Manualshelf

HP Serviceguard Toolkit for Integrity Virtual Servers User Guide

ManualsBrandsHP ManualsSoftwareHP Serviceguard Extension for Oracle e-Business Suite
11121314151617181920
NOTE: This command prompts for a user name, organization and physical location
information to document the use of the key.
b. keytool -export -alias serverprivate -keystore server.private
-file temp.key -storepass serverpw
c. keytool -import -noprompt -alias serverpublic -keystore
server.public -file temp.key -storepass public
SSL key distribution
After the keys are initially created on one VM Host, all other VM Hosts must use the same
client.public key. Each VM guest generates its own server.public key, therefore, a
unique name for each VM guest must be used , to rename the server.public key. For
example, # mv server.public server_[guest name].public.
To distribute keys between VM Hosts and VM guests:
a. Copy the client.public file from the VM Host directory /etc/cmcluster/cmappmgr
to all VM guests in the /opt/hp/cmappserver directory.
b. Copy the uniquely-named server.public file from all VM guests to the VM Hosts in
directory /etc/cmcluster/cmappmgr. For example, server.public renamed to
server_mmpf121.public.
c. Copy all key files from the initial /etc/cmcluster/cmappmgr VM Host directory to
the same directory on all other VM Host nodes
2. Configure the cmappmgr.conf file on VM Host.
The file /etc/cmappmgr.conf on the VM Host is used to specify location information for
the SSL keys used for cmappmgr to cmappserver communications from the VM Host. An
example of keyStore location (for example, client.private), the VM guest name from
which the trustStore was obtained (for example, guest mmpf121), and the name of the trustStore
file (for example, server_mmpf121.public) is shown below:
###############################################################
# (C) Copyright 2008 Hewlett-Packard Development Company, L.P.
# @(#) SG cmappmgr Configuration File
# @(#) Product Name : HP SG cmappmgr conf file
# @(#) Product Version : %%SG_VERSION%%
# @(#) Patch Name : %%SG_PATCH%%
#
###############################################################
keyStore=/etc/cmcluster/cmappmgr/client.private
# If unspecified, the default value is /etc/client.private
keyStorePassword=
# If unspecified, the default value is clientpw
# Specify node name where the trustStore comes from, followed by a ":", e.g.,
mmpf121:
trustStore=/etc/cmcluster/cmappmgr/server_mmpf121.public
trustStorePassword=public
# If unspecified, the default value is /etc/server.public
# If unspecified, the default value is public
3. Install cmappserver depots on VM guests.
To install cmappserver on VM guests that are running applications, the cmappserver
depot software must be copied from the VM Host directory /opt/hp/serviceguard/
cmappserver to the VM guest to be monitored. The destination for copying the depot software
depends on the VM guest type being monitored.
For HP-UX guests (subdirectory 11iv2 or 11iv3):
Copy the depot cmappserver.depot from the VM Host to the /tmp directory on the
VM guest.
To install the required files in the /opt/hp/cmappserver directory, in the VM guest,
run the command swinstall -s /tmp/cmappserver.depot CMAPPSERVER.
19