Read the installation requirements to ensure that your system meets or exceeds the minimum requirements.
Read the Dell OpenManageServer Administrator Compatibility Guide. This document contains compatibility information about Dell OpenManage™ software installation and operation on various hardware platforms (systems) running supported Microsoft® Windows®, Novell® NetWare®, and Red Hat® Enterprise Linux operating systems.
Read the applicable Dell OpenManage readme files on the Dell OpenManage CDs or on the Dell™ support website at support.dell.com. These files contain the latest information about software, firmware, and driver versions, in addition to information about known issues. The installation readme_ins.txt file also contains a list of supported servers.
Read the installation instructions for your operating system.
Installation Requirements
The following sections describe the Dell OpenManage systems management software general requirements. Operating system-specific installation prerequisites are listed as part of the installation procedures.
Dell OpenManage systems management software runs, at a minimum, on each of the following operating systems:
Windows 2000 Server family (with SP3) — Includes Windows 2000 Server, Windows 2000 Advanced Server, and Windows 2000 Professional
Windows 2000 Small Business Server ([SBS] with SP1)
NOTE: Dell OpenManage IT Assistant is not supported on systems running Windows 2000 Small Business Server.
Windows Server™ 2003 family (with SP1) — Includes Standard, Web, and Enterprise editions)
Windows SBS 2003 SP1
NOTE: IT Assistant is not supported on systems running Windows SBS 2003 SP1.
Windows Server 2003 x64 — Includes Standard and Enterprise editions
NOTE: IT Assistant is not supported on systems running Microsoft Windows Server 2003 x64.
Red Hat Enterprise Linux (AS and ES) (version 3)
NOTE: Support for updated kernels released by Red Hat and for later versions of Red Hat Enterprise Linux may require the use of Dynamic Kernel Support (see "Dynamic Kernel Support (DKS)" for a description of this feature).
Red Hat Enterprise Linux (AS and ES) (version 3) for Intel® Extended Memory 64 Technology (Intel EM64T)
Red Hat Enterprise Linux (AS and ES) (version 4) for Intel x86
Red Hat Enterprise Linux (AS and ES) (version 4) for Intel EM64T
NetWare version 6.5 (SP2)
System Requirements
Dell OpenManage Server Administrator software must be installed on each system to be managed. You can then manage each system running Server Administrator locally or remotely through a supported Web browser.
A mouse, keyboard, and monitor to manage a system locally. The monitor requires a minimum screen resolution of 800 x 600. The recommended screen resolution setting is 1024 x 768.
The Server Administrator Remote Access Service requires that a remote access controller (RAC) be installed on the system to be managed. See the Dell Remote Access Controller 4 User's Guide and the Dell Remote Access Controller Installation and Setup Guide or the Dell Embedded Remote Access/MC Controller User's Guide for complete software and hardware requirements.
NOTE: The RAC software is installed as part of the Express Setup and Custom Setup installation options when installing managed system software from the Dell PowerEdge Installation and Server Management CD provided that the managed system meets all of the RAC installation prerequisites. See "Remote Access Service" and the Dell Remote Access Controller Installation and Setup Guide or the Dell Embedded Remote Access/MC Controller User's Guide for complete software and hardware requirements.
Remote Management System Requirements
One of the supported Web browsers to manage a system remotely from a graphical user interface (GUI).
A TCP/IP connection on the managed system and the remote system to facilitate remote system management.
A minimum screen resolution of 800 x 600. The recommended screen resolution setting is 1024 x 768.
Supported Web Browser Requirements
Internet Explorer 6.0 SP1 (Windows only)
Mozilla Firefox 1.0.1 (Windows and Red Hat Enterprise Linux)
Supported Systems Management Protocol Standards
A supported systems management protocol standard must be installed on the managed system before installing your management station or managed system software. On supported Windows operating systems, Dell OpenManage software supports these two systems management standards: Common Information Model/Windows Management Instrumentation (CIM/WMI) and Simple Network Management Protocol (SNMP). On supported Red Hat Enterprise Linux and NetWare operating systems, Dell OpenManage software supports the SNMP systems management standard.
NOTE: For information about installing a supported systems management protocol standard on your managed system, see your operating system documentation.
Table 3-1 shows the availability of the systems management standards for each supported operating system.
