Manualshelf

HP Systems Insight Manager 5.2 Update 2 Technical Reference Guide

ManualsBrandsHP ManualsSoftwareHP Systems Insight Manager for Linux
161162163164165166167168169170
Certificates
HP SIM allows secure and authorized management from the
Central Management Server
(CMS). User
authorizations for managed systems and the CMS can be configured, helping ensure that only authorized
users perform state-changing operations. Communication between the CMS, managed systems, and the
browser is secured using SSL and certificates, helping to authenticate systems and protect user credentials
and management data.
A new SSL certificate is created during CMS initialization that is used as a client credential in
Web-Based
Enterprise Management
(WBEM) requests (instead of the CMS certificate). To authenticate using the WBEM
certificate, select Use certificate instead in the WBEM settings section of the System Protocol Settings
page. See “Setting protocols and credentials for a system or groups of systemsfor more information. To
configure the WBEM certificate, use the Configure or Repair Agents task. See “Windows CMS” for more
information.
NOTE: The WBEM client certificate authentication feature is only supported on HP-UX systems, that have
WBEM Services 2.5 installed for HP SIM.
Related procedures
Configuring the system link
Configuring sign-in events
Changing the HP SIM default SSL port
Setting protocols and credentials for a system or groups of systems
Windows CMS
HP-UX and Linux CMS
Related topics
Server certificates
Trusted certificates
Possible certificate errors
Users and authorizations
About login
About secure task execution
About login
Single Login
Single Login
allows a link within an HP Systems Insight Manager (HP SIM) page to establish an authenticated
browser session to a
managed system
that supports Single Login without requiring
users
to re-enter their user
names and passwords. However, if you are trying to establish an authenticated browser session with another
instance of HP SIM running on another system, you must re-enter your user name and password. Single Login
links exist wherever there is a link to another system.
NOTE: HP SIM is the initial point of authentication, and browsing to another managed system must be
from within HP SIM.
If you browse to a managed system using any method other than the links within HP SIM, Single Login is
not supported, and you are required to enter the appropriate user name and password for each managed
system. Managed systems must be set up to trust an HP SIM system before accepting a Single Login command.
Trust is set up at the system by importing the HP SIM system certificate into the Trusted Management Servers
List of the system. See “Setting up trust relationshipsfor more information.
162 Networking and security