Manualshelf

Understanding HP Systems Insight Manager 6.3 Security

ManualsBrandsHP ManualsSoftwareHP Systems Insight Manager 5.x Linux Software
12345678910
the mxpassword command. The password file and the Blowfish key file are restricted with
operating system file permissions to administrators or root.
Prior to HP SIM 5.3, passwords configured on the HP SIM protocol settings pages are stored in a
local file on the CMS, restricted with operating system file permissions to administrators or root. These
passwords can be further managed using the mxnodesecurity command.
Configuring managed systems
Manage communications
The Manage Communications tool can be used to diagnose and repair communication problems
between HP SIM and managed systems. If communication problems are detected that might affect
identification, receiving events, running tools, or version control, they are listed for each system. You
can then reconfigure certain communication settings and credentials and install agents on target
systems.
System credentials
The System Credentials tool in HP SIM 5.3 can be used to view credentials that are in use for each
managed system; these are credentials that are known to work for the system. You can also configure
credentials for each protocol used by HP SIM to communicate with managed systems.
Agent installation
In a Windows environment, the Initial ProLiant Support Pack Install tool can be used to install Systems
Management Homepage (SMH), which is pre-configured to trust HP SIM along with other settings.
Additionally, it can install and configure SSH (the Install OpenSSH tool can also be used).
Agent configuration
The Configure or Repair Agents tool can be used to install agents on the managed system, or just to
configure the systems. The Replicate Agent Settings tool replicates SMH settings from one system to
other systems.
Authorizations
An authorization in HP SIM defines which tools a user can operate against which systems. A system
list displays only systems for which the user is authorized. Similarly, only authorized tools are
displayed on the menu.
Prior to HP SIM 5.2, configuration rights defined what actions a user could perform within HP SIM.
For example, managing tasks, collections, events, discovery, reports, and so on. Many of these
actions are now individual tools contained in the Full Rights and Limited Rights toolboxes. The ability
to configure CMS security settings, such as user accounts, authorizations, tool boxes, certificates, SSH
keys, and so on, require the configure CMS security right.
Browser
SSL
All communication between the browser and the CMS or any managed server occurs using HTTPS
over SSL. Any navigation using HTTP (not using SSL) is automatically redirected to HTTPS.