Home » HP Manuals » Storage Devices » HP XP20000/XP24000 » Manual Viewer

HP XP20000/XP24000 HP StorageWorks XP24000/XP20000 Remote Web Console User Gui - Page 12

Overview of Audit Logs, HP StorageWorks

View all HP XP20000/XP24000 manuals

Add to My Manuals
Save this manual to your list of manuals

Page 12 highlights

Disable privilege is set for a Storage Partition Administrator, and this privilege cannot be changed. A storage administrator with the Enable privilege can do the following: ◦ Perform data encryption operations using the VLL window. See the HP StorageWorks XP24000/XP20000 Virtual LVI/LUN (VLL) and Volume Shredder User Guide. ◦ Back up and restore the encryption key using the Encryption window. See the HP StorageWorks XP24000/XP20000 Disk Encryption User Guide. • Storage Administrator role. This role has storage operation privileges. Specify either Enable or Disable for each user account. The Enable privilege is set for the administrator user account. The administrator user account has Modify privileges for the operations of all program products. A storage administrator with the Enable privilege can do the following; however, a storage partition administrator with the Enable privilege can perform only operations using some (not all) program products: ◦ Perform operations using the Set Env. dialog box. ◦ Download and restore the environment parameter list. ◦ Perform operations using program products. Select either the Modify or View privilege for each program product. Modify is required to perform operations using the program product. For details on program products, see "Go Menu" (page 53). Overview of Audit Logs The Audit Log function allows you to record the access and configuration changes made to your storage system. The audit log can be used to investigate when an incorrect setup is performed or when a problem occurs in the storage system. You can view the audit log by one of the following methods: • Transferring the audit log to FTP servers • Transferring the audit log to syslog servers • Downloading the audit log to the Remote Web Console computer You can download two files with different formats to the Remote Web Console computer. The file that has the same format as the audit log transferred to syslog servers is called the syslog file. The file that has the same format as the audit log transferred to FTP servers is called the audit log file. Figure 2 (page 13) shows an overview of the audit log transfer operations. 12 About Remote Web Console Operations

