Manualshelf

Virtual TapeServer 6.04.02.01 for NonStop Servers Release Notes

ManualsBrandsHP ManualsServerHP NonStop G-Series
12345678910
Resolved Issues and Enhancements | 3
Resolved Issues and Enhancements
The following changes have been incorporated into the software since the 6.04.02 release.
comForte SSH now supported when connecting to host systems for EMS using
TACL. comForte SSH can now be configured for each EMS host. (TL-3361)
Before configuring EMS, log in to each Nonstop for which comForte SSH will be used for
EMS. Log in as the "bill" account from the VTS system and verify that the fingerprint
presented is correct. When the fingerprint is accepted, the Nonstop's key is stored in VTS
and compared during subsequent logins. If the key does not match, EMS will not log in. (A
key mismatch can occur because the key has been changed on the Nonstop or because a
"man in the middle" exploit is being attempted which could be used to obtain login
credentials.)
The key is stored in /home/bill/.ssh/known_hosts, and this file can be edited to remove
lines for Nonstop hosts whose key is known to be changed. Manually logging in to the
Nonstop as bill and accepting the new key is needed after the obsolete key has been
removed.
Care should be taken to properly accept keys from remote hosts to prevent security
breaches.
Then, complete these steps to configure comForte SSH for EMS:
a. On the EMS Configuration page, enable EMS and configure general settings as
described in the EMS chapter of the Virtual TapeServer Installation Guide.
b. Define the EMS hosts that identify the NonStop servers for which an SSH session will
be established. Complete the steps in the installation guide.
Select SSH from the Protocol drop-down list. When changing the protocol, the
Host Port field will be updated to the default value for that protocol.
In the Host Port field, specify the target SSH port on the NonStop server. By
default, SSH runs on port 22. To identify the SSH port on the NonStop server,
refer to the PORT parameter in the SCF IN file that defines the SSH process.
c. Update the values in the Service Answer, Password Prompt, Login Successful, and
Host and Virtual Devices sections as necessary as described in the EMS chapter of the
Virtual TapeServer Installation Guide. (The Service Prompt, Login User Prompt,
Login User Answer, and Login Password fields are unused at this time but must still
have a value.)
The Service Answer field is used to specify the service used on the remote host.
“TACL” is the only supported value.
The Login Password Prompt field is the string returned from the host in response
to an SSH connection and can be entered as a regular expression.
The Login Successful field is the response returned from the host once a login has
successfully completed and the host is ready to receive input.
d. Save the configuration.