YOGGIE YOGGIE MANAGEMENT SERVER Technical Information Page 255
- Page / 536
- Table of contents
- TROUBLESHOOTING
- BOOKMARKS
Rated. / 5. Based on customer reviews
Chapter 7. HMC security and user management 237
7.2 Overview and status
The overview and status window displays the following information about the secure system
manger server:
Whether the secure system manager server is configured
Whether the private key for this system manager server is installed
Whether this system is configured as a Certificate Authority
7.2.1 Certificate Authority (CA)
Define one HMC as a Certificate Authority (CA) to generate keys and certificates for your
HMC servers and clients.
A Certificate Authority verifies the identities of the HMC servers to ensure secure
communications between clients and servers. To define a system as a Certificate Authority,
you must be logged in as the hscroot user at the machine being defined as the internal
Certificate Authority. This procedure defines a system as an internal Certificate Authority for
HMC security and creates a public key ring file for the Certificate Authority that you can
distribute to all of the clients that access the HMC servers.
A wizard guides you through configuring the Certificate Authority.
After you define the internal Certificate Authority, you can use the CA to create the private key
ring files for the HMCs that you want to manage remotely. Each HMC server must have its
private key and a certificate of its public key signed by a Certificate Authority that is trusted by
the HMC clients. The private key and the server certificate are stored in the server’s private
key ring file. There is an option to copy the private key ring files to a diskette so you can install
them on your servers.
7.2.2 Server Security
This option allows you to install the private key ring file that you have copied to diskette from
the HMC server that is acting as the Certificate Authority.Once you have copied the private
key file, there is another option to configure the HMC as a secure server so that secure,
remote clients can be used to remotely manage the HMC.
There is a remote client available for download from the HMC itself. It is called the
Web-based System Management remote client, and there is a Windows based version and a
Linux based version. To run in secure mode, a second file needs to be downloaded to the
client. This is also available for download from the HMC.
To download the Web-based System Management remote client to your Windows based or
Linux based PC, type in the following address from your Web Browser:
hostname/remote_client.html
Here, hostname is the name of the HMC you are downloading the Web-based System
Management remote client from. You choose whether you want the Windows based version
or the Linux based version.
Note: You cannot perform the following function using a remote client.
- Logical Partitions on 1
- System i5 1
- May 2006 3
- Second Edition (May 2006) 4
- Contents 5
- Contents v 7
- Contents vii 9
- Trademarks 12
- Become a published author 15
- Comments welcome 15
- Summary of changes 17
- Introduction to LPAR on IBM 19
- Perm 20
- Desired I/O 21
- Disaster Recovery 22
- System Profiles 22
- Americas 22
- Asia/Pacific 22
- 1.2.2 Licensing requirements 23
- 1.3.3 Dedicated processor 30
- 1.3.4 Shared processor 31
- 1.3.7 Virtual processor 33
- OK to add virtual processors 37
- 1.4.1 Memory granularity 43
- 1.4.2 Memory and LPAR 44
- 1.4.3 Hardware page table 44
- 2.1 Console history 50
- (ASYNC) or LAN 51
- 2.4.1 Model 520/550 CEC 53
- 2.4.2 Model 570 CEC 53
- 2.5.1 Model 520/550 CEC 54
- 2.5.2 Model 570 CEC 54