Table 3-1. Availability of Systems Management Protocol by Operating Systems
Operating System
SNMP
CIM/WMI
Supported Windows operating systems.
Available from the operating system installation media.
Always installed.
Supported Red Hat Enterprise Linux operating systems.
You must install the SNMP package provided with the operating system.
Unavailable.
Supported NetWare operating systems.
Always installed.
Unavailable.
Dependencies and Prerequisites
Upgrading from Dell OpenManage Software Versions 1.x, 2.x, and 3.x–4.2
Upgrades from Dell OpenManage software versions 1.x, 2.x, and 3.x through 4.2 are not supported. You must manually uninstall Dell OpenManage software versions 1.x, 2.x, and 3.x through 4.2 before launching the Dell OpenManage software installation. The installer will notify you if it detects Dell OpenManage software versions 1.x through4.2on the system. Another way of upgrading from these versions is to upgrade to version 4.3 first, then upgrade to the current version.
Configuring a Supported Web Browser
The following sections provide instructions for configuring the supported Web browsers.For a list of supported Web browsers, see "Supported Web Browser Requirements."
Configuring Internet Explorer to Connect to the Web-Based Interface
If you are connecting to a Web-based interface from a management station that connects to the Internet through a proxy server, you need to configure the Web browser to connect properly. If you are using Microsoft's Internet Explorer browser, follow these steps:
From the Internet Explorer main window, click Tools, and then click Internet Options.
From the Internet Options window, click the Connections tab.
Under Local Area Network (LAN) settings, click LAN Settings.
If the Use a proxy server box is selected, select the Bypass proxy server for local addresses box.
Click OK twice.
Configure other browsers for the same functionality.
Viewing Localized Versions of the Web-Based Interface
When using Internet Explorer or Netscape Navigator on systems running Windows, to view localized versions of the Web-based interface, do the following:
Open the Windows Control Panel and double-click the Regional Options icon.
Select the desired locale from the Your locale (location) drop-down menu.
Assigning User Privileges
To ensure critical system component security, you must properly assign user privileges to all Dell OpenManage software users before installing Dell OpenManage software.
The following sections provide step-by-step instructions for creating users and assigning user privileges for each supported operating system.
NOTICE: To protect access to your critical system components, you must assign a password to every user account that can access Dell OpenManage software.
Creating Users for Supported Windows Operating Systems
NOTE: You must be logged in with Administrator privileges to perform these procedures.
The following procedures create user accounts, assign user privileges, and add users to domains.
Creating Users and Assigning User Privileges for Supported Windows Server 2003 Operating Systems
NOTE: For questions about creating users and assigning user group privileges, or for more detailed instructions, see your operating system documentation.
Click the Start button, right-click My Computer, and point to Manage.
In the console tree, expand Local Users and Groups, and then click Users.
Click Action, and then click New User.
Type the appropriate information in the dialog box, select or clear the appropriate check
boxes, and then click Create.
NOTICE: You must assign a password to every user account that can access Dell OpenManage software to protect access to your critical system components. Additionally, users who do not have an assigned password cannot log into Dell OpenManage software on a system running Windows Server 2003 due to operating system constraints.
In the console tree, under Local Users and Groups, click Groups.
Click the group to which you want to add the new user: Users, Power Users, or
Administrators.
Click Action, and then click Properties.
Click Add.
Type the user name that you are adding and click Check Names to validate.
Click OK.
New users can log into Dell OpenManage software with the user privileges for their assigned group.
Creating Users and Assigning User Privileges for Supported Windows 2000 Operating Systems
NOTE: For questions about creating users and assigning user group privileges, or for more detailed instructions, see your operating system documentation.
Right-click My Computer and point to Manage.
In the console tree, expand Local Users and Groups, and then click Users.
Click Action, and then click New User.
Type the appropriate information in the dialog box, select or clear the appropriate check
boxes, and then click Create.
NOTICE: You must assign a password to every user account that can access Dell OpenManage software to protect access to your critical system components. Additionally, users who do not have an assigned password cannot log into Dell OpenManage software on a system running Windows Server 2003 because of operating system constraints.
In the console tree, under Local Users and Groups, click Groups.
Click the group to which you want to add the new user: Users, Power Users,
or Administrators.
Click Action, and then click Properties.
Click Add.
