assignment validation for evaluation license

• Connect Virtually - Wear Mask, Stay Home, Stay safe
• VMWare, PowerCLI, DevOps, Kubernetes
• Microsoft Azure, PowerShell, Ansible, Terraform

#header_text h1#site_heading a, #header_text h1#site_heading{ } @media (min-width: 650px) { #header_text h1#site_heading a, #header_text h1#site_heading{ } } Virtual Geek

#header_text h2#site_subheading a, #header_text h2#site_subheading{ } @media (min-width: 650px) { #header_text h2#site_subheading a, #header_text h2#site_subheading{ } } tales from real it system administrators world and non-production environment.

Solved Esxi host disconnected evaluation license expired

In my vmware vSphere homelab, I found my Esxi hosts were showing disconnected in vCenter. I tried connecting esxi host through vmware vSphere web client. But I was getting error notification of reconnect host failure with the message Evaluation mode licenses expired.

Task Name: Reconnect host Target: Esxi Host Status: Cannot complete the license assignment operation "vCenter agen for VMware host" The Evaluation Mode license on "Host" Esxi Host can not be changed to. To downgrade the license, first disable the following features.

As I was using no licenses in my lab or didn't assigned any LICs to host, and when licenses are not in use, it works as Trial period and Evaluation mode is for 60 days. I wanted to assign new licenses and there is already a previous article written on this  ADDING AND ASSIGNING VSPHERE LICENSES IN VCENTER SERVER AND ESXI . To assign newly assigned licenses to esxi host, Right click disconnected esxi host and select assign license. (DO NOT REMOVE HOST FROM VCENTER)

Next follow the steps again, for reconnecting host by right clicking esxi host >> Connection >> Connect. Reconnect host message popup box open, Reconnecting a host will override any resource management changes that were made directly on the host while it was disconnected. Click Yes, next follow the step of adding host  POWERCLI - CREATE DATACENTER AND ADD ESXI HOST IN VCENTER . It asks for root username and password. 

Once all the requirement for connection is fulfilled you will see esxi host is connected successfully, with all the info.

Useful articles PART 1 : BUILDING AND BUYING GUIDE IDEAS FOR VMWARE LAB PART 2 : BUILDING AND HARDWARE BUYING GUIDE IDEAS FOR VMWARE LAB PART 3 : MY VSPHERE LAB CONFIGURATION ON VMWARE WORKSTATION PART 4 : CONFIGURING VMWARE WORKSTATION NETWORKING IN HOME LAB

Blog Search

1 2 0 3 4 8 3 8

Subscribe to our email newsletter & receive updates right in your inbox (550+ Users).

• September 2024 (12)
• August 2024 (22)
• July 2024 (11)
• June 2024 (1)
• May 2024 (3)
• April 2024 (5)
• November 2023 (1)
• September 2023 (6)
• July 2023 (15)
• June 2023 (5)
• May 2023 (9)
• April 2023 (4)
• March 2023 (7)
• February 2023 (1)
• January 2023 (1)
• December 2022 (10)
• November 2022 (15)
• October 2022 (15)
• September 2022 (14)
• March 2022 (8)
• December 2021 (9)
• November 2021 (6)
• October 2021 (12)
• September 2021 (10)
• August 2021 (8)
• July 2021 (9)
• June 2021 (9)
• May 2021 (11)
• April 2021 (8)
• March 2021 (13)
• February 2021 (9)
• January 2021 (5)
• November 2020 (7)
• October 2020 (3)
• September 2020 (4)
• August 2020 (7)
• July 2020 (8)
• June 2020 (10)
• May 2020 (10)
• April 2020 (5)
• March 2020 (4)
• February 2020 (3)
• January 2020 (3)
• December 2019 (11)
• November 2019 (2)
• October 2019 (3)
• June 2019 (1)
• May 2019 (5)
• April 2019 (11)
• March 2019 (5)
• February 2019 (2)
• December 2018 (1)
• September 2018 (4)
• July 2018 (3)
• June 2018 (7)
• May 2018 (12)
• April 2018 (9)
• March 2018 (13)
• February 2018 (4)
• January 2018 (10)
• December 2017 (11)
• November 2017 (10)
• October 2017 (11)
• September 2017 (7)
• August 2017 (10)
• July 2017 (12)
• June 2017 (4)
• May 2017 (3)
• February 2017 (1)
• January 2017 (3)
• December 2016 (7)
• November 2016 (8)
• October 2016 (13)
• September 2016 (7)
• August 2016 (9)
• July 2016 (11)
• June 2016 (17)
• May 2016 (7)
• NeoMod Solved Visual studio Code make sure you configure your user.name and user.email in git July 30, 2024 11:14PM
• Roger Solved Visual studio Code make sure you configure your user.name and user.email in git July 22, 2024 10:13PM
• Don Patching update VMware vCenter Server Appliance from a zipped update bundle Web server June 28, 2024 11:29PM
• visamanx Powercli Get vCenter licenses information June 25, 2024 01:30AM
• Adam Configuring Secure LDAPs on Domain Controller June 14, 2024 01:37AM

Disclaimer: All the steps and scripts shown in my posts are tested on non-production servers first. All the scripts provided on my blogs are comes without any warranty, The entire risk and impacts arising out of the use or performance of the sample scripts and documentation remains with you. Author is not liable for any damages whatsoever arising out of the use of or inability to use the sample scripts or documentation. Warning:  Everything I say and do in these blogs or videos are subject to mistake and criticism. please do everything in your power to correct me if I saying or doing something wrong, or inform me of what I could be doing better. I am a man made out of my environment, and you are the ones creating who I am. Please don't let me fall to stupidity or ignorance, I expect the absolute best in each and every one of you and I hope you expect the same of me. Thank you. Usage of cookies:  In order to optimize the website and for continuous improvement vcloud-lab.com uses cookies. You agree to the usage of cookies when you continue using this site.

© 2016 - 2020 vcloud-lab.com

Bytes of virtualization with bits of other technology.

How to assign vsphere 7 licenses, april 14, 2020 virtuadmin.

Quick byte today – Here is a tutorial on how to assign VMware vSphere 7 licenses.

