HP Integrity rx2800 System Management Homepage User Guide - Page 50

1 Trust by Certificate 4 Server Certificate Name 7 Remove Sets HP SMH to accept configuration changes only from HP SIM servers with trusted certificates. This mode requires the submitted server to provide authentication by means of certificates. This mode is the strongest method of security because it requires certificate data and verifies the digital signature before 5 allowing access. If you do not want to enable remote configuration changes, leave 6 Trust by Certificate selected, and leave the list of trusted systems empty by not importing certificates. When a server certificate name is entered, it checks if the server name: 8 • Is valid (a maximum of 64 characters) • Contains invalid characters • Is already in the list Add Add the server name to the list. Server Certificate Name Enable All Checks all checkboxes in the listings. Removes the selected server names from the list. Apply Records the registers in to the XML configuration file. This is the default behavior on Linux Itanium. HP strongly recommends using this option because it is more secure. 2 Trust by Name Sets HP SMH to accept configuration changes only from servers with HP SIM names designated in the Trust By Name field. For example, you might use this option if you have a secure network with two groups of administrators in two divisions. It prevents one group from installing software to the wrong system. This option verifies only the HP SIM server that you designate. HP strongly recommends using the Trust by Certificate option because the other options are less secure. 3 Trust all Sets HP SMH to accept specific configuration changes from systems. For example, you could use the Trust All option if you have a secure network, and everyone in the network is trusted. HP strongly recommends using the Trust by Certificate option because the other options are less secure. 50 The Settings Page