Hp Systems Insight Manager User Manual Page 118
- Page / 253
- Table of contents
- TROUBLESHOOTING
- BOOKMARKS
Rated. / 5. Based on customer reviews
In HP SIM, the Privilege Elevation feature enables tools to be run against HP-UX, Linux, and ESX
managed systems by first signing in as a non-root user, and then requesting privilege elevation to
run root-level tools. This can be configured under Options→Security→Privilege Elevation.
WBEM
All WBEM access is over HTTPS for security. HP SIM is configured with a user name and password
for WBEM agent access. Using SSL, HP SIM can optionally authenticate the managed system using
its SSL certificate.
For HP-UX, certificates can be used instead of username and password for WBEM authentication.
You can configure WBEM authentication from the System Credentials→WBEM tab by selecting
Options→Security→Credentials→System Credentials. For more information, see the HP SIM
online help.
LDAP
When configured to use a directory service, HP SIM can be configured to use LDAP with SSL
(default) or without SSL, which would transmit credentials in clear-text. To enable LDAP over SSL
in Microsoft Active Directory, refer to http://support.microsoft.com/
default.aspx?scid=kb;en-us;321051. Additionally, the directory server can be authenticated using
the Trusted Certificate list in HP SIM.
RMI
Java RMI is secured by requiring digitally signed requests using the CMS private key, which should
only be available to the local system. All communications use localhost to prevent the communication
from being visible on the network.
Credentials management
SSL certificates
There are several certificates used by HP SIM.
HP SIM main certificate
The HP SIM main certificate is used by the HP SIM SSL web server, the partner application SOAP
interface, and the WBEM indications receiver. This certificate is used to authenticate HP SIM in
the browser, in partner applications that communicate with HP SIM through SOAP, and in WBEM
agents that deliver indications to HP SIM.
By default the SIM main certificate is self-signed. Public Key Infrastructure (PKI) support is provided
so that the main certificate may be signed by an internal certificate server or by a third-party
Certificate Authority (CA).
HP SIM Single Sigon-On (SSO) certificate
This certificate is used to enable the trust relationship with managed systems for SSO. Managed
systems include System Management Homepage, Onboard Administrator, Integrated Lights-Out,
and CV.
The HP SIM SSO trust model uses the SSO certificate as a client certificate and uses the key to
encrypt the SSO client URL.
Key Length
In HP SIM 7.0 the main certificate, by default, uses a 2,048-bit key. The HP SIM SSO default
certificate uses a 1,024-bit key. The main certificate can be configured on managed systems to
replace the default HP SIM SSO certificate if the longer key is required. However, some SSO
118 Understanding HP SIM security
- HP Part Number: 601823-005 1
- 4 Table of Contents 4
- Table of Contents 5 5
- 6 Table of Contents 6
- Table of Contents 7 7
- 8 Table of Contents 8
- Table of Contents 9 9
- 10 Table of Contents 10
- Table of Contents 11 11
- List of Tables 12
- Part I Introduction 13
- Table of Contents 15
- 1 About this document 17
- 2 Product overview 19
- Status info 20
- Automatic event handling 20
- Tools and tasks 20
- Collections 20
- Users and Authorizations 21
- Automatically signing in 22
- Behavior 23
- Customizing views 24
- Part II Setting up HP SIM 25
- 3 Setting up managed systems 29
- 30 Setting up managed systems 30
- 32 Setting up managed systems 32
- 34 Setting up managed systems 34
- 36 Setting up managed systems 36
- Configuring SSH access 37
- 38 Setting up managed systems 38
- /etc/init.d/hpasm start 40
- 4 Credentials 41
- 42 Credentials 42
- 5 WMI Mapper Proxy 43
- 6 Discovery 45
- Options on the Discovery page 46
- Discovery credentials 46
- Discovery filters 47
- Discovery of Gen8 servers 48
- 7 Manage Communications 49
- 50 Manage Communications 50
- 8 Automatic event handling 51
- 52 Automatic event handling 52
- 9 Users and Authorizations 53
- 10 Managed environment 55
- 60 Table of Contents 60
- Basic search 61
- Advanced search 61
- Searching for tools 62
- 12 Monitoring systems 63
- System status types 64
- Software status types 65
- WBEM operational status types 65
- Monitoring clusters 66
- System properties 67
- 68 Monitoring systems 68
- 13 Event management 69
- 70 Event management 70
- Examples of e-mail pages 71
- Example of an HTML page 72
- 74 Event management 74
- 14 Reporting in HP SIM 77
- Snapshot Comparison 78
- Enhanced Reports 78
- Predefined reports 79
