Disable http for security reasons, Connection monitoring – Brocade Communications Systems 53-1001778-01 User Manual

Page 27

Advertising
background image

Brocade SMI Agent User’s Guide

11

53-1001778-01

Disable HTTP for security reasons

2

Verifying that the SLP service is correctly installed and operating

1. Start the SLP service and SMI-A.

2. Open a command prompt via Start > Programs > Accessories > Command Prompt.

3. Change to the directory where slpd.bat is located:

cd C:\<SMIAgent>\agent\bin

4. Verify that the SLP service is properly running as a Service Agent.

> slptool findsrvs service:service-agent

5. Verify that the SLP service is properly advertising its WBEM services:

> slptool findsrvs service:wbem

6. Verify that the SLP service is properly advertising its WBEM SLP template over its configured

Client Protocol Adapters. Note: Change the IP Address:Port to those displayed by slptool
findsrvs service:wbem

> slptool findattrs service:wbem:http://192.168.0.100:5988
> slptool findattrs service:wbem:https://192.168.0.100:5989

Disable HTTP for security reasons

If security or mutual authentication is enabled, you might want to disable the unsecure HTTP
protocol, leaving only the secure HTTPS enabled. There are two ways to enable and disable the
HTTP protocol:

Use the SMI-A Configuration Tool (see

“Configuring HTTP access”

on page 24).

Use the command-line scripts packaged by the SMI-A installer.
The SMI-A installer packages the scripts DeleteXMLProtocolAdapter to permanently disable the
HTTP port used by the SMI-A and CreateXMLProtocolAdapter to enable the HTTP port again.
These scripts can be found in the following directory:

<SMIAgent>/agent/bin

Connection monitoring

The SMI-A handles connection monitoring for the connection to the proxy switch. Whenever there is
a connection failure to the proxy switch, by default the SMI-A automatically tries to reconnect to the
proxy switch 5 times with a wait time of 90 seconds between each retry. This process is repeated
every 30 minutes until the connection is reestablished to the proxy switch.

NOTE

The actual time between each retry is the 90-second wait time plus the retry time (the time spent
on reestablishing the connection to the proxy switch). The retry time is beyond the SMI Agent’s
control.

These default values of 5 retries, 90-second sleep interval between retries, and 30 minutes
between each retry process are all configurable through the
Brocade_ConnectionMonitoringService and through instances of Brocade_ConnectionMonitor.
These values are not configurable through the SMI-A installer or configuration tool.

Advertising
Popular Brands
Popular manuals