Specifications

ManualsBrandsAdaptec ManualsAdapterAMM-1510M

151

152

153

154

155

156

157

158

159

160

Chapter 14. License and serial number servers 145

When a central license server is used (or if multiple tokens are used) there needs to be a

method of assigning unique serial numbers that do not change when once assigned. The

general concept is shown in Figure 14-2 on page 145.

Figure 14-2 General server concept

The basic idea is to have a remote Unique Identification Manager (UIM) and SafeNet license

server. There are two modes of operation, local and remote. In local mode both the license

server and the UIM function run in the same machine as the client (as shown in Figure 14-1),

but are generally invisible to the user. In remote mode, the license server and UIM server

program are in a remote machine which can serve licenses and serial numbers to a multitude

of nodes via TCP/IP.

Not identified in the figure are the configuration or control files:

CLIENT:

/etc/z1090/uim/uimclient.db (holds local serial number(s))

/usr/z1090/bin/sntlconfig.xml (points to remote servers, etc)

SERVER:

~/UIMserver/uimserver.db (+ logs) (in home directory of uim program)

/opt/safenet_sentinel/common_files/sentinel_keys_server/sntlconfigsrvr.xml

Each Linux zPDT instance is assigned a unique serial number, either by a local token or by a

UIM server. Every zPDT instance (running under a Linux user ID) will have an LPAR ID

assigned to it. The combination of serial number and LPAR ID become part of the CPUID.

The CPUID is the information provided by the System z instruction Store CPU ID (STIDP).

There are several notes for these figures:

򐂰 The two server functions are typically in the same server machine. They could be in

separate machines or partly in the client machine, although this would be unusual.

򐂰 The default port number for the zPDT license server is 9450 and the default port number

for the UIM server is one greater than the license server port number. These are

configurable.

򐂰 Once a zPDT instance is started (on a client) the identity management access to the UIM

server is no longer needed.

Linux client machineLinux server machine

ID repository

Safenet config

Global

identifier

management

service

License and heartbeat

9451

License

server

function

9450

Instance IDs

All processor IDs

Other unique IDs

zPDT

instance

zPDT

instance

Local

identifier

management

service (UIM)

Serials

TCP/IP

UIM repository

Safenet config

Tokens

Serial number