions: deployment, lifecycle management, and configuration compliance. On the deployment side, it automates the bring-up of workload domains, provisioning vCenter, NSX, and vSAN components in a consistent, validated sequence. On the lifecycle side, it orchestrates patches, updates, and upgrades across the entire software stack, ensuring components are updated in the correct order and that interoperability is maintained. On the compliance side, it continuously validates that your deployed configuration matches the intended design, flagging drift when it occurs.

The Management Domain vs. Workload Domains

VCF organizes infrastructure into domains. The management domain is the first domain deployed during VCF bring-up and hosts SDDC Manager itself, along with the management vCenter, NSX Manager cluster, and optionally VCF Operations and VCF Automation. It should run on dedicated hosts and must never host customer workloads. Workload domains are separate vSphere+vSAN+NSX deployments managed by SDDC Manager and provisioned to run customer applications. You can have multiple workload domains, each with their own vCenter, NSX instance, and policies, allowing you to create isolated environments for different teams, security zones, or application tiers.

Lifecycle Management in VCF 9.0

One of the most operationally significant capabilities of SDDC Manager is its upgrade orchestration. In previous environments, upgrading a vSphere stack required carefully sequencing vCenter, ESXi, vSAN, and NSX upgrades manually while consulting multiple interoperability matrices. SDDC Manager eliminates this complexity. In VCF 9.0, you initiate an upgrade from the SDDC Manager UI or API, and it handles the sequencing automatically: management domain components first, then workload domains in the order you specify. It pre-validates the environment before starting and provides a detailed task view so you can track progress and address failures without guessing what ran and what did not.

Bundles and the VMware Depot

SDDC Manager uses a bundle-based model for updates. Bundles are pre-packaged, tested collections of software updates for each VCF component. They are downloaded from the VMware Depot (internet-connected environments) or imported manually (air-gapped environments). In VCF 9.0, Broadcom has improved the bundle download experience with better progress tracking and the ability to schedule downloads during off-peak hours. For air-gapped deployments, the offline bundle import process has also been streamlined, with clearer documentation on which bundles are required for a given upgrade path.

SDDC Manager API

SDDC Manager exposes a comprehensive REST API that covers everything the UI can do and more. The API is documented at the /apiexplorer path on your SDDC Manager appliance. Common automation use cases include provisioning workload domains programmatically, triggering upgrades from a CI/CD pipeline, querying compliance status for audit reporting, and integrating VCF lifecycle events into your broader ITSM tooling. PowerVCF, the community-developed PowerShell module for VCF, wraps the SDDC Manager API and makes scripting common tasks significantly more accessible.

Sizing and Availability Considerations

SDDC Manager is deployed as a single virtual appliance, but it is not a single point of failure for your workloads. If SDDC Manager is unavailable, your running VMs continue to operate normally — you simply cannot perform lifecycle operations until it is restored. That said, the SDDC Manager appliance should be protected with a VM-level snapshot policy and ideally backed up using your chosen backup solution. In VCF 9.0, the recommended minimum configuration for the management domain is four hosts, which provides enough redundancy for the management stack including SDDC Manager, vCenter, and NSX Manager.

SDDC Manager is what separates VCF from a traditional DIY vSphere deployment. The automation it brings to deployment and lifecycle operations pays for itself in reduced operational risk and engineering time. If you are evaluating VCF 9.0, spending time in the SDDC Manager UI and API explorer before go-live is one of the best investments you can make. Follow up with the companion post on VCF 9.0 Workload Domains for the next step in the architecture.