Manualshelf

Windows Integrity nPartition Guide

ManualsBrandsHP ManualsServerHP Integrity rx2600 Server
21222324252627282930
Introduction
Choosing a management mode
Chapter 1
23
Authentication implemented solely by the OS login to the nPartition (the account
used to login to Windows on the nPartition where the tools are run).
In the case of Partition Manager (a web application), you are asked for login
credentials when first accessing an SMH or Partition Manager web page (either
locally or from a remote browser).
The credentials you provide are the same as the OS credentials used to login to the
nPartition directly (for example, in Windows, you would use your local or domain
Windows account to login to SMH).
Authorization issues associated with the local management mode include:
Authorization is based on the OS authorization “group” that the account used to login
belongs to.
In Windows, if the login account is a member of the local or domain “Administrators”
group, you are given full permission to view and modify nPartition configurations.
Accounts that do not belong to the local or domain Administrators group are given
read-only access to the nPar tools.
If the nPartition Config Privilege option is enabled for the complex, users logging into
a given nPartition with full privileges are only able to modify the configuration of
that nPartition. All other nPartition configurations are read-only for them.
HP SMH lets you grant read-only and read/write permissions to any OS group. Only
Windows Administrators are automatically given full permissions. Other groups
must be configured in SMH on the local nPartition, in order to give those groups
read-only or read/write permissions (applies to Partition Manager only – when using
the nPartition Commands, the rule is this: Administrators have full access, and all
other authenticated accounts have read-only access).
Remote management via IPMI
Authentication issues associated with the remote via IPMI management mode include:
You must first login to the local OS in order to access the tools (however local OS
permissions do not apply when using the remote modes of the nPar tools).
Next, you must specify a remote MP hostname/IP address and IPMI password in
order to make the remote IPMI connection to the MP.
Authorization issues associated with the remote via IPMI management mode include:
Since there is only one remote IPMI account (which is fixed as “Admin”, and therefore
not specified in the tools) and password, this account always has full (read/write)
access to all nPartition configurations in the complex.
The nPartition Config Privilege setting has no affect when using remote IPMI to
manage the complex (users logged in via remote IPMI have full access to all
nPartitions, regardless of the current nPartition Config Privilege setting.
Remote management via WBEM
Authentication issues associated with the remote via WBEM management mode include:
You must first login to the local OS in order to access the tools (however local OS
permissions do not apply when using the remote modes of the nPar tools).