Ip binding, Trust modes, Ip binding trust modes – HP Integrity rx4640 Server User Manual

Page 66

Advertising
background image

The following is an example of how IPLIST is formatted:

122.23.44.1-122.23.44.255;172.84.100.35;172.168.10.5;168.172.10.1-168.172.10.128

IP Address Exclusion

Perform the IP address restricted command as follows:

smhconfig -e|--ip-restricted-exclude [=] IPLIST

The following is an example of how IPLIST is formatted:

122.23.44.1-122.23.44.255;172.84.100.35;172.168.10.5;168.172.10.1-168.172.10.128

NOTE:

IPv4 and IPv6 address ranges are supported.

Currently, IPv4 address ranges are supported.

IP Binding

IP binding provides HP SMH the ability to listen only to the addresses configured in the IP binding list. If IP
binding is enabled and the IP binding list is empty, HP SMH will only be accessible locally.

Perform the IP binding command as follows:

smhconfig -g|--ip-binding [=] True | False

IP binding list

Use the following command to configure the IP binding list to be used when IP binding is

enabled.

smhconfig -I|--ip-binding-list [=] IPBINDLIST

IPBINDLIST

must be a list of semicolon-separated IP addresses and/or IP address/netmask pairs.

The following is an example of how IPBINDLIST is formatted:

172.24.31.10/255.255.255.0;128.88.236.189/255.255.255.0;172.25.86.69/255.255.0.0

Trust Modes

The HP SMH trusts HP SIM (HP SIM) or HP Insight Manager 7 7 (IM 7) secure task execution requests and
single sign on requests with various levels of security, ranging from trust all to only trust HP SIM or HP Insight
Manager 7 7 with trusted certificates:

Trust All

This command sets up the http server to accept all secure task execution requests and single

sign on requests from any HP SIM or HP Insight Manager 7 7 server:

smhconfig -t|--trustmode [=] TrustByAll

Trust By Name

This command sets up the HP SMH to only accept secure task execution requests and

single sign on requests from the listed HP SIM or HP Insight Manager 7 7 servers:

smhconfig -t|--trust-mode [=] TrustByName

To configure the trusted servers name list for the TrustByName trust mode, use the following command:

smhconfig -X|--xenamelist [=] XENAMELIST

XENAMELIST

is a list of the HP SIM or HP Insight Manager 7 7 servers that trust, using a comma or

semicolon as a delimiter. The following is an example of the name list format:

server1,server2.domain1;server3,server4.domain2

Trusted Certificates

This command establishes the trust relationship between HP SIM or HP Insight

Manager 7 7 and the HP SMH using the certificate. The trust mode is set to TrustByCert using the
following command:

smhconfig -t|--trustmode [=] TrustByCert

A trusted certificate is added to the trusted certificate list using the following command:

smhconfig -C|--trust-certificate [=] FILE

FILE

is the name of the file containing the base 64 encoded certificate to be added to the trusted

certificate list.

66

Command Line Interface Configuration

Advertising
This manual is related to the following products:

Integrity rx7620 Server, Integrity BL870c Server-Blade, Integrity rx2660 Servers, Integrity rx2600 Servers, Integrity rx2800 i2 Server, Integrity rx8620 Server, Integrity rx6600 Server, Integrity rx2620 Servers, System Management Homepage-Software, Integrity rx1620 Servers, Integrity rx7640 Server, Integrity rx8640 Server, Integrity Superdome sx2000 Server, Systems Insight Manager, Integrity rx3600 Server, Integrity BL870c i2 Server-Blade, Integrity BL860c i2 Server-Blade, Integrity Superdome sx1000 Server, Integrity BL860c Server-Blade, Integrity rx5670 Server

Popular Brands
Popular manuals