HP 3PAR StoreServ 7200 2-node Installation And Setup Manual
  1. Manuals
  2. Brands
  3. HP Manuals
  4. Storage
  5. 3PAR StoreServ 7200 2-node
  6. Installation and setup manual

HP 3PAR StoreServ 7200 2-node Installation And Setup Manual

Hp 3par policy server installation and setup guide (qr483-96004, december 2012)
Hide thumbs Also See for 3PAR StoreServ 7200 2-node:
Table of Contents

Advertisement

Quick Links

See also: Administrator's Manual , Service Manual
HP 3PAR Policy Server Installation and Setup
Guide
Abstract
This guide is intended to be used as a reference when installing and configuring HP 3PAR Policy Server. It contains
administration-level information and some user configuration information for the Policy Server.
HP Part Number: QR483-96004
Published: December 2012

Advertisement

Table of Contents
loading

Related Manuals for HP 3PAR StoreServ 7200 2-node

Summary of Contents for HP 3PAR StoreServ 7200 2-node

  • Page 1 HP 3PAR Policy Server Installation and Setup Guide Abstract This guide is intended to be used as a reference when installing and configuring HP 3PAR Policy Server. It contains administration-level information and some user configuration information for the Policy Server. HP Part Number: QR483-96004 Published: December 2012...
  • Page 2 © Copyright 201 1, 2012 Hewlett-Packard Development Company, L.P. Portions of this document are based on material copyrighted by Axeda Corporation © 2012. All rights reserved. Axeda is a registered trademark of Axeda Corporation. Confidential computer software. Valid license from HP required for possession, use or copying. Consistent with FAR 12.21 1 and 12.212, Commercial Computer Software, Computer Software Documentation, and Technical Data for Commercial Items are licensed to the U.S.

  • Page 3: Table Of Contents

    Contents 1 Introduction....................4 2 HP 3PAR Policy Server and the HSQL Database..........5 Security...........................5 User Authentication......................5 HP 3PAR Policy Server Connections..................6 How HP 3PAR Policy Server Works..................7 Essentials for Working with HSQL Database................9 3 Preparation for Installation.................10 Software Requirements......................10 Policy Server Components .......................11 Login Requirements ........................11 Flash 1 1 Requirement.......................11 Configuration Information......................11...

  • Page 4: Introduction

    1 Introduction This document guides you through the steps of installing HP 3PAR Policy Server. After you have installed a new Policy Server, see the HP 3PAR Policy Server Administration Guide for information about starting the Policy Server components (if you did not start them at the end of installation), setting up user security, configuring asset groups and policies, backing up and restoring the Policy Server database, and troubleshooting Tomcat.

  • Page 5: Hp 3Par Policy Server And The Hsql Database

    2 HP 3PAR Policy Server and the HSQL Database HP 3PAR Policy Server (Policy Server or HP3PS) provides a solution that is designed to ensure only authorized access to, and use of, assets that are running Agent gateways or Policy Agents. Policy Server is a server-based application that resides on your network.

  • Page 6: Hp 3Par Policy Server Connections

    available: View and Add/Edit. For the Audit Log component, only the View privilege is available. For the Remote (Sessions) component, the two privileges are View and End. View provides read-only access to the pages of a component, while Add/Edit provides read, write, and delete access to the pages and features of the component.

  • Page 7: How Hp 3Par Policy Server Works

    Figure 1 HP 3PAR Policy Server configured to manage policies How HP 3PAR Policy Server Works The HP 3PAR Enterprise Server can send commands to Agent gateways and Policy Agents and receive responses to those commands. A command is typically a request to perform an action, such as uploading a file, setting the value of a data item, restarting the Agent, or executing a package.
  • Page 8 sends a message to Policy Server requesting approval and a message to the Enterprise Server saying that it is requesting approval. When an Agent requests permission to perform an action, Policy Server sends an e-mail notification to the specified Policy Server user(s). Once the Policy Server users are informed of a requested action;...

  • Page 9: Essentials For Working With Hsql Database

    Figure 2 Three assets under HP 3PAR Policy Server management Essentials for Working with HSQL Database The HSQL database server provides a standalone, open source, Java-based relational database to store and manage the Policy Server configurations. For more information about HSQLDB v2.2, refer to the documentation list at http://www.hsqldb.org/doc/2.0.

