HP WBEM Services Version A.02.11.
© Copyright 2012, 2014 Hewlett-Packard Development Company, L.P. Legal Notices Confidential computer software. Valid license from HP required for possession, use, or copying. Consistent with FAR 12.211 and 12.212, Commercial Computer Software, Computer Software Documentation, and Technical Data for Commercial Items are licensed to the U.S. Government under vendor's standard commercial license. The information contained herein is subject to change without notice.
Contents HP secure development lifecycle......................................................................4 1 HP WBEM Services version A.02.11.04 release notes.......................................5 Announcement.........................................................................................................................5 What's new in this version?.......................................................................................................6 Security ................................
HP secure development lifecycle Starting with HP-UX 11i v3 March 2013 update release, HP secure development lifecycle provides the ability to authenticate HP-UX software. Software delivered through this release has been digitally signed using HP's private key. You can now verify the authenticity of the software before installing the products, delivered through this release. To verify the software signatures in signed depot, the following products must be installed on your system: • B.11.31.
1 HP WBEM Services version A.02.11.04 release notes Announcement The following information is for HP WBEM Services Version A.02.11.04: HP WBEM Services for HP-UX is available from http://software.hp.com. NOTE: The -c option of wbemassist tool will be removed in the next release of the WBEMServices product. This option was introduced to check the compatibility of WBEM Providers with the WBEM Services product.
What's new in this version? HP WBEM Services version A.02.11.04 is a minor update to HP WBEM Services. This release includes defect fixes and enhancements. For information about the defect fixes in this release, see Table 4 (page 18). Following are the key differences between the HP WBEM Services version A.02.09.14 and A.02.11.04: • New config property maxFailedProviderModuleRestarts: The new release includes a new config property called “maxFailedProviderModuleRestarts”. By default, this value is zero.
NOTE: HP WBEM Services version A.02.09.06, A.02.09.10, A.02.09.12, A.02.11.00, A.02.11.02, and A.02.11.04 are not available on HP-UX 11i v2. IMPORTANT: HP WBEM Services Version A.02.11.04 is not available on HP-UX 11i v1. Starting with the September 2009 AR(Application Release), no new features or enhancements for HP WBEM Services is addressed on HP-UX 11i v1. Only defects that are critical in nature are addressed. HP WBEM Services Version A.02.11.
Security considerations When you use the Simple Network Management Protocol (SNMP), Process Resource Manager (PRM), and Workload Manager (WLM) tools, consider the following security conditions: • You can use tools such as PRM and WLM to limit computing resources used by the WBEM Services processes. You can purchase these products from http://www.software.hp.com.
Table 2 Remote user authentication methods (continued) Certificate Based Authentication (CBA) HTTP Basic Authentication Benefits and Considerations • Requires a one-time server configuration. • Does not require any server configuration and hence, easy to set up. • Does not require the remote user to provide a password • Requires the remote user to provide a password to each time to access the WBEM data. access the WBEM data.
Using CBA(Certificate Based Authentication) To use the CBA(Certificate Based Authentication) method, you must do the following: 1. Use the cimconfig command, to enable CBA . By default, the CBA is disabled. For more information, see the cimconfig(1M) and cimtrust(1M) manpages. 2. Use the cimtrust command to include the client certificates from the trust store in the cimserver and associate that certificate with a system user. 3.
1. Delete the existing /var/opt/wbem/server_2048.pem and /var/opt/wbem/ server.pem files and use the certificates in the /etc/opt/hp/sslshare directory. Or 2. Overwrite the new certificate in the /etc/opt/hp/sslshare/cert.pem file and the private key in the /etc/opt/hp/sslshare/file.pem file with the existing certificate and key in either /var/opt/wbem/server_2048.pem or /var/opt/wbem/ server.pem files. Before overwriting the /etc/opt/hp/sslshare/cert.pem and /etc/opt/hp/sslshare/file.
For more information, see the DMTF WBEM and CIM standards at http://www.dmtf.org. Compatibility information This section describes the compatibility information for HP WBEM Services Version A.02.11.02. Compatibility for WBEM providers Table 3 lists the product bundle and WBEM version information for HP-UX 11i v3. Use this table to determine, which bundle is compatible with your version of HP-UX. Use the swlist command to view your product bundle version number.