Click the name of the user you want to add, and then click Add.
Click Check Names to validate the user name that you are adding.
Click OK.
New users can log into Dell OpenManage software with the user privileges for their assigned group.
Adding Users to a Domain
NOTE: For questions about creating users and assigning user group privileges or for more detailed instructions, see your operating system documentation.
NOTE: You must have Microsoft Active Directory® installed on your system to perform the following procedures. See "Microsoft Active Directory" for more information about using Active Directory.
Click the Start button, and then point to Control Panel®Administrative Tools®Active
Directory Users and Computers.
In the console tree, right-click Users or right-click the container in which you want to add the
new user, and then point to New®User.
Type the appropriate user name information in the dialog box, and then click Next.
NOTICE: You must assign a password to every user account that can access Dell OpenManage software to protect access to your critical system components. Additionally, users who do not have an assigned password cannot log into Dell OpenManage software on a system running Windows Server 2003 due to operating system constraints.
Click Next, and then click Finish.
Double-click the icon representing the user that you just created.
Click the Member of tab.
Click Add.
Select the appropriate group and click Add.
Click OK, and then click OK again.
New users can log into Dell OpenManage software with the user privileges for their assigned group and domain.
Disabling Guest and Anonymous Accounts in Supported Windows Operating Systems
NOTE: You must be logged in with Administrator privileges to perform this procedure.
If your system is running Windows Server 2003, click the Start button, right-click
My Computer, and point to Manage.
If your system is running Windows 2000, right-click My Computer and point to Manage.
In the console tree, expand Local Users and Groups and click Users.
Click the Guest or IUSR_system name user account.
Click Action and point to Properties.
Select Account is disabled and click OK.
A red circle with an X appears over the user name. The account is disabled.
NOTE: Consider renaming the accounts so that remote scripts cannot enable the accounts using the name.
Creating Users for Supported Red Hat Enterprise Linux Operating Systems
Administrator access privileges are assigned to the user logged in as root. To create users with User and Power User privileges, perform the following steps.
NOTE: You must be logged in as root to perform these procedures.
NOTE: You must have the useradd utility installed on your system to perform these procedures.
Creating Users
NOTE: For questions about creating users and assigning user group privileges, or for more detailed instructions, see your operating system documentation.
Creating Users With User Privileges
Run the following command from the command line:
useradd -d home-directory -g groupusername
where group is notroot.
NOTE: If group does not exist, you must create it by using the groupadd command.
Type passwdusername and press <Enter>.
When prompted, enter a password for the new user.
NOTICE: You must assign a password to every user account that can access Dell OpenManage software to protect access to your critical system components.
The new user can now log in to Dell OpenManage software with User group privileges.
Creating Users With Power User Privileges
Run the following command from the command line:
useradd -d home-directory -g root username
NOTE: You must set root as the primary group.
Type passwdusername and press <Enter>.
When prompted, enter a password for the new user.
NOTICE: You must assign a password to every user account that can access Dell OpenManage software to protect access to your critical system components.
The new user can now log in to Dell OpenManage software with Power User group privileges.
Creating Users for Supported NetWare Operating Systems
NOTE: For questions about creating users and assigning user group privileges or for more detailed instructions, see your operating system documentation.
Creating Users With User Privileges
Log in with Administrator privileges.
Right-click the container in which you want to create a user account.
Click NEW and select USER.
Complete the required fields and click OK.
NOTICE: You must assign a password to every user account that can access Dell OpenManage software to protect access to your critical system components.
An icon labeled with the new user name appears in the current container.
Right-click the icon labeled with the new user name and click Trustees of this Object.
Select username.contextName and click Assigned Rights.
By default, three entries in the Assigned Rights category are available: Login Script, Print Job Configuration, and [All Attribute Rights].
Select Login Script, and enable the Read and Add Self fields.
Select Print Job Configuration, and enable the Read and Add Self fields.
Select All Attribute Rights, and enable the Read and Add Self fields.
New users can now log into Dell OpenManage software with User privileges.
Creating Users With Power User Privileges
Log in with Administrator privileges.
Right-click the container in which you want to create a user account.
Click NEW and select USER.
Complete the required fields and click OK.
NOTICE: You must assign a password to every user account that can access Dell OpenManage software to protect access to your critical system components.
