HP Integrity rx5670 Windows Integrity nPartition Guide - Page 22

Remote management via IPMI, Authentication and authorization issues, Local management

Get HP Integrity rx5670 PDF manuals and user guides View all HP Integrity rx5670 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 22 highlights

Introduction Choosing a management mode Remote management via IPMI Some of the advantages of remote management via IPMI are: • Simple installation: install all components onto a remote management station and you are ready to manage all complexes in the data center. • Allows a complex to be managed even if no nPars are currently configured in the complex. • Allows all complexes in the data center to be managed from a single management station. Some of the disadvantages of remote management via IPMI are: • Does not allow configuration of specific nPartitions to be controlled by use of the nPartition Config Privilege option (all users logging in via remote IPMI will have configuration privileges for all nPartitions in the complex). • Requires the additional login step of providing the MP hostname/address and IPMI password in order to connect to the MP remotely. • IPMI/LAN connections are slightly less secure than remote WBEM connections (using SSL). For this reason, HP recommends that the network connection between the management station and the MP be on a private network. Remote management via WBEM Some of the advantages of remote management via WBEM are: • Secure HTTPS/SSL connection between the remote management station and the nPartition. • Allows configuration of specific nPartitions to be controlled by use of the nPartition Config Privilege option (users can be restricted to configuration of certain nPartitions). • Allows all complexes in the data center to be managed from a single management station. Some of the disadvantages of remote management via WBEM are: • Requires at least one nPar to be configured already and booted to Windows (or other OS) and running the WBEM/WMI nPartition Provider. • Requires copying SSL certificates from the nPartition to the management station's trusted certificate store (currently not automated, but a series of manual steps). • Requires the additional login step of providing a username and password for the remote nPartition being connected to. Authentication and authorization issues A list of the authentication and authorization issues associated with each of the management modes and connection methods follows. Local management Authentication issues associated with the local management mode include: 22 Chapter 1

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
Introduction
Choosing a management mode
Chapter 1
22
Remote management via IPMI
Some of the advantages of remote management via IPMI are:
Simple installation: install all components onto a remote management station and
you are ready to manage all complexes in the data center.
Allows a complex to be managed even if no nPars are currently configured in the
complex.
Allows all complexes in the data center to be managed from a single management
station.
Some of the disadvantages of remote management via IPMI are:
Does
not
allow configuration of specific nPartitions to be controlled by use of the
nPartition Config Privilege option (all users logging in via remote IPMI will have
configuration privileges for all nPartitions in the complex).
Requires the additional login step of providing the MP hostname/address and IPMI
password in order to connect to the MP remotely.
IPMI/LAN connections are slightly less secure than remote WBEM connections
(using SSL). For this reason, HP recommends that the network connection between
the management station and the MP be on a private network.
Remote management via WBEM
Some of the advantages of remote management via WBEM are:
Secure HTTPS/SSL connection between the remote management station and the
nPartition.
Allows configuration of specific nPartitions to be controlled by use of the nPartition
Config Privilege option (users can be restricted to configuration of certain
nPartitions).
Allows all complexes in the data center to be managed from a single management
station.
Some of the disadvantages of remote management via WBEM are:
Requires at least one nPar to be configured already and booted to Windows (or other
OS) and running the WBEM/WMI nPartition Provider.
Requires copying SSL certificates from the nPartition to the management station’s
trusted certificate store (currently not automated, but a series of manual steps).
Requires the additional login step of providing a username and password for the
remote nPartition being connected to.
Authentication and authorization issues
A list of the authentication and authorization issues associated with each of the
management modes and connection methods follows.
Local management
Authentication issues associated with the local management mode include: