Home » HP Manuals » Storage Devices » HP MSA 1040 » Manual Viewer

HP MSA 1040 HP MSA 1040 SMU Reference Guide (762784-001, March 2014) - Page 165

Installing a security certificate

Add to My Manuals
Save this manual to your list of manuals

Page 165 highlights

Installing a security certificate The storage system supports use of unique certificates for secure data communications, to authenticate that the expected storage systems are being managed. Use of authentication certificates applies to the HTTPS protocol, which is used by the web server in each controller module. As an alternative to using the CLI to create a security certificate on the storage system, you can use FTP to install a custom certificate on the system. A certificate consists of a certificate file and an associated key file. The certificate can be created by using OpenSSL, for example, and is expected to be valid. If you replace the controller module in which a custom certificate is installed, the partner controller will automatically install the certificate file to the replacement controller module. To install a security certificate 1. In SMU, prepare to use FTP: a. Determine the network-port IP addresses of the system's controllers; see "Changing network interface settings" (page 48). b. Verify that the system's FTP service is enabled; see "Changing management interface settings" (page 40). c. Verify that the user you will log in as has permission to use the FTP interface; see "Modifying users" (page 44). 2. Open a Command Prompt (Windows) or a terminal window (UNIX) and navigate to the directory that contains the certificate files. 3. Enter: ftp controller-network-address For example: ftp 10.1.0.9 4. Log in as a user that has permission to use the FTP interface. 5. Enter: put certificate-file-name cert-file where certificate-file-name is the name of the certificate file for your specific system. 6. Enter: put key-file-name cert-key-file where key-file-name is the name of the security key file for your specific system. 7. Restart both Management Controllers to have the new security certificate take effect. Installing a security certificate 165