When you first install ESXi (or vCenter), you will have a 60-day evaluation license to dive into the full set of features. These evaluation features are equivalent to that of a vSphere Enterprise Plus license which includes vSphere vMotion, High Availability (HA), Distributed Resource Scheduler (DRS), Virtual Machine Encryption, Distributed Switches, etc. Durng this time, the Licenses tab will indicate you are Evaluation Mode. When you are ready to assign your official license, it just takes a few steps. Below we will walk through how to assign licenses through ESXi and vCenter.

How to Assign VMware Licenses From ESXi

Under Navigator , select Host and then Manage. From Manage, select the Licensing tab and click Assign License.

From Assign License, add your License Key and click Check License.

If successful, the license will indicate it is valid for the pertinent version. Click Assign License.

Once the license is installed, navigate back to Licensing to verify your license was validated.

How to Assign VMware Licenses From vCenter

Licenses can also be applied from vCenter. If you have a license in evaluation mode or an expiring license, there will be a notification banner indicating there are expired or expiring licenses in you inventory.

To assign a license click Manage Your Licenses from the aforementioned banner or click the Menu drop-down and select Administration.

Next, click Licenses and select the Assets tab. In this instance we will be assigning a license to a single asset (e.g. vCenter); however, if you need to assign multiple licenses you can do that from the Licenses tab. Under Assets, select the pertinent asset and click Assign Asset.

Click the New License tab. Enter the License Key and click Ok .

That’s it! The asset will reflect the license and new expiration date.

Related Posts

• Install or Upgrade VMware ESXi from HP iLO
• How to Downgrade/Rollback ESXi 6.5
• Manually Configure ESXi Syslog Location

One thought on “ How to Assign vSphere 7 Licenses ”

thank you for your post

Comments are closed.

• Applications

VMware vSphere

• Cloud & SDDC
• Community Home

Moving hosts from a broken vCenter

Pawel128564 Oct 14, 2019 03:27 PM

IRIX201110141 Oct 14, 2019 04:21 PM Best Answer

Pawel128564 Oct 14, 2019 05:59 PM

a_p_ Oct 14, 2019 05:57 PM

Pawel128564 oct 15, 2019 10:47 am, a_p_ oct 15, 2019 11:26 am, pawel128564 oct 15, 2019 11:45 am, pawel128564 oct 16, 2019 09:45 am, 1.  moving hosts from a broken vcenter.

After a power cut our old vCenter was no longer available, we could not log on to it via web, Windows client or even using the console.

The appliance has been deleted and we have installed a new vCenter 6.7. This is what I am getting when I am trying to add hosts to the new appliance:

"Assignment Validation for License 1

1. The license is present in another vCenter Server system. If you assign the license, the licensing configuration will become non-compliant.

2. Cannot decode the licensed features on the host. Changing its current license might fail or some features might become unavailable."

Unfortunately I have deleted the old system image, so the migration is necessary. Could you please advise what I have to do to:

1. Move the license to the new vCenter system having no access to the old one?

2. How to get rid of the second error "cannot decode the licensed features on the host"?

I have to move over three hosts.

Thank you for taking time to read this.

2.  RE: Moving hosts from a broken vCenter Best Answer

Cant you just click next?

Seen the first message in the past and its only to inform you not to double use a license. It just for compliance/legal and i am pretty sure you can ignore the message.

Unsure if i ever read the second message.

If there is a next button... just clickt it.

Regards, Joerg

3.  RE: Moving hosts from a broken vCenter

I was tempted to do so, though it is a live system, and I do not want to experiment with it; hence the question.

4.  RE: Moving hosts from a broken vCenter

Welcome to the Community,

some questions:

• what's the ESXi host's version/build number?
• which license/edition do you have for vCenter Server, and the ESXi hosts?

5.  RE: Moving hosts from a broken vCenter

Hi André a.p. ​

Thank you for your reply, our ESXIs are 6.0.0 version 600.9.3.30.2 and the new vCenter is 6.7.0.40000

Will the ESXIs need updating before they can be connected to the vCenter?

6.  RE: Moving hosts from a broken vCenter

No need to upgrade, I just wanted to be sure.

You may do as IRIX201110141 said, and just ignore the warnings.

They show up because the new vCenter recognizes that the host has been connected to another vCenter before, and makes you aware of a possible compliance issue, which however doesn't exist in this case. Once the host is added to vCenter Server, the second message should go away too.

7.  RE: Moving hosts from a broken vCenter

Thank you, I will give it a try and tell you how it went.

8.  RE: Moving hosts from a broken vCenter

So you were right, I just needed to ignore the messages and click next. Thank you for your help.

New Best Answer

• Terms of Use

Handling Tanzu License Assignment and Expiration in vSphere 7.0 Update 3

Article id: 331342, updated on:, issue/introduction.

• Insufficient License Capacity - The Tanzu license cannot be assigned to the Supervisor Cluster if the license key capacity is not sufficient to entitle the entire supervisor cluster. 
• Tanzu License Expiration - When a Tanzu license key expires, you cannot upgrade, or scale the Supervisor Cluster as well as create new workloads, impacting the normal operation of your vSphere with Tanzu environment. 

License Assignment to Supervisor Cluster: 

• Upon the configuration of a vSphere Cluster as a Supervisor Cluster, a 60-day built-in evaluation period is enabled, allowing you as a vSphere administrator to use the full set of capabilities of the cluster. Any use of these evaluation capabilities is subject to the terms applicable to evaluation licenses in the VMware End User License Agreement available at  https://www.vmware.com/download/eula.html . When the   60 day evaluation period expires or a valid Tanzu edition license expires,  you must assign a Tanzu edition license to the Supervisor Cluster. It is important to note here that the product allows only one license key to be assigned to a Supervisor Cluster.  This means that a single Tanzu license key must have sufficient license key capacity to entitle the full cluster. If not, the product does not allow the license key to be assigned to the Supervisor Cluster. 

For example, let us say Supervisor Cluster  site-cluster-1 , is consuming 50 units capacity. As a vSphere administrator, you attempt to assign license key  XXXX-XXXX-XXXX-XXYY , which has capacity of 35 units. The system prior to vSphere 7.0 U3 does not allow you to assign the license to this Supervisor Cluster because of 15 unit of insufficient capacity.  

• Changes in vSphere 7.0 U3
• Tanzu License Expiration

When a Tanzu edition license assigned to a Supervisor Cluster expires, license expiration rules come into effect. As a vSphere administrator, you cannot create new workloads on the Supervisor Cluster, scale the Supervisor Cluster, or updated it with new Kubernetes versions. You will be able to restore the normal operations after you assign the cluster a valid Tanzu license.

• License Compliance
• The above changes introduced in the vSphere 7.0 U3 are intended to provide you as a vSphere administrator with more flexibility to run the operations in a seamless way without any challenges due to the license management. However, it is very important to always ensure that, customers have properly licensed the Tanzu software that they are using. As a vSphere administrator, you must ensure that the  total license key usage across all the Supervisor Clusters does not exceed the total capacity of all the Tanzu license keys in the License inventory . 
• To check your total usage across all Supervisor Cluster, in the vSphere Client, navigate to  Administration → Licensing → Licenses → Assets tab . You can find the usage for each Supervisor Cluster in the Usage column. The column total is your total usage across all Supervisor Clusters. 

Additional Information

• When I attempt to assign a license to a cluster, I get the message - "License capacity is insufficient". I have procured sufficient Tanzu license capacity for our cluster spread across multiple license keys. I am unable to add the second license key to the cluster.
• When I attempt to assign a license key to the cluster, - License capacity is insufficient". However, I am able to use the product normally without any operational issues. Does it mean that I don't need to procure the deficit license capacity?
• The Licensing management screen is showing that the usage of my Supervisor Cluster exceeds the assigned license capacity. I have procured the required license quantity, but the system does not allow me to assign the additional license key to the Supervisor Cluster. How do I get rid of the Assignment Validation message?
• As a vSphere Administrator, how can I verify if I am satisfying the Tanzu License Compliance?

Explore top-rated data protection at an affordable price

• Customer stories

Learn how organizations of all sizes and industries successfully protect data with NAKIVO

• Product Datasheet
• Backup Solution for MSPs
• VMware Backup
• Microsoft 365 Backup
• Ransomware Protection
• Real-Time Replication BETA

Enterprise Backup and Recovery Solution

• Virtual: VMware | Hyper-V | Nutanix AHV | Proxmox
• Physical server: Windows | Linux
• Workstations: Windows | Linux
• SaaS: Microsoft 365
• Cloud: Amazon EC2
• File Share: NAS | File Server
• Apps: SQL | Active Directory | Exchange | Oracle DB
• Virtual: VMware | Hyper-V
• MSP SOLUTION
• DISASTER RECOVERY
• VMware Disaster Recovery
• REAL-TIME REPLICATION beta
• IT MONITORING
• Backup Malware Scan
• SMB | Enterprise | Education Remote Office Backup Hybrid Cloud Backup
• Raspberry Pi
• Western Digital
• Backblaze B2
• S3-Compatible Storage
• EMC Data Domain
• HPE StoreOnce
• NEC HYDRAstor
• Backup from Storage Snapshots
• Pricing and Editions
• Pricing Calculator
• Get a Quote
• Find a Reseller
• Find an MSP
• Renew License

More growth opportunities with the NAKIVO Partner Program

• Why Partner
• Solution Partner Signup
• Deal Registration

Grow your customer base with powerful BaaS and DRaaS

• MSP Partner Signup
• Technology Partners
• Storage Certification Program
• Log In to the Partner Portal
• SUPPORT RESOURCES

Find answers to your questions in our technical documentation

• Knowledge Base
• Release Notes
• API Reference Guide
• SUPPORT CENTER

Reach out to our highly-rated support team about any issues

• Send Support Bundle
• How-to Videos

VMware vCenter Server Licensing Options

VMware is one of the leading virtualization vendors today. The number of customers using VMware vSphere is growing every day. There are different license editions in VMware vSphere, and new VMware users should know about them to choose the license that is optimal for their organization and their needs. This blog post covers VMware vCenter licensing to clarify vCenter Server licensing options and understand the differences between licenses.

NAKIVO for VMware vSphere Backup

Complete data protection for VMware vSphere VMs and instant recovery options. Secure backup targets onsite, offsite and in the cloud. Anti-ransomware features.

General vCenter Server Licensing Information

In the blog post about Free ESXi , we explained how to use the free ESXi license for the VMware vSphere hypervisor. Yes, you can use a free license on a standalone ESXi host but with significant limitations. These limitations affect data backup methods because special APIs cannot be used. Free ESXi cannot be managed by the vCenter Server.

If you use paid licenses, you will need to buy a VMware vSphere license that covers the appropriate number of ESXi hosts and a vCenter Server license. The VMware vSphere license allows you to use vCenter Server to manage vSphere environments, including centralized ESXi hosts. VMware vCenter Server allows you to manage ESXi hosts, virtual machines, and other items in vSphere from a single interface. ESXi hosts are licensed with vSphere licenses on a per-processor basis, and vCenter is licensed on a per-instance basis. ESXi licensing allows you to run ESXi in the following modes: trial, free, and VMware vSphere license of the appropriate paid edition.

VMware vCenter Licensing

VMware vCenter can run in the evaluation (trial) mode and licensed mode. The trial mode for vSphere and vCenter is 60 days. During the trial period, you can use all the features in the top license edition (vSphere Enterprise Plus and vCenter Server Standard). If you assign a license for vCenter, you can switch back to the evaluation mode within 60 days from installing the vCenter Server. The evaluation license expires after 60 days. For example, if you install vCenter and use vCenter in the evaluation mode for 30 days, then buy and assign the license, you have 30 days remaining during which you can switch from the licensed mode to the evaluation mode. When the evaluation license expires, and there is no other license, all ESXi hosts added to vCenter inventory are disconnected from vCenter. If you assign a vCenter Server license after the evaluation license expires, ESXi hosts that were added to vCenter previously are reconnected to vCenter Server automatically.

A license key provided for VMware vSphere and VMware vCenter Server is a 25-character alphanumeric string that is not tied to hardware. A license key contains encrypted information about the product edition and doesn’t contain any server-specific information. If you have a vCenter Server, it is recommended that you assign vSphere licenses for ESXi hosts from the web interface of vCenter. VMware vSphere licenses and vCenter licenses have no time limitation on using the appropriate VMware products. There’s no limit on the number of running VMs.