- Run Enhanced reports 79
- New Enhanced reports 79
- Editing Enhanced reports 80
- E-mailing reports 80
- Deleting reports 80
- 15 HP SIM tools 81
- Viewing results 82
- Example - Device ping 82
- 86 Table of Contents 86
- Table of Contents 87 87
- 88 Table of Contents 88
- 16 Collections in HP SIM 89
- Types of collections 90
- Other customization features 91
- 92 Collections in HP SIM 92
- Collections in HP SIM 93 93
- 94 Collections in HP SIM 94
- Collections in HP SIM 95 95
- 17 HP SIM custom tools 97
- General concepts 99 99
- Custom tool menu placement 100
- Custom tool URL format 100
- View tool definition 101
- Run Now/Schedule 101
- Creating a custom SSA tool 102
- Example Web launch tool 104
- Example MSA tool 105
- 106 HP SIM custom tools 106
- Adding a TDEF to HP SIM 107
- Removing a TDEF from HP SIM 107
- Modifying a TDEF 108
- 18 Federated Search 109
- 110 Federated Search 110
- 19 CMS reconfigure tools 111
- Warnings 112
- Dependencies 112
- Securing communication 117
- Credentials management 118
- Certificate sharing 119
- SSH keys 119
- Passwords 120
- Password warnings 120
- Browser session 121
- Internet Explorer zones 121
- System link format 121
- Operating-system dependencies 122
- HP SIM database 123
- Command-line interface 123
- Configuring the CMS 124
- Strong security 124
- Configuring managed systems 124
- Moderate 125
- 21 Privilege elevation 127
- 22 Contract and warranty 129
- Overview 130
- System Information 130
- Contract 130
- Warranty 131
- 23 License Manager 133
- CLI mxlmkeyconfig 134
- License types 134
- Licensed System(s) 136
- Add Licenses 136
- Collect Remote License Info 136
- Apply Licenses 138
- Add License page 139
- Key details page 139
- 140 License Manager 140
- About storage systems 143
- Storage events 144
- Storage inventory details 144
- About SMI-S 145
- Key components 145
- Profiles 145
- Using storage solutions 146
- For Command View SDM 147
- Discovery 148
- 25 Managing MSCS clusters 151
- Cluster fields 152
- Node fields 152
- Network fields 152
- Resource fields 153
- Disk capacity thresholds 153
- CPU utilization thresholds 153
- Cluster Monitor states 154
- Cluster Monitor polling rate 154
- Disk polling rate 155
- MSCS status polling rate 155
- System status polling rate 155
- 26 HP SIM Audit log 157
- Log content 158
- Additional resources 159
- About integration 160
- About software repositories 160
- MIB management tools 163
- mxmib -l 165
- mxmib -t <myfile.mib> 165
- mxmib -d <myfile.mib> 165
- MIB management tools 167 167
- SNMP Trap Settings page 169
- A Important Notes 171
- Database firewall settings 172
- Annotating the portal UI 172
- Security bulletins 173
- Validating RPM signatures 173
- Central Management Server 174
- Configure or Repair Agents 175
- Data collection reports 175
- B Troubleshooting 177
- Container View 180
- Credentials 180
- Data Collection 181
- Database 182
- 184 Troubleshooting 184
- Linux servers 185
- Host name 186
- HP Smart Update Manager 187
- 188 Troubleshooting 188
- HP Smart Update Manager 189 189
- Systems Insight Manager 190
- Identification 190
- Installation 191
- License Manager 192
- Managed Environment 193
- Onboard Administrator 193
- Performance 193
- Ports used by HP SIM 194
- Privilege elevation 195
- Property pages 195
- Reporting 195
- Security 195
- 196 Troubleshooting 196
- Tools 197 197
- Virtual identifiers 198
- Virtual machines 199
- WBEM indications 199
- WMI Mapper 199
- C Protocols used by HP SIM 201
- Remote Wake-Up 202
- Protocol functionality 203
- D Data Collection 207
- Bi-weekly data collection 208
- E Default system tasks 209
- Biweekly Data Collection 210
- System Identification 210
- Old Noisy Events 210
- Events Older Than 90 Days 210
- Status polling 212
- F Host file extensions 213
- 214 Host file extensions 214
- Default values 215
- 216 Host file extensions 216
- G System Type Manager rules 217
- SSA-specific attributes 219
- MSA-specific attributes 219
- WLA-specific attributes 220
- Parameterized strings 221
- Common tool attributes 223
- Table H-9 Defined name values 224
- Table H-10 All tools values 224
- Tool Filtering attributes 225
- Environment Variables 226
- Tool parameter guidelines 227
- J Support and other resources 235
- Glossary 237
- 238 Glossary 238
- 240 Glossary 240
- 242 Glossary 242
- 244 Glossary 244
- 246 Glossary 246
- 248 Index 248
- 250 Index 250
- 252 Index 252
Related products and manuals for Tools Hp Systems Insight Manager
Tools Hp Systems Insight Manager User Manual
(248 pages)
(248 pages)
© 2020, manymanuals.com. All rights reserved. | 0.940 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals