Secure Shell (SSH) in HP SIM

ManualsBrandsHP ManualsSoftwareHP Systems Insight Manager for Linux

The OpenSSH install package can run from the HP SIM download or management CD, or

you can download

separately from the HP SIM website.

After you have run

the installer, the system must be configured for access by HP SIM. Either

run the Configure or Repair Agents tool on the systems, specifying the administrator or other

account to be used by SSH;

perform

the following steps:

Add t

he user used by HP SIM to the

passwd

file using the sshuser utility on the managed

system. (The example here shows user MyDomain

MyAdmin.)

sshuser

–

u MyAdmin

–

d MyDomain

–

"C:

Program Files

OpenSSH

etc

passwd"

Ens

ure t

he user

an explicit member of the local administrators group,

because

domain

groups are not checked by OpenSSH. If a domain user is used,

and it is not already a

member of this group,

add the user to

Administrators

net localgroup administrators

MyDomain

MyUser /add

Ensure that t

he command completed successfully.

The

mxagentconfig

command

should

be run on the CMS to configure public key authentication for the administrator user

mxagentconfig

n <managed system>

u administrator



Using the ProLi

ant Support Pack

OpenSSH can be installed as part of software and firmware updating using a ProLiant

support pack

by selecting

Deploy



Deploy Drivers, Firmware and agents



Install ProL

iant

support pack install

If you are using a Windows Operating System, Op

en SSH can be

installed through

Configure and Repair Agents

by selecting

Configure



Configure or repair

agents



Install openssh.

This installs the SSH server but does not configur

e SSH for access

from the CMS. Follow the

Separate OpenSSH Install to configure

the HP SIM user and keys.

Linux or HP

UX managed systems normally have SSH installed and running.

For details on enabling

SSH, s

ee the operating system

documentation

. SSH must still be configured for access by the CMS

user. Either use the Configure or R

epair Agents tool or run

mxagentconfig

command

to enable

public key access for the root user:

mxagentconfig

n <

managed system

u root

Enter the root user password when asked.

After completing these steps

, install and configure

SSH for use by

using

the

standard HP SIM tools,

which run as root or Administrator.

Other users might also need to be configured for SSH access, including any user who run

a custom

command or a tool that does not include an execute

user statement and any user name that is

pecified in an execute

user statement. If

you want to configure

additional users

you must add

these users to the

passwd

file on the managed system using sshuser (for Windows only), and run

mxagentconfig

to enable access by the CMS.

Configuration Opti

ons

The

following

steps configure the CMS and managed system to run SSH tasks as the Windows

Administrator (which might be renamed from Administrator) or as root, using public key user

authentication.

The following

options

might be useful in your environme

nt:

When managing Linux or HP

UX systems and using tools that run as a user (rather than as root), it

might be convenient to use host

based authentication.

This is not as useful on Windows because each user must still be added to the

passwd

file.

Note t

hat

the root user needs specific user public key authentication

because

host

based authentication is not

supported for root or Administrator.

mxagentconfig

n <managed system>

u root

–

o host