Table 3 HP-UX 11i v3 WBEM Solution Compatibility Table Product Tag Product Title Product Version Supported HP WBEM Services Version iCOD HP-UX iCOD (Instant Capacity) B.11.31.10.07.00 A.02.11.04 NParProvider nPartition Provider - HP-UX B.31.02.04 SW-DIST HP-UX Software Distributor B.11.31.1403.395 WBEMP-LAN LAN Provider for Ethernet LAN interfaces B.11.31.1403.05.01 VParProvider vPar Provider - HP-UX B.11.31.01.06 WBEMP-FCP WBEM Provider for FC HBAs B.11.31.1403.04.
Prior to this release, all WBEM Providers executed in a privileged context. With the release of HP WBEM Services Version A.02.05.02 for HP-UX 11i v3, WBEM Providers will, by default, be invoked in the context of the user requesting an operation (i.e., “Run-As-Requestor”). This default setting can break backward compatibility for certain types of providers. This means that existing providers that run in the user context of the CIM Server can break.
• Disk space requirements HP WBEM Services requires the following disk space to install: / 5 MB /opt 46 MB /var 184 KB /usr 1 MB Depending on the number of CIM objects to be stored in the CIM Repository, additional disk space might be needed for the/var/opt/wbem directory. • Port requirements HP WBEM Services uses dedicated ports for CIM-XML traffic. Two ports are dedicated for CIM-XML communications between CIM clients and the CIM Server.
/opt/wbem/mof MOF files /opt/wbem/mx Reserved /opt/wbem/providers/lib Links to shared libraries for providers /opt/wbem/sbin Commands and executables that only root user can run /opt/wbem/share/man Manpages /var/opt/wbem Configuration files, CIM repository, log files, and so on IMPORTANT: Do not move these files from the default location. If these files are moved, it can result in problems in the functioning of the CIM Server. 5.
Running the CIM Server After installation, the HP WBEM Services CIM Server process (cimserver) is active. To restart it, first stop CIM Server with the cimserver -s command. Use the cimserver command, with no options to start the cimserver daemon on the system where the command is issued. Once the CIM Server has been installed, the CIM Server automatically starts as part of the system reboot process.
Table 4 Defects fixed in HP WBEM Services Version A.02.11.xx and A.02.09.xx Identifier Description Resolution Defects fixed in A.02.11.02 QXCR1001234327 The cimprovagt process crashes during shutdown. the cimprovagt process sometime Change is implemented in cimserver crashes when it is processing some request shutdown path to handle all the pending requests before shutting down. and when the cimserver shutdown operation is initiated. Defects fixed in A.02.11.
Table 4 Defects fixed in HP WBEM Services Version A.02.11.xx and A.02.09.xx (continued) Identifier Description Resolution QXCR1001103470 The StorageNative Provider module hangs when it is continuously enabled and disabled for one process, while EnumerateInstances is running for StorageNative Provider in another process. There is a race condition during the provider shutdown. This defect is fixed in the current release. A mutex has been added to ensure that the race condition does not occur.
Table 4 Defects fixed in HP WBEM Services Version A.02.11.xx and A.02.09.xx (continued) Identifier Description Resolution authentication is completed, the authentication created for connections that are token is not removed from /var/opt/wbem/ terminated before authentication is localauth file. completed. QXCR1001071978 When upgrading from HP-UX 11i v2 OS to This defect is fixed in the current release.
Table 4 Defects fixed in HP WBEM Services Version A.02.11.xx and A.02.09.xx (continued) Identifier Description Resolution QXCR1000873670 The manpage for the osinfo command does The manpage for the osinfo command not indicate that the /etc/opt/hp/ has been updated. sslshare/client.pem file is required for Client Based Authentication (CBA). QXCR1000914874 The cimmof and other WBEM client commands result in a core dump while accessing ICU libraries.
a possibility that the user ID (UID) and the group ID (GID) created for HP WBEM Services is already in use by other users. The duplication of user and group IDs results in a change in file ownership and can stop applications working correctly. IMPORTANT: This issue is only applicable for HP WBEM Services A.02.07 and later versions.
2 Documentation feedback HP is committed to providing documentation that meets your needs. To help us improve the documentation, send any errors, suggestions, or comments to Documentation Feedback (docsfeedback@hp.com). Include the document title and part number, version number, or the URL when submitting your feedback.