An icon labeled with the new user name appears in the current container.
Right-click the icon labeled with the new user name and click Properties.
Click NDS Rights.
Select username.contextName and click Assigned Rights.
Click Add Property.
Select ACL and click OK.
Enable the Read and Write fields by putting a check mark in the check box.
Click OK.
New users can now log into Dell OpenManage software with Power User privileges.
Creating Users With Administrator Privileges
Log in with Administrator privileges.
Right-click the container in which you want to create a user account.
Click NEW and point to USER.
Complete the required fields and click OK.
NOTICE: You must assign a password to every user account that can access Dell OpenManage software to protect access to your critical system components.
An icon labeled with the new user name appears in the current container.
Right-click the icon labeled with the new user name and click Trustees of this Object.
Select username.contextName and click Assigned Rights.
By default, three entries in the Assigned Rights category are available: Login Script, Print Job Configuration, and All Attribute Rights.
Select Login Script, and enable the Read, Write, Add Self, and Supervisor fields.
Select Print Job Configuration, and enable the Read, Write, Add Self, and Supervisor fields.
Select All Attribute Rights, and enable the Read, Write, Add Self, and Supervisor fields.
New users can now log into Dell OpenManage software with Administrator privileges.
Microsoft Active Directory
If you use Active Directory service software, you can configure it to control access to your network. Dell has modified the Active Directory database to support remote management authentication and authorization. IT Assistant and Server Administrator, as well as Dell remote access controllers, can now interface with Active Directory. With this tool, you can add and control users and privileges from one central database. If you use Active Directory to control user access to your network, see "Using Microsoft® Active Directory®."
Configuring the SNMP Agent
Dell OpenManage software supports the SNMP systems management standard on all supported operating systems. SNMP is installed as part of your operating system installation. An installed supported systems management protocol standard, such as SNMP, is required before installing Dell OpenManage software. See "Installation Requirements" for more information.
You can configure the SNMP agent to change the community name, enable Set operations, and send traps to a management station. To configure your SNMP agent for proper interaction with management applications such as IT Assistant, perform the procedures described in the following sections.
NOTE: For IT Assistant to retrieve management information from a system running Server Administrator, the community name used by IT Assistant must match a community name on the system running Server Administrator. For IT Assistant to modify information or perform actions on a system running Server Administrator, the community name used by IT Assistant must match a community name that allows Set operations on the system running Server Administrator. For IT Assistant to receive traps (asynchronous event notifications) from a system running Server Administrator, the system running Server Administrator must be configured to send traps to the system running IT Assistant. For more information, see the IT Assistant User's Guide.
The following sections provide step-by-step instructions for configuring the SNMP agent for each supported operating system:
Configuring the SNMP Agent for Systems Running Supported Windows Operating Systems
Dell OpenManage software uses the SNMP services provided by the Windows SNMP agent. (SNMP is one of the two supported ways of connecting to a System Administrator session; the other is CIM/WMI.) You can configure the SNMP agent to change the community name, enable Set operations, and send traps to a management station. To configure your SNMP agent for proper interaction with management applications such as IT Assistant, perform the procedures described in the following sections.
NOTE: See your operating system documentation for additional details on SNMP configuration.
Enabling SNMP Access By Remote Hosts on Windows Server 2003
Windows Server 2003, by default, does not accept SNMP packets from remote hosts. For systems running Windows Server 2003, you must configure the SNMP service to accept SNMP packets from remote hosts if you plan to manage the system by using SNMP management applications from remote hosts. To enable remote shutdown of a system from IT Assistant, SNMP Set operations must be enabled.
To enable a system running the Windows Server 2003 operating system to receive SNMP packets from a remote host, perform the following steps:
Click the Start button, right-click My Computer, and point to Manage.
The Computer Management window appears.
Expand the Computer Management icon in the window, if necessary.
Expand the Services and Applications icon and click Services.
Scroll down the list of services until you find SNMP Service, right-click SNMP Service, and
then click Properties.
The SNMP Service Properties window appears.
Click the Security tab.
Select Accept SNMP packets from any host, or add the IT Assistant host to the Accept
SNMP packets from these hosts list.
Changing the SNMP Community Name
Configuring the SNMP community names determines which systems are able to manage your system through SNMP. The SNMP community name used by management applications must match an SNMP community name configured on the Dell OpenManage software system so that the management applications can retrieve management information from Dell OpenManage software.
