Manualshelf

Read me

ManualsBrandsDell ManualsComputersOpenManage Server Administrator Managed Node for Fluid Cache for DAS
12345678910
3. Click the "Security" tab.
4. Select the security zone to which the system running Server Administrator belongs.
NOTE: This option should be set to "Trusted sites".
5. Click the "Custom Level" button.
6. Click "OK" and restart your browser.
To allow Single Sign-on for Server Administrator, perform the following steps:
1. In Internet Explorer, navigate to "Tools".
2. Click "Internet Options".
3. Click the "Security" tab.
4. Select "Trusted sites".
5. Click the "Custom Level" button.
6. Under "User Authentication", select the "Automatic Logon with current username and password" radio
button. Click ‘OK’ to exit the "Custom Level" window.
7. Now select the "Advanced" tab, and under "HTTP 1.1 settings", make sure "Use HTTP 1.1" is checked.
8. Select "Trusted sites". Click "Sites". Add the server to the website.
9. Click "Close".
10. Click "OK" and restart your browser.
If you run a security scanner tool such as Nessus, against the Server Administrator Web server,
certain security warnings may be displayed against port 1311 running the Server Administrator
Web server. The
following warnings have been investigated by Dell engineering and are determined to be "false
positives" (invalid security warnings) that you can ignore:
"The Web server on 1311 allows scripts to read sensitive configuration and / or XML files." This
warning is a false positive.
"The Web server on 1311 allows to delete "/" which implies that the Web server will allow a
remote user to delete the files in root on the server." This warning is a false positive.
"The web server on 1311 may be susceptible to a 'www Infinite Request' attack." Dell has
determined that this warning is a false positive.
"It is possible to make the remote thttpd server execute arbitrary code by sending a request like:
GET If-Modified-Since:AAA[...]AAAA
Solution: If you are using the tpd, upgrade to version 2.0. Else, contact your vendor and ask for a patch,
or change your web server. CVE on this one is CAN-2000-0359". Dell has determined that this warning is a
false positive.