Section	Page
Contents	3
Figures	9
Tables	11
Getting started	13
Configuring and provisioning a new storage system	13
Browser setup	13
Signing in	13
Tips for signing in and signing out	14
Tips for using the main window	14
Tips for using the help window	15
System concepts	15
About user accounts	15
Related topics	16
About vdisks	16
Related topics	17
About spares	17
Sparing rules for heterogeneous vdisks	18
Related topics	18
About volumes	18
Related topics	19
About hosts	19
About volume mapping	20
Related topics	20
About volume cache options	21
Using write-back or write-through caching	21
Optimizing read-ahead caching	21
Related topics	22
About managing remote systems	22
Related topics	22
About the Snapshot feature	22
Related topics	24
About the Volume Copy feature	25
Related topics	26
About the Remote Snap replication feature	26
About the VDS and VSS hardware providers	26
About the Storage Replication Adapter (SRA)	26
About RAID levels	26
About size representations	28
Related topics	29
About the system date and time	29
Related topics	29
About storage-space color codes	29
About Configuration View icons	30
About disk failure and vdisk reconstruction	30
About data protection in a single-controller storage system	31
About managed logs	31
Related topics	32
About performance monitoring	32
About firmware update	33
Configuring the system	35
Using the Configuration Wizard	35
Step 1: Starting the wizard	35
Step 2: Changing default passwords	35
Step 3: Configuring network ports	35
Step 4: Enabling system-management services	36
Step 5: Setting system information	37
Step 6: Configuring event notification	37
Step 7: Configuring host ports	38
Step 8: Confirming configuration changes	39
Installing a license	39
Configuring system services	40
Changing management interface settings	40
Configuring email notification	41
Configuring SNMP notification	42
Configuring syslog notification	42
Configuring user accounts	43
Adding users	43
Modifying users	44
Removing users	45
Configuring system settings	46
Changing the system date and time	46
Changing host interface settings	46
Changing network interface settings	48
Setting system information	48
Configuring advanced settings	49
Changing disk settings	49
Configuring SMART	49
Configuring dynamic spares	49
Configuring drive spin down for available disks and global spares	49
Scheduling drive spin down for all disks	50
Configuring the EMP polling rate	50
Changing system cache settings	50
Changing the synchronize-cache mode	50
Changing the missing LUN response	51
Controlling host access to the system’s write-back cache setting	51
Changing auto-write-through cache triggers and behaviors	51
Configuring partner firmware update	52
Configuring system utilities	52
Configuring background scrub for vdisks	52
Configuring background scrub for disks not in vdisks	52
Configuring utility priority	53
Enabling/disabling managed logs	53
Configuring remote systems	53
Adding a remote system	53
Deleting remote systems	54
Configuring a vdisk	54
Managing dedicated spares	54
Changing a vdisk’s name	55
Changing a vdisk’s owner	55
Configuring drive spin down for a vdisk	55
Configuring a volume	56
Changing a volume’s name	56
Changing a volume’s cache settings	56
Configuring a snapshot	56
Changing a snapshot’s name	56
Configuring a snap pool	57
Changing a snap pool’s name	57
Provisioning the system	59
Using the Provisioning Wizard	59
Step 1: Starting the wizard	59
Step 2: Specifying the vdisk name and RAID level	59
Step 3: Selecting disks	60
Step 4: Defining volumes	60
Step 5: Setting the default mapping	61
Step 6: Confirming vdisk settings	61
Creating a vdisk	61
Deleting vdisks	62
Managing global spares	62
Creating a volume set	63
Creating a volume	63
Deleting volumes	64
Changing default mapping for multiple volumes	65
Explicitly mapping multiple volumes	65
Changing a volume’s default mapping	66
Changing a volume’s explicit mappings	67
Unmapping volumes	68
Expanding a volume	68
Creating multiple snapshots	68
Creating a snapshot	69
Deleting snapshots	70
Resetting a snapshot	70
Creating a volume copy	71
Aborting a volume copy	72
Rolling back a volume	73
Creating a snap pool	74
Deleting snap pools	74
Adding a host	74
Removing hosts	75
Changing a host’s name or profile	75
Changing host mappings	75
Configuring CHAP	76
Modifying a schedule	77
Deleting schedules	78
Using system tools	79
Updating firmware	79
Updating controller-module firmware	79
Updating expansion-module firmware	80
Updating disk firmware	81
Using the activity progress interface	81
Saving logs	83
Resetting a host port	83
Rescanning disk channels	84
Restoring system defaults	84
Clearing disk metadata	84
Restarting or shutting down controllers	85
Restarting	85
Shutting down	86
Testing notifications	86
Expanding a vdisk	87
Verifying a vdisk	87
Scrubbing a vdisk	88
Removing a vdisk from quarantine	88
Expanding a snap pool	90
Checking links to a remote system	90
Checking local system links	90
Resetting or saving historical disk-performance statistics	91
Resetting historical disk-performance statistics	91
Saving historical disk-performance statistics	91
Viewing system status	93
Viewing information about the system	93
System properties	93
Enclosure properties	94
Disk properties	94
Vdisk properties	95
Volume properties	96
Snap-pool properties	96
Snapshot properties	96
Schedule properties	96
Configuration limits	97
Licensed features	97
Version properties	97
Viewing the system event log	98
Viewing information about all vdisks	99
Viewing information about a vdisk	100
Vdisk properties	100
Vdisk performance	101
Disk properties	102
Volume properties	103
Snap-pool properties	103
Viewing information about a volume	104
Volume properties	104
Mapping properties	105
Schedule properties	105
Replication addresses	106
Replication images	107
Viewing information about a snapshot	107
Snapshot properties	107
Mapping properties	108
Schedule properties	108
Viewing information about a snap pool	109
Snap-pool properties	109
Volume properties	110
Snapshot properties	110
Viewing information about all hosts	110
Viewing information about a host	110
Host properties	110
Mapping properties	111
Viewing information about an enclosure	111
Enclosure properties	111
Disk properties	112
Disk performance	113
Power supply properties	114
Fan properties	115
Controller module properties	115
Controller module: network port properties	116
Controller module: FC host port properties	116
Controller module: iSCSI host port properties	117
Controller module: SAS host port properties	118
Controller module: expansion port properties	118
Controller module: CompactFlash properties	119
Drive enclosure: I/O module properties	119
I/O module: In port properties	119
I/O module: Out port properties	120
Viewing information about a remote system	120
Using Remote Snap to replicate volumes	121
About the Remote Snap replication feature	121
Replication process overview	121
Replication actions	123
Performing initial replication locally or remotely	124
Criteria for selecting a vdisk to contain a secondary volume	124
Remote replication disaster recovery	125
Remote replication licensing	126
Related topics	126
Using the Replication Setup Wizard	127
Step 1: Starting the wizard	127
Step 2: Selecting the primary volume	127
Step 3: Selecting the replication mode	128
Step 4: Selecting the secondary volume	128
Step 5: Confirming replication settings	128
Replicating a volume	129
Replicating a snapshot	131
Removing replication from a volume	131
Suspending replication	132
Resuming a suspended replication	132
Aborting replication	132
Detaching a secondary volume	132
Stopping a vdisk	133
Starting a vdisk	134
Reattaching a secondary volume	134
Exporting a replication image to a snapshot	135
Changing the primary volume for a replication set	135
Viewing replication properties, addresses, and images for a volume	137
Replication properties	137
Replication addresses	138
Replication images	138
Viewing information about a remote primary or secondary volume	138
Replication properties	138
Replication addresses	138
Replication image properties	139
Viewing information about a replication image	139
Replication status properties	139
Primary volume snapshot properties	139
Secondary volume snapshot properties	139
Support and other resources	141
Contacting HP	141
Subscription service	141
Product advisories	141
Related information	141
Typographic conventions	142
Documentation feedback	143
SNMP reference	145
Supported SNMP versions	145
Standard MIB-II behavior	145
Enterprise traps	145
FA MIB 2.2 SNMP behavior	146
External details for certain FA MIB 2.2 objects	151
External details for connUnitRevsTable	151
External details for connUnitSensorTable	152
External details for connUnitPortTable	153
Configuring SNMP event notification in SMU	153
SNMP management	153
Enterprise trap MIB	154
FA MIB 2.2 and 4.0 differences	156
Using FTP	157
Downloading system logs	157
Transferring log data to a log-collection system	158
Downloading historical disk-performance statistics	159
Updating firmware	160
Updating controller-module firmware	160
Updating expansion-module firmware	162
Updating disk firmware	163
Installing a license file	164
Installing a security certificate	165
Using SMI-S	167
Embedded SMI-S array provider	167
SMI-S implementation	168
SMI-S architecture	168
About the MSA 1040 SMI-S provider	168
SMI-S profiles	169
Block Server Performance subprofile	170
CIM	170
Supported CIM operations	170
CIM Alerts	170
Life cycle indications	171
SMI-S configuration	172
Listening for managed-logs notifications	173
Testing SMI-S	173
Troubleshooting	173
Administering a log-collection system	175
How log files are transferred and identified	175
Log-file details	175
Storing log files	176
Glossary	177