  • Page 10: Preparation For Installation

    3 Preparation for Installation This chapter explains what you need to know and do before running the Policy Server installer. If you are installing Policy Server for the first time, read through all of the following sections and collect the information you need. For information about silent installations, see “Silent Mode Installation and Uninstallation ”...

  • Page 11: Policy Server Components

    Policy Server Components The HP 3PAR Policy Server consists of three components: Policy Server, HSQL database, and OpenDS directory server, which all must be installed on the same system. Keep the following information in mind: Installing the Policy Server components includes Policy Server (server and Web-based application), Apache Tomcat, and optionally the appropriate Java Runtime Environment (JRE) for Policy Server.
  • Page 12 SSL (HTTPS) - SSL encryption is strongly recommended for communications between your Policy Server and the Policy Agents and Agent gateways running on assets. This will require that a Certification Authority certificate is generated. Before running the installer, make sure of the following: ◦...

  • Page 13: Installation

    4 Installation This chapter assumes that you have read “Preparation for Installation” (page 10) and collected the information needed to install Policy Server. You can use either the GUI mode version of the installer (recommended), described in “Installing Policy Server Using the GUI-Mode Installer” (page 13), or the console mode version, described in “Installing Policy Server in Console Mode”...
  • Page 14 NOTE: This port will be disabled in the post-installation instructions (described later in this document). In the E-mail Server screen, type the URL for your outgoing e-mail server (for example, mailServer.myCompany.com), and then click Next to display the System Error Notification Settings screen, shown here: 10.
  • Page 15 12. In the SSL Configuration screen, do the following: In the Enter the HTTPS listening port field, keep the default HTTPS listening port (8443). In the Keystore field, type the path to the certificate keystore file on the machine. For example, type c:\hp-3par\keystore-ps.
  • Page 16 16. Review your installation selections. If necessary, click Previous to return to previous screens and change the selections. 17. Click Install. You will see a progress bar while the installer copies the files to the machine. The installer also displays the following message while it installs, configures, and starts the OpenDS directory server: You may see additional messages while it installs the database and Policy Server;...

  • Page 17: Post-Installation Tasks

    5 Post-Installation Tasks To complete the HP 3PAR Policy Server installation, you must take additional steps before the Policy Server can be used by a Service Processor. The following tasks must be completed before you configure a Service Processor to use this Policy Server: Enable SSL for the Policy Server.

  • Page 18: Updating Policy Server Policies

    Updating Policy Server Policies Now that the Policy Server is up and running, the policies must be updated. To update the policies, use a supported web browser and connect to port 8443 by using the following URL: https://<policy_server_host>:8443 When you are connected to the Policy Server, you will be presented with a login screen. Sign in as the admin user.
  • Page 19 Figure 8 Start Remote Application For the Start Remote Application policy, configure to ask for approval. Figure 9 Start Remote Terminal Figure 10 Stop Remote Application NOTE: This policy is new for HP 3PAR Policy Server. Figure 1 1 Modify Ping Update Figure 12 Scripts Figure 13 Emails Updating Policy Server Policies...

  • Page 20: Changing Passwords

    Figure 14 Data Item Values, Events, and Alarms Figure 15 Restart Agent Figure 16 Execute Figure 17 Timers Changing Passwords This procedure is optional. For more information about how to change user passwords, see “Changing Default Passwords” (page 26). Post-Installation Tasks...

  • Page 21: Support And Other Resources

    6 Support and other resources Contacting HP Before You Contact HP Be sure to have the following information available before you call contact HP: Technical support registration number (if applicable) Product serial number Product model name and number Product identification number Applicable error message Add-on boards or hardware Third-party hardware or software...

  • Page 22: Customer Self Repair

    Customer self repair HP products are designed with many Customer Self Repair parts to minimize repair time and allow for greater flexibility in performing defective parts replacement. If during the diagnosis period HP (or HP service providers or service partners) identifies that the repair can be accomplished by the use of a Customer Self Repair part, HP will ship that part directly to you for replacement.

  • Page 23: Documentation Feedback

    7 Documentation feedback HP is committed to providing documentation that meets your needs. To help us improve the documentation, send any errors, suggestions, or comments to Documentation Feedback (docsfeedback@hp.com). Include the document title and part number, version number, or the URL when submitting your feedback.