VMware vCenter Server Editions

There are three editions of VMware vCenter 7.0 depending on the used license: vCenter Server for Essentials, vCenter Server Foundation, and vCenter Server Standard. Let’s explore each edition in more detail.

vCenter Server for Essentials supports up to 3 ESXi hosts that have vSphere Essentials and Essential Plus licenses. This edition is intended for use by organizations that have small virtual environments and is a good solution for small/medium businesses. This vCenter license is included in VMware vSphere Essential and Essential Plus kits (that are all-in-one solutions), unlike vSphere Standard and vSphere Enterprise licenses. VMware vMotion and vSphere High Availability are not available with vSphere Essential. You can create datacenters and clusters, but VMs can be migrated only when powered off (no live migration). If you use vSphere Essential Plus and vCenter Server for Essentials, VM live migration with vMotion and High Availability are available.

vCenter Server Foundation manages up to 4 ESXi hosts that have vSphere Standard, vSphere Enterprise Plus, and VMware vCloud Suite licenses. vCenter Server Foundation is sold as a separate license on a per-instance basis. There is no vRealize Orchestrator, vCenter Server High Availability, Enhanced Linked Mode, or vCenter Server Migration Tool. VMware vCenter Server Foundation is intended primarily for smaller environments.

vCenter Server Standard supports an unlimited number of ESXi hosts that are licensed with vSphere Standard, vSphere Enterprise Plus, and vCloud Suite licenses. The VMware vCenter Server Standard license contains all available vCenter features. This is the top edition of vCenter. You can use vRealize Orchestrator to automate key tasks, vCenter Server High Availability, Enhanced Linked Mode, and the vCenter Server Migration Tool. The VMware vCenter Server Standard license is sold separately from the VMware vSphere license (on a per-instance basis).

vCenter Upgrade

Customers can always pay and upgrade an existing license of vSphere and vCenter to a higher edition. In case of an upgrade, a new license key is issued, and the old (original) key is deactivated. You should replace the existing license with a new one. If you upgrade vCenter Server to a newer version that starts with the same number, your license is preserved, and vCenter continues to work with the assigned license (for example, if you upgrade vCenter 6.0 to 6.7). If you upgrade vCenter to a major version that starts with a different number, the evaluation mode restarts, and you need to assign a new license (for example, if you upgrade vCenter 6.7 to vCenter 7.0). Keep in mind that VMware vCenter 7.0 can manage ESXi 7.0, ESXi 6.5, and ESXi 6.7 hosts but cannot manage ESXi 6.0 or hosts of earlier versions. VMware vCenter 6.7 cannot manage ESXi 7.0 hosts.

How to Assign a License for vCenter

Let’s look at how to assign a VMware server license for vCenter. The workflow of assigning a license for vCenter 6.7 and vCenter 7.0 is similar. You should assign a vCenter license before the trial period expires.

Open a web browser and open VMware vSphere Client by entering the IP address of your vCenter Server. Lon in to vCenter as an administrator or other user that has the Global.Licenses privilege.

Go to the Configuration tab, and click Licensing in the Settings section to configure vCenter Server licensing.

On the Licensing page, you see the current license assigned to your vCenter, such as an Evaluation license or other license. You can also see information about the product, number of used instances, license expiration, and licensed features.

In order to assign a license, click the ASSIGN LICENSE button.

A new window opens in the web interface of VMware vSphere Client.

In order to add a new license, click NEW LICENSE , enter your license key, and define a custom license name for convenience. The license name is displayed in the list of available licenses in vCenter. On the screenshot below, you can see that we have entered a license key for VMware vCenter Server 6 Standard (Instances). Click the (i) icon to see the features that are available for your license. If the license is valid, you should see the appropriate message in the Assignment Validation section at the bottom of the window. Hit OK to save the settings.

Now you can go to the Existing licenses tab and verify that your license has been assigned. On this page, you can see all the licenses that you have added to your vCenter Server before. In our example, 60 days have passed since the installation of vCenter, and the Evaluation license is inactive. You can select any available license in this list, then hit OK to apply this license, save settings, and close the Assign License window.

This blog post has covered VMware vCenter Server licensing to understand how vCenter is licensed and the differences between vCenter editions. Organizations having small virtual environments might choose vCenter Server for Essentials or vCenter Server Foundation. Organizations having large virtual environments, including a large number of ESXi hosts with higher demands such as clustering, high availability, fault tolerance, and live migration, should consider using the VMware vCenter Server Standard license that includes all available features.

Even if your VMs run in a High Availability cluster, you must remember to protect your VMs and back them up. NAKIVO Backup & Replication is a universal data protection solution that supports VMware vSphere 7.0 with features designed specifically to improve backup performance and simplify data protection administration of VMware vSphere VMs. In addition to VMware vSphere, the solution supports data protection for other virtual, cloud, physical and SaaS platforms.

Try NAKIVO Backup & Replication

Get a free trial to explore all the solution’s data protection capabilities. 15 days for free. Zero feature or capacity limitations. No credit card required.

People also read

• Get started
• Ask the Community
• How-To & Best Practices
• Contact Support

EcoStruxure Building Operation Evaluation License for 2.0 and up

Building Automation Knowledge Base

Schneider Electric Building Automation Knowledge Base is a self-service resource to answer all your questions about EcoStruxure Building suite, Andover Continuum, Satchwell, TAC…

• Email to a Friend
• Printer Friendly Page
• Report Inappropriate Content

Credentials Evaluations

NCEES Credentials Evaluations

NCEES Credentials Evaluations is a service for state licensing boards and applicants. It is designed primarily for candidates who have earned their degrees outside the United States and are pursuing licensure through one of the member licensing boards of NCEES.

Purpose of an Evaluation

To earn a license to practice engineering or surveying, candidates must meet requirements in three areas: education, experience, and examinations. State licensing boards sometimes require that a candidate’s educational background be evaluated to ensure that it is comparable to an accredited degree in the United States.

The evaluation process helps ensure that a candidate is qualified academically for licensure. Usually, this takes place when a candidate applies to sit for a licensing exam offered by NCEES .

The evaluation will contain

An applicant summary

A comparability summary

which includes the evaluation result (whether the NCEES Engineering Education Standard has been met), and any area(s) of deficiency relative to the standard

An education summary

including institution(s) attended, major(s), and degree(s) earned

A cRITERIA ANALYSIS

which breaks down coursework corresponding to the NCEES standard

Do I Need an Evaluation?

If you aren’t sure whether you need a credentials evaluation through NCEES, contact your state licensing board before you begin the process. Most applicants are referred to NCEES Credentials Evaluations by a state licensing board.

You do not need an evaluation if your degree was accredited by the Engineering Accreditation Commission of ABET at the time of your graduation. ABET also accredits some programs in other countries.

