5 managing virtual machines, Task: vmm security properties – HP Insight Control Software for Linux User Manual
Page 20
5 Managing virtual machines
Making a backup of the virtual machine management database
You must perform a backup of the VMM database enable recovery of the configuration files/data
if the application crashes.
Make a backup of the following two registry entries:
Installation Key
HKEY_LOCAL_MACHINE\SOFTWARE\HP\Insight Control virtual machine management
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\HP\Insight Control virtual
machine management
Uninstallation Key
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\HP
Insight Control virtual machine management_is1
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\HP
Insight Control virtual machine management_is1
NOTE:
If the machine is 64 bit, these entries will be at 32–bit space and 64–bit space.
Additionally, the VMM requires that you make a backup of these files:
•
[ProdDir]/log
•
[ProdDir]/bin/hpglobal.conf
•
[ProdDir]/bin/hpvmm.conf
•
[ProdDir]/clientapi/bin/hpvmm.conf
•
[HPSIM]/hpvmm.conf
•
[ProdDir]/bin/windows/hpvmmsvc.conf
•
[ProdDir]/bin/windows/hpvmmweb.conf
•
[ProdDir]/lib/vmtoolstrust.ks
•
[ProdDir]/../VMMTemplateLib
For these files, ProdDir is the VMM installation directory and HP SIM is the HP SIM installation
directory
Task: VMM security properties
Because VMM runs with administrative permissions, it is important to ensure that the management
server is from protected unauthorized access.
VMM supports the following ciphers for encrypted SSL connection:
1.
•
SSL_RSA_WITH_RC4_128_MD5
•
SSL_RSA_WITH_RC4_128_SHA
•
TLS_RSA_WITH_AES_128_CBC_SHA
2.
Insight Control virtual machine management uses Systems Insight Manager generated self-signed
certificates. In order to communicate with vCenter Server on HTTPS, you must enforce
host/vCenter certificate validation for performing any operation on the host. By default, VMM
does not enforce host certificate validation. To enforce the host/vCenter certificate, you must
20
Managing virtual machines