Manualshelf

HP Servicecontrol Manager 3.0 User's Guide

ManualsBrandsHP ManualsSoftwareHP-UX 11i v1.6 Technical Computing (TCOE) LTU
21222324252627282930
HP Servicecontrol Manager Introduction
Security and Access
Chapter 1
23
If required, the maximum and minimum anonymous socket numbers can be set for
HP-UX and Linux.
For HP-UX:
ndd -set /dev/tcp tcp_smallest_anon_port min_port
ndd -set /dev/tcp tcp_largest_anon_port max_port
For Linux:
/sbin/sysctl -w net.ipv4.ip_local_port_range="min_port max_port"
where min_port and max_port delimit the desired anonymous port number ranges. Note
that changes by these commands do not persist across a reboot. For more information,
consult the appropriate manual pages for these commands. When setting the anonymous
port ranges, be sure to also consider the anonymous port requirements of other
applications running on the CMS and the managed nodes.
Increased Security Options
If you are in an environment where you need a higher level of security than what is
provided by default with SCM, there are several things you can do to increase security.
Chapter 4, “Increasing Servicecontrol Manager Security,” on page 55 covers the following
topics:
“Replace Self-Signed Tomcat Certificates” on page 56
“Enable WBEM Certificate Validation” on page 58
“Encrypt Java RMI Transactions” on page 61
“Disable the Tomcat Web Server” on page 62
“Manage SCM Software” on page 63
“Verify Security Dependencies” on page 64