If you aren’t sure whether your degree program is EAC/ABET-accredited, you can search for it at ABET’s website: accredited program search .

If you are a surveyor, contact your state licensing board to determine whether an evaluation is necessary before requesting an evaluation with NCEES.

Learn about

Ncees education standards.

Applicants having engineering degrees from programs that are not accredited by the Engineering Accreditation Commission (EAC) of ABET must demonstrate the following:

• Credits in higher mathematics must be beyond algebra and trigonometry and must emphasize mathematical concepts and principles rather than computation. Courses in differential and integral calculus are required. Additional courses may include differential equations, linear algebra, numerical analysis, probability and statistics, and advanced calculus.
• Credits must include at least two courses in basic sciences. These courses must be in general chemistry, general calculus-based physics, or general biological sciences; the two courses may not be in the same area.
• Courses in additional sciences may include earth sciences (geology, ecology), advanced biology, advanced chemistry, and advanced physics. Computer skills and/or programming courses may not be used to satisfy mathematics or basic science requirements. Basic engineering science courses or sequence of courses in this area are acceptable for credit but may not be counted twice.
• Examples of traditional humanities/social sciences courses in this area are philosophy, religion, history, literature, fine arts, sociology, psychology, political science, anthropology, economics (micro and macro), professional ethics, and social responsibility. Examples of other general education courses deemed acceptable include management (such as organizational behavior), accounting, written and oral communications, business, and law.
• No more than 6 credit hours may come from courses in management, accounting, business, or law. Courses in engineering economics, engineering management, systems engineering/analysis, production, and industrial engineering/management will not be counted. Language courses in the applicant’s native language are not acceptable for credit; no more than 6 credit hours of foreign language courses are acceptable for credit. Native language courses in literature and civilization may be considered in this area. Courses that instill cultural values are acceptable, while routine exercises of personal craft are not.
• Courses in engineering science must be taught within the college/faculty of engineering or approved for engineering credit by an EAC/ABET-accredited program on a publicly listed course equivalency list. The courses must have their roots in mathematics and basic sciences but carry knowledge further toward creative application of engineering principles. Examples of approved engineering science courses are mechanics, thermodynamics, heat transfer, electrical and electronic circuits, materials science, transport phenomena, engineering economics, and computer science (other than computer programming skills).
• Courses in engineering design must stress the establishment of objectives and criteria, synthesis, analysis, construction, testing, and evaluation. Graduate-level engineering courses may be included to fulfill curricular requirements in this area.

Engineering technology courses cannot be considered to meet engineering topic requirements.

NCEES Credentials Evaluations Policies

The NCEES Engineering Education Standard was developed by the NCEES Committee on Education for use by the NCEES Credentials Evaluations service and member boards. An educational evaluation provided by NCEES should be accepted as the only official assessment of whether or not the Engineering Education Standard has been met.

NCEES Credentials Evaluations will adhere to the following in conducting evaluations.

• Evaluations will be conducted on the following:

‎1. Bachelor’s degree in engineering from a non-U.S.-based program ‎2. Non-EAC/ABET-accredited degree programs in engineering, engineering technology, related science, or ‎ mathematics only when coupled with a master’s degree or doctorate in engineering‎

• Evaluations may be conducted on programs that do not meet these criteria if specifically requested by an NCEES member board. Such requests must come directly from the member board to the NCEES Manager of Credentials Evaluations.
• NCEES will evaluate all programs against the NCEES Engineering Education Standard. NCEES does not determine substantial equivalence to an EAC/ABET-accredited program.
• For the evaluation, the bachelor’s degree coursework, master’s degree coursework, and doctorate coursework will be considered in determining satisfaction of the NCEES standard.
• NCEES will provide credit for any advanced coursework earned prior to college enrollment that is deemed appropriate for college-level academic credit.
• A maximum of 6 hours’ credit will be granted for thesis, special topics, and independent study at any level.
• Cooperative training, practicums, internships, and continuing education activities will not receive educational credits to satisfy the NCEES standard.
• NCEES will note any deficiencies in the applicant’s educational history compared to the NCEES standard.

For applicants whose educational record indicates satisfaction of the NCEES standard, NCEES will report that the applicant possesses the education required in order to be considered by a member board for entry into the professional practice of engineering.

For applicants whose education record indicates deficiencies relative to the NCEES standard, NCEES will note those deficiencies for any action deemed appropriate by a member board. NCEES will also provide any relevant information concerning the educational requirements and/or any prerequisites for entry into engineering programs in the applicant’s country for consideration and overall qualification by a member board.

Download the NCEES Engineering Education Standard (PDF).

Applicants who hold surveying degrees from programs that are not accredited by ABET and applicants who hold B.S./B.A. degrees in states that also require a “core program” in surveying must demonstrate the following:

• A minimum of 12 credits in mathematics must be beyond basic mathematics, but the credits include college algebra or higher mathematics. These courses must emphasize mathematical concepts and principles rather than computation. Mathematics courses may include college algebra, trigonometry, analytic geometry, differential and integral calculus, linear algebra, numerical analysis, probability and statistics, and advanced calculus.
• A minimum of 6 credits must be in basic sciences. These courses must cover one or more of the following topics: general chemistry, advanced chemistry, life sciences (biology), earth sciences (geology, ecology), general physics, and advanced physics. Computer skills and/or programming courses may not be used to satisfy mathematics or basic science requirements
• Examples of traditional courses in this area are philosophy, religion, history, literature, fine arts, sociology, psychology, political science, anthropology, economics, professional ethics, and social responsibility. No more than 6 credit hours of languages other than English or other than the applicant’s native language are acceptable for credit. English and foreign language courses in literature and civilization may be considered in this area. Courses that instill cultural values are acceptable, while routine exercises of personal craft are not.
• Courses shall be taught by qualified surveying faculty. Examples of surveying courses are basic surveying, route surveying, geodesy, geographic information systems, land development design and planning, global positioning systems, photogrammetry, mapping, legal principles of land surveying, boundary law, professional surveying and mapping, and remote sensing. Graduate-level surveying courses can be included to fulfill curricular requirements in this area.

The NCEES Surveying Education Standard was developed by the NCEES Committee on Education for use by the NCEES Credentials Evaluations service and member boards. An educational evaluation provided by NCEES should be accepted as the only official assessment of whether the Surveying Education Standard has been met.

