Manualshelf

A.05.80 HP Insight Remote Support Advanced and Remote Device Access Security Overview (October 2012)

ManualsBrandsHP ManualsSoftwareHP Insight Remote Support Advanced Software
21222324252627282930
Security Overview
Chapter 2: HP Insight Remote Support Advanced
How Do I Know That I Am Connecting to HP?
You may have concerns, especially during this transition time, that RSC and RSSWM are actually
connecting to HP and not an impostor. Both RSC and RSSWM use SSL with certificates that can be
verified by VeriSign. Both clients verify the HP data center certificates using either the VeriSign
Certification Authority (CA) or the HP Class 2 CA certificate. Both certificates are shipped with the RSC
and RSSWM software. This protects RSC and RSSWM from DNS and IP address spoofing attacks.
How Do I Verify Connectivity to Each Data Center?
The sections below define procedures for verifying connectivity to the Remote Support and Remote
Support Software Management data centers.
Remote Support data center
If the IP addresses were configured in the firewall, connectivity for the RSC can be verified as follows:
With a web browser on the CMS/host device, connect to the following URLs. The response should be a
version number, for example: 5.80.0.117. Note that on rare occasions a system may not be accessible
due to periodic maintenance and upgrade.
l https://rsdc-pro1-services1.austin.hp.com/version/
l https://rsdc-pro2-services1.austin.hp.com/version/
If a URL rule was configured in the firewall, verify connectivity by sending a test event. Execute the
following command from the RemoteSupport\bin directory:
C:\Program Files (x86)\HP\RemoteSupport\bin> iseeinterfaces.exe -send_suppo
rt_information -test_event9F0C94C1-5515-4328-A6C4-CE68FA7A103C
A successful run will return a globally unique identifier (GUID) as shown in the example. Any other return
value is a failure.
Levels of Data Collection
Data collection levels are a set of non-deterministic guidelines to help categorize the deployment models
and potential services enabled by deployment of tools. Four levels are currently defined:
l Device Discovery (Level 0):
Determine if an endpoint device is reachable across the network. For example, ICMP ECHO and
ECHO REPLY messages and traceroute probes are used to determine network reachability. No
credentials are required for this type of probing.
l Identity Collection (Level 1):
Utilize network protocol such as SNMP to properly identify an endpoint device manufacturer, model
and serial number. Public credentials such as SNMP community strings are used for probing the
managed devices.
l Configuration Collection (Level 2):
HP Insight Remote Support Advanced and Remote Device Access (A.05.80)Page 26 of 97