- Configure your Linux product 59
- System Manager Security 59
- HMC overview and planning 63
- 3.1.2 Types of HMC 65
- Rack mounted HMC 66
- 3.2 Installing the HMC 68
- 3.3 HMC networking options 71
- 3.3.4 Open networking 73
- 3.4.1 Terminal menu 74
- 3.4.2 Net menu 75
- 3.4.3 Lock menu 76
- (Figure 3-17) 77
- 3.5 Server and partition 78
- System profiles 79
- System properties - General 80
- Create Partition Profile 92
- Open Terminal Window 93
- Connecting, then the 94
- Connecting, then the sign 96
- Enter the name and press OK 97
- Restart Partition 104
- Shut Down Partition 105
- Partition properties - Other 114
- 3.5.4 HMC configuration 115
- Test network connectivity 116
- Schedule operations 116
- Customize date and time 116
- View console events 116
- Customize network settings 116
- 3.6.1 Problem determination 117
- 3.6.3 Service Focal Point 118
- Repair serviceable event 119
- Manage Serviceable Event 120
- Install/add/remove/hardware 121
- Exchange parts 121
- Service utilities 121
- 3.6.4 Remote support 122
- HMC Guided Setup 123
- 4.1 HMC Guided Setup 124
- Set up the language locale 125
- about to make 153
- Post Guided Setup tasks 155
- 5.1.1 System profiles 158
- 5.1.2 Partition profiles 158
- GroupID (Figure 5-5) 164
- 5.2.5 Partition profile name 165
- 5.2.6 Partition memory 166
- 5.2.7 Partition processors 167
- (Figure 5-12) 171
- Location codes 174
- 5.2.10 Virtual IO adapters 175
- Creating Virtual IO Adapters 176
- Virtual Serial 177
- Virtual SCSI 178
- Load source 180
- Operation console device 182
- Using the HMC as the console 183
- Specifying console resource 184
- Alternate console 186
- 5.2.12 Opticonnect 187
- Working with the HMC 195
- 6.1 Accessing LPAR functions 196
- 6.2.1 Partition properties 197
- Hardware 199
- Virtual Adapters 200
- Settings 201
- Reference Code 201
- Processors 203
- Physical I/O 205
- Tagged I/O resources 206
- Virtual I/O resources 207
- Opticonnect 207
- Power Controlling 207
- 6.4.1 Physical adapters 213
- 6.4.2 Processors 214
- 6.4.3 Memory 215
- 6.4.4 Virtual IO adapters 215
- Properties 216
- Retry MSD IPL 218
- 6.5.5 Deleting a partition 219
- Deleting a partition profile 220
- IOP control storage dump 221
- 6.6 Remote management 223
- SSH client 224
- Example SSH command 225
- 6.6.1 Web SM 226
- 6.8.1 HMC Code Update 230
- 6.9 Troubleshooting 231
- No Connection state 232
- Incomplete state 233
- Recovery state 233
- 6.9.3 List of progress codes 234
- 6.9.4 Using progress codes 235
- Reset SP with ASMI 243
- Reset SP with reset button 244
- Getting fixes 245
- HMC fixes 246
- Operating system fixes 249
- FRU SVCPROC-replace SP 250
- HMC security and user 253
- 7.1 System Manager Security 254
- 7.2.2 Server Security 255
- 7.3.1 HMC Users 256
- Service Representative 257
- Product Engineer 257
- AllSystemResources 260
- HMC duplication and 263
- Migration of existing LPAR 269
- 9.1 Migration planning 270
- 9.1.4 Bus numbering 271
- 9.1.9 Order the System i5 273
- 9.2.1 Load V5R3 273
- 9.2.3 iSeries Navigator 273
- 9.4 Migration scenarios 274
- Resources 286
- (Figure 9-27) 291
- (Figure 9-29) 292
- 9.4.3 Post sales tasks: IBM 294
- Figure 9-35 HMC window 296
- Figure 9-36 HMC window 296
- 9.5 Backing up HMC profiles 297
- Using the Advanced Systems 301
- Management Interface 301
- 10.2.1 Types of ASMI 302
- Table 10-1 Default 303
- User ID Password 303
- 10.3.1 Power/restart control 305
- System operating mode 306
- AIX/Linux partition mode boot 306
- Auto power restart 308
- Immediate power off 308
- System reboot 309
- Wake on LAN 309
- 10.3.2 System service aids 310
- Error/event logs 311
- Serial port snoop 312