‎‎1. Foreign surveying degree programs 2. U.S.-based, non-ABET-accredited degree programs in surveying 3. U.S.-based B.S./B.A. programs for applicants that have met the “surveying core” program requirements

• NCEES will evaluate all programs against the NCEES standard. NCEES will no longer determine substantial equivalence to an ABET-accredited program.
• In conducting the evaluation, NCEES will consider the breadth of the applicant’s education, to include bachelor’s degree coursework, master’s degree coursework, and doctorate coursework in determining satisfaction of the NCEES standard.
• NCEES will provide credit for any advanced coursework earned prior to college enrollment that is deemed appropriate for college-level academic credit (such as Advanced Placement, A-levels, Abitur, French Baccalaureate, International Baccalaureate, Lebanese Baccalaureate, etc.).

For applicants whose educational record indicates satisfaction of the NCEES standard, NCEES will report that the applicant possesses the education required in order to be considered by a member board for entry into the professional practice of surveying.

For applicants whose educational record indicates deficiencies relative to the NCEES standard, those deficiencies will be noted for any action deemed appropriate by a member board. NCEES will also provide any relevant information concerning the educational requirements and/or any prerequisites for entry into surveying programs in the applicant’s country for consideration and overall qualification by a member board.

Download the NCEES Surveying Education Standard (PDF).

Fee Structure

Re-evaluation

Transmission to an additional licensing board

Fees are paid at the end of the application process. Note that all refunds will be subject to a $50 administrative fee. Also note that NCEES does not grant refunds for applications submitted more than one year prior to the refund request.

Credential Evaluations FAQs

Every U.S. state and foreign entity that offers NCEES exams has unique requirements that examinees must meet before they are allowed to sit for their exams. To begin the registration process, go to the appropriate exam page and select the state board or foreign entity you plan to register with and read about their application process.

You do not need an evaluation if your degree was accredited by the Engineering Accreditation Commission of ABET at the time of your graduation. If you aren’t sure whether your degree program is EAC/ABET-accredited, you can search for it on the ABET website . If your program is not listed, you will likely need to have your educational credentials evaluated by NCEES.

Create or log into your  MyNCEES  account and then add your education information. In order to have your education information verified, you will need to send an NCEES-generated form to your educational program. Once the requested information is received by NCEES, you can begin your evaluation.

An NCEES Credentials Evaluation compares a licensure candidate’s college-level education to the  NCEES Engineering Education Standard to evaluate if it is comparable to a typical U.S.-based engineering degree. If your college-level coursework meets the standard, your evaluation report will indicate this. If it does not, your report will indicate any areas of deficiency.

The  NCEES Engineering Education Standard  reflects generally agreed-upon educational qualifications for entering the profession.

Most applicants are referred to the NCEES Credentials Evaluations Service by a state licensing board . It is designed primarily for candidates who have earned a degree outside of the United States and are pursuing licensure through one of the state boards.

NCEES Records Program  applicants who do not have an  EAC/ABET-accredited degree must have their education evaluated by the NCEES Credentials Evaluations Service, which is the only service accepted by all state licensing boards. The completed evaluation will become a part of your NCEES Record.

You do not need an evaluation if your degree was  EAC/ABET-accredited  at the time of your graduation.

All applicants must provide the following from all universities attended and for all college-level coursework and degrees earned.

• Official academic transcript
• Official diploma or certificate of graduation
• Official course descriptions

No. Applicants must submit all required documentation, and it must be verified before they will be eligible to purchase an evaluation.

Once all of your documents have been received and verified, you will have the option to purchase a Credentials Evaluation from your  MyNCEES  dashboard.

A credentials evaluation is typically completed within 15 business days from the date of purchase.

Yes. You can monitor the status of your application through your  MyNCEES account. To monitor the receipt of your documentation, select “update education” from your profile, which is located in the drop-down menu next to your username at the top of the screen. The status of each document will be noted below the appropriate school entry. When all documents have been received and verified, you will have the option to purchase an evaluation from your MyNCEES dashboard.

Yes. All official documents in the native language must be accompanied by literal English translations, which must be completed by a certified translation service.

Society for Mining, Metallurgy, & Exploration Inc. 12999 E. Adam Aircraft Circle Englewood, CO 80112 Phone: 303-948-4200 Fax: 303-973-3845 Email:  [email protected]

222 Palisades Creek Drive Richardson, TX 75080 Phone: 972-952-9393 Fax: 972-952-9435 Email:  [email protected]

This browser is no longer supported.

Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.

Continuous access evaluation

• 28 contributors

Token expiration and refresh are a standard mechanism in the industry. When a client application like Outlook connects to a service like Exchange Online, the API requests are authorized using OAuth 2.0 access tokens. By default, access tokens are valid for one hour, when they expire the client is redirected to Microsoft Entra to refresh them. That refresh period provides an opportunity to reevaluate policies for user access. For example: we might choose not to refresh the token because of a Conditional Access policy, or because the user is disabled in the directory.

Customers express concerns about the lag between when conditions change for a user, and when policy changes are enforced. Microsoft experimented with the "blunt object" approach of reduced token lifetimes but found they degrade user experiences and reliability without eliminating risks.

Timely response to policy violations or security issues really requires a "conversation" between the token issuer Microsoft Entra, and the relying party (enlightened app). This two-way conversation gives us two important capabilities. The relying party can see when properties change, like network location, and tell the token issuer. It also gives the token issuer a way to tell the relying party to stop respecting tokens for a given user because of account compromise, disablement, or other concerns. The mechanism for this conversation is continuous access evaluation (CAE), an industry standard based on Open ID Continuous Access Evaluation Profile (CAEP) . The goal for critical event evaluation is for response to be near real time, but latency of up to 15 minutes might be observed because of event propagation time; however, IP locations policy enforcement is instant.

The initial implementation of continuous access evaluation focuses on Exchange, Teams, and SharePoint Online.

To prepare your applications to use CAE, see How to use Continuous Access Evaluation enabled APIs in your applications .

Key benefits

• User termination or password change/reset: User session revocation is enforced in near real time.
• Network location change: Conditional Access location policies are enforced in near real time.
• Token export to a machine outside of a trusted network can be prevented with Conditional Access location policies.

There are two scenarios that make up continuous access evaluation, critical event evaluation and Conditional Access policy evaluation.

Critical event evaluation

Continuous access evaluation is implemented by enabling services, like Exchange Online, SharePoint Online, and Teams, to subscribe to critical Microsoft Entra events. Those events can then be evaluated and enforced near real time. Critical event evaluation doesn't rely on Conditional Access policies so it's available in any tenant. The following events are currently evaluated:

• User Account is deleted or disabled
• Password for a user is changed or reset
• Multifactor authentication is enabled for the user
• Administrator explicitly revokes all refresh tokens for a user
• High user risk detected by Microsoft Entra ID Protection

This process enables the scenario where users lose access to organizational SharePoint Online files, email, calendar, or tasks, and Teams from Microsoft 365 client apps within minutes after a critical event.

SharePoint Online doesn't support user risk events.

Conditional Access policy evaluation

Exchange Online, SharePoint Online, Teams, and MS Graph can synchronize key Conditional Access policies for evaluation within the service itself.

This process enables the scenario where users lose access to files, email, calendar, or tasks from Microsoft 365 client apps or SharePoint Online immediately after network location changes.

Not all client app and resource provider combinations are supported. See the following tables. The first column of this table refers to web applications launched via web browser (that is, PowerPoint launched in web browser) while the remaining four columns refer to native applications running on each platform described. Additionally, references to "Office" encompass Word, Excel, and PowerPoint.

* Token lifetimes for Office web apps are reduced to 1 hour when a Conditional Access policy is set.

Teams is made up of multiple services and among these the calls and chat services don't adhere to IP-based Conditional Access policies.

Continuous access evaluation is also available in Azure Government tenants (GCC High and DOD) for Exchange Online.

Client Capabilities

Client-side claim challenge.

Before continuous access evaluation, clients would replay the access token from its cache as long as it wasn't expired. With CAE, we introduce a new case where a resource provider can reject a token when it isn't expired. To inform clients to bypass their cache even though the cached tokens haven't expired, we introduce a mechanism called claim challenge to indicate that the token was rejected and a new access token needs to be issued by Microsoft Entra. CAE requires a client update to understand claim challenge. The latest versions of the following applications support claim challenge:

Token lifetime

Because risk and policy are evaluated in real time, clients that negotiate continuous access evaluation aware sessions no longer rely on static access token lifetime policies. This change means that the configurable token lifetime policy isn't honored for clients negotiating CAE-aware sessions.

Token lifetime increases to long-lived, up to 28 hours, in CAE sessions. Critical events and policy evaluation drive revocation, not just an arbitrary time period. This change increases the stability of applications without affecting security posture.

If you aren't using CAE-capable clients, your default access token lifetime remains 1 hour. The default only changes if you configured your access token lifetime with the Configurable Token Lifetime (CTL) preview feature.

Example flow diagrams

User revocation event flow.

• A CAE-capable client presents credentials or a refresh token to Microsoft Entra asking for an access token for some resource.
• An access token is returned along with other artifacts to the client.
• An Administrator explicitly revokes all refresh tokens for the user , then a revocation event is sent to the resource provider from Microsoft Entra.
• An access token is presented to the resource provider. The resource provider evaluates the validity of the token and checks whether there's any revocation event for the user. The resource provider uses this information to decide to grant access to the resource or not.
• In this case, the resource provider denies access, and sends a 401+ claim challenge back to the client.
• The CAE-capable client understands the 401+ claim challenge. It bypasses the caches and goes back to step 1, sending its refresh token along with the claim challenge back to Microsoft Entra. Microsoft Entra then reevaluates all the conditions and prompts the user to reauthenticate in this case.

User condition change flow

In the following example, a Conditional Access Administrator configured a location based Conditional Access policy to only allow access from specific IP ranges:

• Microsoft Entra evaluates all Conditional Access policies to see whether the user and client meet the conditions.
• User moves out of an allowed IP range.
• The client presents an access token to the resource provider from outside of an allowed IP range.
• The resource provider evaluates the validity of the token and checks the location policy synced from Microsoft Entra.
• In this case, the resource provider denies access, and sends a 401+ claim challenge back to the client. The client is challenged because it isn't coming from an allowed IP range.
• The CAE-capable client understands the 401+ claim challenge. It bypasses the caches and goes back to step 1, sending its refresh token along with the claim challenge back to Microsoft Entra. Microsoft Entra reevaluates all the conditions and denies access in this case.

Exception for IP address variations and how to turn off the exception

In step 8 above, when Microsoft Entra reevaluates the conditions, it denies access because the new location detected by Microsoft Entra is outside the allowed IP range. This isn't always the case. Due to some complex network topologies , the authentication request can arrive from an allowed egress IP address even after the access request received by the resource provider arrived from an IP address that isn't allowed. Under these conditions, Microsoft Entra interprets that the client continues to be in an allowed location and should be granted access. Therefore, Microsoft Entra issues a one-hour token that suspends IP address checks at the resource until token expiration. Microsoft Entra continues to enforce IP address checks.

If you're sending traffic to non-Microsoft 365 resources through Global Secure Access, resource providers aren't aware of the source IP address of the user as source IP restoration isn’t currently supported for these resources. In this case, if the user is in the trusted IP location (as seen by Microsoft Entra), Microsoft Entra issues a one-hour token that suspends IP address checks at the resource until token expiration. Microsoft Entra continues to enforce IP address checks correctly for these resources.

Standard vs. Strict mode. The granting of access under this exception (that is, an allowed location detected between Microsoft Entra ID with a disallowed location detected by the resource provider) protects user productivity by maintaining access to critical resources. This is standard location enforcement. On the other hand, Administrators who operate under stable network topologies and wish remove this exception can use Strict Location Enforcement (Public Preview) .

Enable or disable CAE

The CAE setting moved to Conditional Access. New CAE customers can access and toggle CAE directly when creating Conditional Access policies. However, some existing customers must go through migration before they can access CAE through Conditional Access.

Customers who configured CAE settings under Security before must migrate settings to a new Conditional Access policy.

The following table describes the migration experience of each customer group based on previously configured CAE settings.

More information about continuous access evaluation as a session control can be found in the section, Customize continuous access evaluation .

Limitations

Group membership and policy update effective time.

Changes made to Conditional Access policies and group membership made by administrators could take up to one day to be effective. The delay is from replication between Microsoft Entra and resource providers like Exchange Online and SharePoint Online. Some optimization has been done for policy updates, which reduce the delay to two hours. However, it doesn't cover all the scenarios yet.

When Conditional Access policy or group membership changes need to be applied to certain users immediately, you have two options.

• Run the revoke-mgusersign PowerShell command to revoke all refresh tokens of a specified user.
• Select "Revoke Session" on the user profile page to revoke the user's session to ensure that the updated policies are applied immediately.

IP address variation and networks with IP address shared or unknown egress IPs

Modern networks often optimize connectivity and network paths for applications differently. This optimization frequently causes variations of the routing and source IP addresses of connections, as seen by your identity provider and resource providers. You might observe this split path or IP address variation in multiple network topologies, including, but not limited to:

• On-premises and cloud-based proxies.
• Virtual private network (VPN) implementations, like split tunneling .
• Software defined wide area network (SD-WAN) deployments.
• Load balanced or redundant network egress network topologies, like those using SNAT .
• Branch office deployments that allow direct internet connectivity for specific applications.
• Networks that support IPv6 clients.
• Other topologies, which handle application or resource traffic differently from traffic to the identity provider.

In addition to IP variations, customers also might employ network solutions and services that:

• Use IP addresses that might be shared with other customers. For example, cloud-based proxy services where egress IP addresses are shared between customers.
• Use easily varied or undefinable IP addresses. For example, topologies where there are large, dynamic sets of egress IP addresses used, like large enterprise scenarios or split VPN and local egress network traffic.

Networks where egress IP addresses might change frequently or are shared might affect Microsoft Entra Conditional Access and Continues Access Evaluation (CAE). This variability can affect how these features work and their recommended configurations. Split Tunneling might also cause unexpected blocks when an environment is configured using Split Tunneling VPN Best Practices . Routing Optimized IPs through a Trusted IP/VPN might be required to prevent blocks related to insufficient_claims or Instant IP Enforcement check failed .

The following table summarizes Conditional Access and CAE feature behaviors and recommendations for different types of network deployments and resource providers (RP):

Networks and network services used by clients connecting to identity and resource providers continue to evolve and change in response to modern trends. These changes might affect Conditional Access and CAE configurations that rely on the underlying IP addresses. When deciding on these configurations, factor in future changes in technology and upkeep of the defined list of addresses in your plan.

Supported location policies

CAE only has insight into IP-based named locations . CAE doesn't have insight into other location conditions like MFA trusted IPs or country/region-based locations. When a user comes from an MFA trusted IP, trusted location that includes MFA Trusted IPs, or country/region location, CAE won't be enforced after that user moves to a different location. In those cases, Microsoft Entra issues a one-hour access token without instant IP enforcement check.

If you want your location policies to be enforced in real time by continuous access evaluation, use only the IP based Conditional Access location condition and configure all IP addresses, including both IPv4 and IPv6 , that can be seen by your identity provider and resources provider. Do not use country/region location conditions or the trusted ips feature that is available in Microsoft Entra multifactor authentication's service settings page.

Named location limitations

When the sum of all IP ranges specified in location policies exceeds 5,000, CAE can't enforce user change location flow in real time. In this case, Microsoft Entra issues a one-hour CAE token. CAE continues enforcing all other events and policies besides client location change events. With this change, you still maintain stronger security posture compared to traditional one-hour tokens, since other events are still evaluated in near real time.

Office and Web Account Manager settings

For an explanation of the office update channels, see Overview of update channels for Microsoft 365 Apps . The recommendation is that organizations don't disable Web Account Manager (WAM).

Coauthoring in Office apps

When multiple users are collaborating on a document at the same time, CAE might not revoke their access to the document immediately based on policy change events. In this case, the user loses access completely after:

• Closing the document
• Closing the Office app
• After 1 hour when a Conditional Access IP policy is set

To further reduce this time, a SharePoint Administrator can reduce the maximum lifetime of coauthoring sessions for documents stored in SharePoint Online and Microsoft OneDrive, by configuring a network location policy . Once this configuration is changed, the maximum lifetime of coauthoring sessions is reduced to 15 minutes, and can be adjusted further using the SharePoint Online PowerShell command Set-SPOTenant –IPAddressWACTokenLifetime .

Enable after a user is disabled

If you enable a user right after disabling, there's some latency before the account is recognized as enabled in downstream Microsoft services.

• SharePoint Online and Teams typically have a 15-minute delay.
• Exchange Online typically has a 35-40 minute delay.

Push notifications

An IP address policy isn't evaluated before push notifications are released. This scenario exists because push notifications are outbound and don't have an associated IP address to be evaluated against. If a user selects that push notification, for example an email in Outlook, CAE IP address policies are still enforced before the email can display. Push notifications display a message preview, which isn't protected by an IP address policy. All other CAE checks are done before the push notification being sent. If a user or device has its access removed, enforcement occurs within the documented period.

Guest users

CAE doesn't support Guest user accounts. CAE revocation events and IP based Conditional Access policies aren't enforced instantaneously.

CAE and Sign-in Frequency

Sign-in Frequency is honored with or without CAE.

Related content

• How to use Continuous Access Evaluation enabled APIs in your applications
• Claims challenges, claims requests, and client capabilities
• Conditional Access: Session
• Monitor and troubleshoot continuous access evaluation

Was this page helpful?

Additional resources

You are using an outdated browser. Please upgrade your browser to improve your experience.

Under certain conditions, you might be unable to assign a license to an ESXi host.

You try to assign a license to an ESXi host, but you cannot perform the operation and you receive an error message.

You might be unable to assign a license to an ESXi host because of the following reasons:

• The calculated license usage for the host exceeds the license capacity. For example, you have a vSphere license key with capacity for two CPUs. You try to assign the key to a host that has four CPUs. You cannot assign the license, because the required license usage for the host is greater than the license capacity.
• The features on the host do not match the license edition. For example, you might configure hosts with vSphere Distributed Switch and vSphere DRS while in evaluation mode. Later, you try to assign vSphere Standard license to the hosts. This operation fails because the vSphere Standard edition does not include vSphere Distributed Switch and vSphere DRS.
• The host is connected to a vCenter Server system that is assigned a license that restricts the edition of the license that you want to assign.
• Assign a license with larger capacity.
• Upgrade the license edition to match the resources and features on the host, or disable the features that do not match the license edition.
• Assign a vSphere license whose edition is compatible with the license edition of vCenter Server.