  • Page 24: A Silent Mode Installation And Uninstallation

    A Silent Mode Installation and Uninstallation Currently, you can perform silent installations on Windows machines only. The installation package for HP 3PAR Policy Server is an InstallAnywhere installer. Keep in mind that if you are not using the default port for the OpenDS directory server (389), you will need to edit the OpenDS configuration file before starting the services.

  • Page 25: B Starting And Stopping Policy Server Manually

    B Starting and Stopping Policy Server Manually If you did not install Policy Server as a service or daemon and need to start and stop it manually, use the following procedures. Starting Policy Server Components Manually These instructions assume that you did not install the Policy Server and HSQL database as services. NOTE: Due to limitations of Tomcat, the directory server MUST be running during startup or shutdown of Policy Server.

  • Page 26: C Changing Default Passwords

    C Changing Default Passwords During the installation of the HP 3PAR Policy Server, three users are created, each with a default password. These users (and passwords) are: Policy Server Administrator (password: admin) LDAP Directory Administrator (password: ou=admin [cn=directory manager,cn=root dns,cn=config]) Policy Server Database Manager (password: ADMIN) The Policy Server uses the LDAP Directory Administrator user to access the LDAP directory and uses the Policy Server Database Manager to access the database server.

  • Page 27: Changing The Ldap Directory Administrator Password

    Changing the LDAP Directory Administrator Password Stop the HP 3PAR Policy Server. On the server that is running HP 3PAR Policy Server, open a command prompt, and then use the following procedure to change the LDAP Directory Administrator’s password. NOTE: The LDAP Directory Server does not need to be stopped.
  • Page 28 Start Policy Server. Changing Default Passwords...

  • Page 29: D Configuring Service Processors To Use Policy Server

    D Configuring Service Processors to Use Policy Server Service Processors must be configured to use HP 3PAR Policy Server. Only Service Processors that are running SP version 4.1 and later are supported. Use the CPMAINT utility to reconfigure the Policy Server. From the SP command line, log in to CPMAINT.

  • Page 30: E Configuring The Policy Sever For Ssl By Using An Existing Certificate Infrastructure

    E Configuring the Policy Sever for SSL by Using an Existing Certificate Infrastructure For environments that have an existing certificate infrastructure, configuring the Policy Sever for SSL requires the following procedures: Create a Certificate Signing Request (CSR). Using the CSR, have a Certificate Authority (CA) create an SSL certificate for the server. Install the new certificate in the Policy Server keystore.
  • Page 31 Create a certificate from the CSR that you just created. For example, on system with an OpenSSL CA: Using a secure method, such as the scp command for network transfer or physical media (such as a USB drive or CDROM), transfer the tomcat.csr file to the system where the OpenSSL CA was created.
  • Page 32 Install the new certificate and CA certificate in the Policy Server keystore file: Transfer both the new certificate (tomcat.crt) and the OpenSSL CA certificate (cacert.crt) to the Policy Server server. Install both certificates in the Policy Server keystore file. SSL Certificate: C:\Program Files (x86)\HP 3PAR\PolicyServer\jre\bin>keytool -import -trustcacerts -alias tomcat -file c:\hp-3par\tomcat.crt -keystore c:\hp-3par\heystore-ps...
  • Page 33 Comment out the non-SSL configuration section in lines 78 to 81 by adding the text in line 76 (begin comment) and line 82 (end comment), as shown in the following figure. Then, save the file. 76<!-- Disable non-SSL port <Connector port="443" maxHttpHeaderSize="8192" protocol="org.apache.coyote.http11.Http11Protocol"...

  • Page 34: F Installing Policy Server In Console Mode

    F Installing Policy Server in Console Mode The installation program for Policy Server runs in console mode as well as GUI mode. The console mode installer prompts you for the same information and in the same order as the GUI-mode installer.
  • Page 35 12. When prompted for the SSL information, provide the following information: HTTPS listening port – Press ENTER to keep the default port (8443). Keystore – Type the location of the certificate keystore file on the machine. Key PassPhrase – Type the passphrase used when creating the certificate keystore file. Then, type it again when prompted to confirm the Key PassPhrase.

This manual is also suitable for:

3par storeserv 7400 2-node3par storeserv 7400 4-node

Table of Contents