Manualshelf

HP Command View for Tape Libraries v.3.7 SMI-S Provider Installation Instructions (390736-009, December 2013)

ManualsBrandsHP ManualsStorageHP StorageWorks ESL 712e 712 Slot Ultrium Library
891011121314151617
</MESSAGE>
</CIM>
Response
<?xml version="1.0" encoding="utf-8"?>
<CIM CIMVERSION="2.0" DTDVERSION="2.0">
<MESSAGE ID="1000" PROTOCOLVERSION="1.0">
<SIMPLERSP>
<IMETHODRESPONSE NAME="DeleteInstance">
</IMETHODRESPONSE>
</SIMPLERSP>
</MESSAGE>
</CIM>
SSL support
By default, SSL is enabled with the Command View TL Provider. The Provider uses an SSL server-side
certificate to enable clients to securely communicate with the SMI-S server. A self-signed certificate
(myserver.cert) is packaged with the Command View TL Provider. The certificate is located in the
following directory:
<Command View TL Install dir>\op-cimom
The certificate can be replaced with a different certificate by the administrator. Retain the certificate
name (myserver.cert). A client that wants to use SSL must copy the certificate from <Command
View TL Install dir>\op-cimom and put it into its trust store.
A trust store is a repository of trusted certificates that are recognized by the client program. When the
SMI-S certificate is trusted by a client program, the client communicates with the SMI-S server using
SSL. SSL helps secure the client server communication by providing clients with the ability to authenticate
the entity claiming to be the SMI-S server, and also by protecting the integrity of the transmitted data.
Port occupation
During installation of Command View TL, the installer checks if the standard cimom ports (https:5989
and http:5988) are already used by another service. If not then CIMOM will be configured to these
standards ports (https:5989 and http:5988). In case these ports are being already used by other
application/service then any free port starting from 60000 are check. Any port that is free is used to
configur the CIMOM. Unlike older version ( CXWS CIMOM ) the user should NOT configure/modify
any file. Once the installation is complet users can open the file op-cimom\cimserver_planned.conf to
see http and https ports configured for use.
Enabling SSL
Enabling authentication will also enable SSL port (https) . The server certificate is stored in the cimom
install location.
<Command View TL Install dir>\op-cimom\myserver.cert
If the client applications is configured to certify the Pegasus CIMOM service then this file has to be
added to client applications trust store.
If the client is implemented using Java, complete the following procedure to issue the certificate:
1. Import the server certificate into the client trust store:
a. Copy the server certificate to the client system.
b. Use the Java keytool to import the certificate into the client trust store.
$ keytool -import -alias hpsmis -file myserver.cert -keystore
mytruststore
2. Enter a password at the prompt.
SSL support 15