Section	Page
XP24000/XP20000 Remote Web Console User Guide	1
Contents	3
1 About Remote Web Console Operations	7
Overview of Remote Web Console	7
Remote Web Console GUI	7
CFL Extension	8
Remote Web Console Features	8
User Access Levels	9
User Types	9
Operation Privileges	10
Overview of Audit Logs	12
Overview of Configuration File Loader Operations	13
Overview of SSL-Encrypted Communications	14
Encryption Function Enhancement (Solution to the Year 2010 Encryption Problem)	14
The Year 2010 Encryption Problem	15
Single Sign-on from HP Systems Insight Manager	15
Important Terms and Concepts	16
2 Installation Requirements and Procedures	18
System Requirements	18
Requirements for Windows	18
Requirements for UNIX	21
Setting Up Remote Web Console	22
Configuring the Web Browser	22
Configuring Remote Web Console over a Firewall	23
Configuring Java	23
JRE 1.4	23
JRE 5.0 or JRE 6.0	24
Configuring Communications over only IPv6	27
Remote Web Console Conventions	29
General Parameters	29
Keystrokes and Navigation	30
UNIX	31
Windows Server 2003/2008 Initial Setup	32
Starting Up and Logging In to Remote Web Console	34
Overview of Login Procedures	35
Permission for Accessing Local Client Files	36
Logging In to a Storage System	38
Using SSL-Encrypted Communication	39
Using Windows Server 2003/2008	41
Changing Between View Mode and Modify Mode	41
Extending the Modify Mode Timeout Period	42
License Keys	43
Temporary Key	43
Permanent Key	44
Term Key	44
Emergency Key	45
Licensed Capacity	45
Estimating Licensed Capacity Based on Used Capacity	46
Estimating Licensed Capacity Based on Mounted Capacity	47
Remote Web Console Options and Licensed Capacity	47
3 Using the Remote Web Console GUI	50
Common Elements of the Remote Web Console Main Windows	50
File Menu	52
Go Menu	53
Help Menu	54
Icons	55
License Key Window	56
License Key List	58
License Install Box	60
License Status Box	61
Identity Window	61
Device Information	62
LDEV Information	63
Number of LDEVs	65
Port Status Window	66
Alerts Window	67
Detail Dialog Box	69
Account Window	70
Login Message Window	71
Syslog Window	72
Audit Log Transfer Window	74
Audit Log Setting Window	76
Encryption Window	77
E-mail Information Window	77
Configuration File Loader Window	79
Reports Display Dialog Boxes	81
Common Elements	81
Port Dialog Box	82
LUN Dialog Box	84
LDEV Dialog Box	85
LDEV Status Dialog Box	87
XP Thin Provisioning Dialog Box	89
Connected Host Dialog Box	89
Detail Information Dialog Box	90
Tool Panel	91
Control Panel	92
Set Env. Dialog Box	92
Download Dialog Box	94
Restore Dialog Box	95
4 Performing Remote Web Console Operations	97
Enabling and Disabling Remote Web Console Options	97
Enabling Options Using a License Key Code	97
Enabling Options Using a License Key File	98
Enabling Options Automatically	99
Enabling or Disabling a License	99
Disabling Remote Web Console Options	100
Launching the Desired Option	100
Managing the User Accounts	101
Registering New Users	101
Changing User Passwords	102
Changing User Operation Privileges	103
Enabling or Disabling User Accounts	103
Deleting Users	104
Reporting SIMs by Email	104
Configuring Settings for Email Notice	104
Sending a Test Email	105
Setting the Environment Parameters	106
Downloading the Configuration Files	106
Restoring Backups of the Configuration Files	107
Downloading Trace Files Using the FD Dump Tool	110
Using Configuration File Loader	111
Exporting a Spreadsheet	112
Editing the Spreadsheet	112
Importing the Spreadsheet	114
Registering and Deleting the Certificates of HP Systems Insight Manager	115
Importing a Tool Definition File into HP Systems Insight Manager	115
Registering the Certificates of HP Systems Insight Manager	116
Deleting the Certificates of HP Systems Insight Manager	117
5 Using the CFL Extension	119
Overview of the CFL Extension	119
CFL Extension Operations	119
Preparing for Using CFL Extension	120
Requirements for CFL Extension	121
Installing CFL Extension	121
Installing JRE with Support for Additional Languages	121
Changing the Java Security Policy	122
Creating a User Authentication File	122
Modifying a Batch File	123
Notes on Using CFL Extension	124
Command Reference	124
CFLCHK Command	125
CFLGET Command	125
CFLSET Command	126
Spreadsheets	127
Spreadsheet File Conventions	127
Spreadsheet Components	128
Declaration	128
Operation Tags	128
Parameters	129
Comments	129
Common Operation Tags	129
SerialNumber Tag	129
Execution Results	130
6 Troubleshooting	132
General Troubleshooting	132
General Error Conditions and Recommended Actions	132
CFL Extension Error Conditions and Recommended Actions	137
Clearing Cache of Java and Web Browsers	138
Calling HP Technical Support	138
7 Support and Other Resources	139
Related Documentation	139
Conventions for Storage Capacity Values	140
HP Technical Support	140
Subscription Service	140
HP Websites	140
Documentation Feedback	141
A Audit Logs for Single Sign-On	142
BASE Function – Certificate Import Operation	142
BASE Function – Delete Certificate Operation	142
BASE Function – Login Operation	143
BASE Function – SSO Authentication Operation	143
BASE Function – SSO SetOneTimeKey Operation	143
B Error Codes for Single Sign-On	145
Glossary	146

Match case Limit results 1 per page

Disable

privilege is set for a Storage Partition Administrator, and this privilege cannot be

changed.

A storage administrator with the

Enable

privilege can do the following:

◦

Perform data encryption operations using the VLL window. See the

HP StorageWorks

XP24000/XP20000 Virtual LVI/LUN (VLL) and Volume Shredder User Guide

◦

Back up and restore the encryption key using the Encryption window. See the

StorageWorks XP24000/XP20000 Disk Encryption User Guide

•

Storage Administrator role. This role has storage operation privileges. Specify either

Enable

Disable

for each user account. The

Enable

privilege is set for the administrator user account.

The administrator user account has Modify privileges for the operations of all program products.

A storage administrator with the

Enable

privilege can do the following; however, a storage

partition administrator with the

Enable

privilege can perform only operations using some (not

all) program products:

◦

Perform operations using the Set Env. dialog box.

◦

Download and restore the environment parameter list.

◦

Perform operations using program products. Select either the

Modify

View

privilege

for each program product.

Modify

is required to perform operations using the program

product. For details on program products, see

“Go Menu” (page 53)

Overview of Audit Logs

The Audit Log function allows you to record the access and configuration changes made to your

storage system. The audit log can be used to investigate when an incorrect setup is performed or

when a problem occurs in the storage system.

You can view the audit log by one of the following methods:

•

Transferring the audit log to FTP servers

•

Transferring the audit log to syslog servers

•

Downloading the audit log to the Remote Web Console computer

You can download two files with different formats to the Remote Web Console computer. The file

that has the same format as the audit log transferred to syslog servers is called the syslog file. The

file that has the same format as the audit log transferred to FTP servers is called the audit log file.

Figure 2 (page 13)

shows an overview of the audit log transfer operations.

About Remote Web Console Operations