- System dump 312
- Service processor dump 313
- Partition Dump 314
- Serial port setup 315
- Modem configuration 315
- Call-Home/Call-In Setup 315
- Call-Home Test 316
- Reset service processor 316
- 10.3.3 System information 317
- Vital product data 318
- Power control network trace 319
- Progress indicator history 320
- Real-Time Progress indicator 321
- System configuration 322
- System name 323
- Processing unit identifier 323
- Configure I/O enclosures 324
- Identify enclosure 325
- Turn off indicator 325
- Change settings 325
- Time of day 326
- Firmware update policy 326
- PCI error injection policy 327
- Interposer Plug Count 328
- HSL Opticonnect Connections 328
- I/O Adapter Enlarged Capacity 329
- Hardware Management Consoles 329
- Processor deconfiguration 331
- Memory deconfiguration 333
- Program vital product data 335
- System brand 335
- System keywords 336
- System enclosures 337
- Service indicators 338
- System attention indicator 338
- Enclosure indicators 339
- Indicators by location code 340
- Lamp test 340
- 10.3.4 Network services 341
- Type of IP address 342
- Network access 344
- 10.3.5 Performance setup 345
- Logical memory block size 346
- 10.3.6 On demand utilities 347
- CoD order information 348
- CoD activation keys 349
- CoD commands 350
- Control panel 351
- IDE Device Control 352
- 10.3.8 Login Profile 354
- Retrieve login audits 355
- Change default language 356
- Update Installed languages 357
- Chapter 11. OpenSSH 359
- Chapter 11. OpenSSH 343 361
- Figure 11-3 HMC Users 362
- Figure 11-4 HMC User Add 362
- Figure 11-7 363
- Figure 11-8 Qp2term 364
- Chapter 11. OpenSSH 347 365
- Figure 11-11 SSH Key 365
- Figure 11-13 SSH to HMC 366
- Chapter 11. OpenSSH 349 367
- Figure 11-14 Mkauthkeys 367
- Figure 11-16 strqsh 368
- Example 11-1 Systemname 368
- Chapter 11. OpenSSH 351 369
- Figure 11-18 systemname 369
- Chapter 11. OpenSSH 355 373
- Figure 11-24 wrkjobscde 373
- Figure 11-25 addjobscde 373
- FelixComplex 374
- SixteenProcs partition 379
- Chapter 11. OpenSSH 363 381
- Figure 11-40 io-add histlog 381
- Chapter 11. OpenSSH 365 383
- Figure 11-49 387
- Using Work Management to 389
- Thread affinity 392
- Virtual Partition Manager 395
- System i5 systems 396
- Figure 13-2 Main menu 402
- Change Partition 408
- Configuration display 408
- Work with System 418
- Partitions 418
- Recover configuration data 421
- Virtual console access 433
- Firmware maintenance 439
- HMC console 441
- HMC Websm Client 441
- To format the DVD-RAM media 446
- 14.2.1 Firmware overview 458
- In-band firmware overview 459
- Out-of-band firmware overview 460
- HMC Access Password Reset 481
- Using Advanced System 481
- Management Interface (ASMI) 481
- Figure 15-1 ASMI main page 483
- Figure 15-2 ASMI main menu 484
- HMC command list 491
- HMC CLI introduction 492
- HMC CLI commands by name 494
- HMC CLI commands by category 495
- Creating LPARs 496
- Listing LPAR properties 497
- Getting the LPAR state 497
- Modifying LPAR properties 497
- Activating a partition 498
- Using a soft partition reset 498
- Using a hard partition reset 498
- Deleting an LPAR 498
- Physical I/O slots 499
- Creating an LPAR profile 501
- Deleting an LPAR profile 502
- Working with system profiles 503
- Listing hardware resources 504
- HMC CLI command usage 505
- List dumps (lsdump) 511
- HMC CLI command attributes 512
- OS/400 partitions 518
- This attribute is 518
- AIX/Linux partitions 521
- Glossary 525
- Numerics 527
- (1.0” spine) 533
- 0.875”<->1.498” 533
- 460 <-> 788 pages 533
© 2020, manymanuals.com. All rights reserved. | 1.230 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals