Reference Guide
Table Of Contents
- Dell EMC OpenManage Integration Version 7.3 with Microsoft System Center (OMIMSSC) for System Center Operations Manager (SCOM) Security Configuration Guide
- Contents
- Figures
- Tables
- PREFACE
- Security Quick Reference
- Product and Subsystem Security
- Security Controls Map
- Authentication
- Login security settings
- Authentication types and setup considerations
- User and credential management
- Network security
- Data security
- Cryptography
- Auditing and logging
- Serviceability
- OMIMSSC Operating System update
- Product code integrity
- Miscellaneous Configuration and Management
Local user account (Admin account)
OMIMSSC for SCOM provides a single default local administrative user account. The username of this internal account is admin.
The local administrator has access to all operations in the Dell EMC OMIMSSC Admin Portal only. The first time that you deploy
OMIMSSC, you are prompted to set the password. Follow the on-screen instruction to set the password.
Read-only user account
OMIMSSC for SCOM provides a single default local read-only user account. The username of the read-only account is readonly.
The user with read-only permissions can log in to OMIMSSC for SCOM using the VM remote console only.
This account can be used during troubleshooting to view critical appliance status and logs.
Root account
OMIMSSC for SCOM appliance has Operating System root account.
This default account is not accessible. Technical support team will require root account to debug the field issues.
For more information about roles and privileges, see User and credential management on page 16.
Infrastructure monitoring using Microsoft System Center
Operations Manager (SCOM) Console
SCOM Console user accounts
OMIMSSC depends on authentication, authorization, and security policies provided by the Microsoft Active Directory. Microsoft
System Center Console users can access the Dell EMC OpenManage Integration Dashboard when the console users have
appropriate roles and privileges on Microsoft Active Directory.
OMIMSSC provide integration with following Microsoft System Center Console.
Microsoft System Center Operations Manager (SCOM) console
SCOM console allows you to manage roles and permissions as follows. Dell EMC OpenManage Integration Dashboard on the
SCOM console is used to interact with the OMIMSSC appliance.
Role-based security:
In the SCOM console, user roles are required to access the data of monitored devices and perform various tasks. User roles
are applied to groups of users who need access to perform tasks on the monitored devices. By default, only the Operations
Manager Administrator account has the required privileges to access and act on the monitored data. Other users must be
assigned a user role to view or act on all monitored data or specific data.
Roles specify what users can do in the SCOM console. Roles consist of a profile that defines a set of available operations for
the role, scope which define the set of objects on which the role can operate, and a membership list that defines the Active
Directory user accounts and security groups that are assigned to the role.
For more information about roles and privileges in Microsoft System Center Operations Manager, go to https://
docs.microsoft.com/en-us/system-center/scom/manage-security-overview?view=sc-om-2019.
Login security settings
OMIMSSC Appliance administration
OMIMSSC console uses local user account (admin account) to access OMIMSSC Admin Portal and virtual appliance. It validates
the user authentication on appliance. Admin account has logout option post administration operations are completed. On
OMIMSSC Admin Portal, web session is maintained for maximum 15 minutes and a maximum of 200 concurrent sessions are
12
Product and Subsystem Security