If your system is running Windows Server 2003, click the Start button, right-click
My Computer, and point to Manage. If your system is running Windows 2000, right-click
My Computer and point to Manage.
The Computer Management window appears.
Expand the Computer Managementicon in the window, if necessary.
Expand the Services and Applications icon and click Services.
Scroll down the list of services until you find SNMP Service, right-click SNMP Service, and
then click Properties.
The SNMP Service Properties window appears.
Click the Security tab to add or edit a community name.
To add a community name, click Add under the Accepted Community Names list.
The SNMP Service Configuration window appears.
Type the community name of a system that is able to manage your system (the default is
public) in the Community Name text box and click Add.
The SNMP Service Properties window appears.
To change a community name, select a community name in the Accepted Community
Names list and click Edit.
The SNMP Service Configuration window appears.
Make all necessary edits to the community name of the system that is able to manage
your system in the Community Name text box, and then click OK.
TheSNMP Service Propertieswindow appears.
Click OK to save the changes.
Enabling SNMP Set Operations
SNMP Set operations must be enabled on the Dell OpenManage software system to change Dell OpenManage software attributes using IT Assistant. To enable remote shutdown of a system from IT Assistant, SNMP Set operations must be enabled.
If your system is running Windows Server 2003, click the Start button, right-click
My Computer, and point to Manage. If your system is running Windows 2000, right-click
My Computer and point to Manage.
The Computer Management window opens.
Expand the Computer Managementicon in the window, if necessary.
Expand the Services and Applications icon, and then click Services.
Scroll down the list of services until you find SNMP Service, right-click SNMP Service, and
click Properties.
The SNMP Service Properties window appears.
Click the Security tab to change the access rights for a community.
Select a community name in the Accepted Community Names list, and then click Edit.
The SNMP Service Configuration window opens.
Set the Community Rights to READ WRITE or READ CREATE, and click OK.
The SNMP Service Properties window opens.
Click OK to save the changes.
Configuring Your System to Send SNMP Traps to a Management Station
Dell OpenManage software generates SNMP traps in response to changes in the status of sensors and other monitored parameters. You must configure one or more trap destinations on the Dell OpenManage software system for SNMP traps to be sent to a management station.
If your system is running Windows Server 2003, click the Start button, right-click
My Computer, and point to Manage. If your system is running Windows 2000, right-click
My Computer and point to Manage.
The Computer Management window opens.
Expand the Computer Management icon in the window, if necessary.
Expand the Services and Applications icon and click Services.
Scroll down the list of services until you find SNMP Service, right-click SNMP Service, and
click Properties.
The SNMP Service Properties window opens.
Click the Traps tab to add a community for traps or to add a trap destination for a
trap community.
To add a community for traps, type the community name in the Community Name box
and click Add to list, which is located next to the Community Namebox.
To add a trap destination for a trap community, select the community name from the
Community Name drop-down box and click Add under the Trap Destinations box.
The SNMP Service Configuration window opens.
Type in the trap destination and click Add.
The SNMP Service Properties window opens.
Click OK to save the changes.
Configuring the SNMP Agent on Systems Running Supported Red Hat Enterprise Linux Operating Systems
Server Administrator uses the SNMP services provided by the ucd-snmp or net-snmp agent. You can configure the SNMP agent to change the community name, enable Set operations, and send traps to a management station. To configure your SNMP agent for proper interaction with management applications such as IT Assistant, perform the procedures described in the following sections.
NOTE: See your operating system documentation for additional details about SNMP configuration.
SNMP Agent Access Control Configuration
The management information base (MIB) branch implemented by the Server Administrator Instrumentation Service is identified by the 1.3.6.1.4.1.674.10892.1 OID. Management applications must have access to this branch of the MIB tree to manage systems running the Instrumentation Service.
For Red Hat Enterprise Linux operating systems, the default SNMP agent configuration gives read-only access for the "public" community only to the MIB-II "system" branch (identified by the 1.3.6.1.2.1.1 OID) of the MIB tree. This configuration does not allow management applications to retrieve or change Instrumentation Service or other systems management information outside of the MIB-II "system" branch.
Server Administrator SNMP Agent Install Actions
If Server Administrator detects the default SNMP configuration during installation, it attempts to modify the SNMP agent configuration to give read-only access to the entire MIB tree for the "public" community. Server Administrator modifies the /etc/snmp/snmpd.conf SNMP agent configuration file in two ways.
The first change is to create a view to the entire MIB tree by adding the following line if it does not exist:
view all included .1
The second change is to modify the default "access" line to give read-only access to the entire MIB tree for the "public" community. Server Administrator looks for the following line:
access notConfigGroup "" any noauth exact systemview none none
If Server Administrator finds the line above, it modifies the line so that it reads:
access notConfigGroup "" any noauth exact all none none
These changes to the default SNMP agent configuration give read-only access to the entire MIB tree for the "public" community.
NOTE: To ensure that Server Administrator is able to modify the SNMP agent configuration to provide proper access to systems management data, it is recommended that any other SNMP agent configuration changes be made after installing Server Administrator.
Changing the SNMP Community Name
Configuring the SNMP community names determines which systems are able to manage your system through SNMP. The SNMP community name used by management applications must match an SNMP community name configured on the Dell OpenManage software system, so the management applications can retrieve management information from Dell OpenManage software.
To change the SNMP community name used for retrieving management information from a system running Dell OpenManage software, edit the SNMP agent configuration file, /etc/snmp/snmpd.conf, and perform the following steps:
Find the line that reads:
com2sec publicsec default public
or
com2sec notConfigUser default public
Edit this line, replacing public with the new SNMP community name. When edited, the
new line should read:
com2sec publicsec default community_name
or
com2sec notConfigUser defaultcommunity_name
To enable SNMP configuration changes, restart the SNMP agent by typing:
service snmpd restart
Enabling SNMP Set Operations
SNMP Set operations must be enabled on the system running Dell OpenManage software in order to change Dell OpenManage software attributes using IT Assistant. To enable remote shutdown of a system from IT Assistant, SNMP Set operations must be enabled.
To enable SNMP Set operations on the system running Dell OpenManage software, edit the /etc/snmp/snmpd.conf SNMP agent configuration file and perform the following steps:
Find the line that reads:
access publicgroup "" any noauth exact all none none
or
access notConfigGroup "" any noauth exact all none none
Edit this line, replacing the first none with all. When edited, the new line should read:
access publicgroup "" any noauth exact all all none
or
access notConfigGroup "" any noauth exact all all none
To enable SNMP configuration changes, restart the SNMP agent by typing:
service snmpd restart
Configuring Your System to Send Traps to a Management Station
Dell OpenManage software generates SNMP traps in response to changes in the status of sensors and other monitored parameters. One or more trap destinations must be configured on the system running Dell OpenManage software for SNMP traps to be sent to a management station.
To configure your system running Dell OpenManage software to send traps to a management station, edit the /etc/snmp/snmpd.conf SNMP agent configuration file and perform the following steps:
Add the following line to the file:
trapsinkIP_address community_name
where IP_address is the IP address of the management station and community_nameis the SNMP community name
To enable SNMP configuration changes, restart the SNMP agent by typing:
service snmpd restart
Firewall Configuration on Systems Running Supported Red Hat Enterprise Linux Operating Systems
If you enable firewall security when installing Red Hat Enterprise Linux, the SNMP port on all external network interfaces is closed by default. To enable SNMP management applications such as IT Assistant to discover and retrieve information from Server Administrator, the SNMP port on at least one external network interface must be open. If Server Administrator detects that the SNMP port is not open in the firewall for any external network interface, Server Administrator displays a warning message and logs a message to the system log. See "Ports" for additional information.
You can open the SNMP port by disabling the firewall, opening an entire external network interface in the firewall, or opening the SNMP port for at least one external network interface in the firewall. You can perform this action before or after Server Administrator is started.
To open the SNMP port using one of the previously described methods, perform the following steps:
At the Red Hat Enterprise Linux command prompt, type setup and press <Enter> to start
the Text Mode Setup Utility.
NOTE: This command is available only if you have performed a default installation of the operating system.
The Choose a Tool menu opens.
Select Firewall Configuration using the down arrow and press <Enter>.
The Firewall Configuration screen opens.
Select the Security Level by tabbing to it and pressing the spacebar. The selected Security
Level is indicated by an asterisk.
NOTE: Press <F1> for more information about the firewall security levels. The default SNMP port number is 161. If you are using the X Windows GUI, pressing <F1> might not provide information about firewall security levels on newer versions of the Red Hat Enterprise Linux operating system.
To disable the firewall, select No firewall or Disabled and go to step 7.
To open an entire network interface or the SNMP port, select High, Medium, or Enabled
and continue with step 4.
Tab to Customize and press <Enter>.
The Firewall Configuration - Customize screen opens.
Select whether to open an entire network interface or just the SNMP port on all
network interfaces.
To open an entire network interface, tab to one of the Trusted Devices and press the
spacebar. An asterisk in the box to the left of the device name indicates that the entire
interface will be opened.
To open the SNMP port on all network interfaces, tab to Other ports and type snmp:udp.
Tab to OK and press <Enter>.
The Firewall Configuration screen opens.
Tab to OK and press <Enter>.
The Choose a Tool menu opens.
Tab to Quit and press <Enter>.
Configuring the SNMP Agent on Systems Running Supported NetWare Operating Systems
Dell OpenManage software uses the SNMP services provided by the NetWare SNMP agent. You can configure the SNMP agent to change the community name, enable Set operations, and send traps to a management station. To configure your SNMP agent for proper interaction with management station applications such as IT Assistant and Dell OpenManage Array Manager, perform the following tasks.
NOTE: See your operating system documentation for additional details on SNMP configuration.
Changing the SNMP Community Name
The SNMP community name used by management applications must match an SNMP community name configured on the system running Dell OpenManage software, so the management station applications can retrieve management information from Dell OpenManage software.
To change the SNMP community name used for retrieving management information from a Dell OpenManage software system, perform the following steps:
At the NetWare command line console, type load inetcfg and press <Enter>.
The Internetworking Configuration menu opens.
Select the Manage Configuration menu item.
The Manage Configuration menu opens.
Select the Configure SNMP Parameters menu item.
The SNMP Parameters menu opens.
Select the Monitor State menu item to configure monitor community handling.
The Monitor Community Handling menu choices are Any Community May Read, Leave as Default Setting, No Community May Read, and Specified Community May Read.
NOTE: Press <F1> for more information about the Monitor State menu item. Press <Esc> to clear the help window.
Press <Esc> to exit the SNMP Parameters menu.
A message box opens, prompting you to save changes.
Select Yes.
The Manage Configuration menu opens.
Press <Esc> to exit the Manage Configuration menu.
The Internetworking Configuration menu opens.
Select the Reinitialize System menu item to make the configuration changes active.
Enabling SNMP Set Operations
SNMP Set operations must be enabled on the system running Dell OpenManage software in order to change Dell OpenManage software attributes using IT Assistant. In addition, to enable remote shutdown of a system from IT Assistant, SNMP Set operations must be enabled.
To enable SNMP Set operations on the system running Dell OpenManage software, perform the following steps:
At the NetWare command line console, type load inetcfg and press <Enter>.
The Internetworking Configuration menu opens.
Select the Manage Configuration menu item.
The Manage Configuration menu opens.
Select the Configure SNMP Parameters menu item.
The SNMP Parameters menu opens.
Select the Control State menu item to configure control community handling.
The Control Community Handling menu choices are Any Community May Write, Leave as Default Setting, No Community May Write, and Specified Community May Write.
NOTE: Press <F1> for more information about the Control State menu item. Press <Esc> to clear the help window.
Press <Esc> to exit the SNMP Parameters menu.
A message box opens, prompting you to save changes.
Select Yes.
The Manage Configuration menu opens.
Press <Esc> to exit the Manage Configuration menu.
The Internetworking Configuration menu opens.
Select the Reinitialize System menu item to make the configuration changes active.
Configuring Your System to Send SNMP Traps to a Management Station
Dell OpenManage software generates SNMP traps in response to changes in the status of sensors and other monitored parameters. One or more trap destinations must be configured on the system running Dell OpenManage software for SNMP traps to be sent to a management station.
To configure a system running Dell OpenManage software to send SNMP traps to a management station, perform the following steps:
At the NetWare command line console, type load inetcfg and press <Enter>.
The Internetworking Configuration menu opens.
Select the Manage Configuration menu item.
The Manage Configuration menu opens.
Select the Configure SNMP Parameters menu item.
The SNMP Parameters menu opens.
Select the Trap State menu item to configure trap community handling.
The Trap Handling menu choices are Do Not Send Traps, Leave as Default Setting, and Send Traps With Specified Community.
NOTE: Press <F1> for more information about the Trap State menu item. Press <Esc> to clear the help window.
Press <Esc> to exit the SNMP Parameters menu.
A message box opens, prompting you to save changes.
Select Yes.
The Manage Configuration menu opens.
Press <Esc> to exit the Manage Configuration menu.
The Internetworking Configuration menu opens.
Select the Protocols menu item.
The Protocol Configuration menu opens.
Select the TCP/IP menu item.
The TCP/IP Protocol Configuration menu opens.
Select the SNMP Manager Table menu item.
The SNMP Manager Table menu opens.
Select one of the following SNMP Manager Table menu items:
Press <Ins> to add SNMP trap destinations.
Press <Enter> to modify SNMP trap destinations.
Press <Del> to delete SNMP trap destinations.
NOTE: Press <F1> for more information about the SNMP Manager Table menu item. Press <Esc> to clear the help window.
Press <Esc> to exit the SNMP Manager Table menu.
A message box opens, prompting you to update the database.
Select Yes.
The TCP/IP Protocol Configuration menu opens.
Press <Esc> twice to exit the TCP/IP Protocol Configuration menu.
The Internetworking Configuration menu opens.
Restart your system to make the configuration changes active.
You can set user and secure port server preferences for Server Administrator and IT Assistant from the Preferences Web page. Click General Settings and click either the User tab or Web Server tab.
NOTE: You must be logged in with Administrator privileges to set or reset user or server preferences.
Perform the following steps to set up your user preferences:
Click Preferences on the global navigation bar.
The Preferences home page appears.
Click General Settings.
To add a preselected e-mail recipient, type the e-mail address of your designated service
contact in the Mail To: field, and click Apply Changes.
NOTE: Clicking Email in any window sends an e-mail message with an attached HTML file of the window to the designated e-mail address.
To change the home page appearance, select an alternative value in the skin or scheme fields
and click Apply Changes.
Perform the following steps to set up your secure port server preferences:
Click Preferences on the global navigation bar.
The Preferences home page appears.
Click General Settings, and the Web Server tab.
In the Server Preferenceswindow, set options as necessary.
The Session Timeout feature can set a limit on the amount of time that a session can remain active. Select the Enable radio button to allow a time-out if there is no user interaction for a specified number of minutes. Users whose session time-out must log in again to continue. Select the Disable radio button to disable the Server Administrator session time-out feature.
The HTTPS Port field specifies the secure port for Server Administrator. The default secure port for Server Administrator is 1311.
NOTE: Changing the port number to an invalid or in-use port number might prevent other applications or browsers from accessing Server Administrator on the managed system.
The IP Address to Bind to field specifies the IP address(es) for the managed system that Server Administrator binds to when starting a session. Select the All radio button to bind to all IP addresses applicable for your system. Select the Specific radio button to bind to a specific IP address.
NOTE: A user with Administrator privileges cannot use Server Administrator when logged into the system remotely.
NOTE: Changing the IP Address to Bind to value to a value other than All may prevent other applications or browsers from remotely accessing Server Administrator on the managed system.
The SMTP Server name and DNS Suffix for SMTP Server fields specify your company or organization's Simple Mail Transfer Protocol (SMTP) and domain name server (DNS) suffix. To enable Server Administrator to send e-mails, you must type the IP address and DNS suffix for the SMTP server for your company or organization in the appropriate fields.
NOTE: For security reasons, your company or organization might not allow e-mails to be sent through the SMTP server to outside accounts.
The Command Log Size field specifies the largest file size in MB for the command log file.
The Support Link field specifies the Web address for the business entity that provides support for your managed system.
The Custom Delimiter field specifies the character used to separate the data fields in the files created using the Export button. The ; character is the default delimiter. Other options are !, @, #, $, %, ^, *, ~, ?, :,|, and ,.
When you finish setting options in the Server Preferences window, click Apply Changes.
X.509 Certificate Management
Web certificates are necessary to ensure the identity of a remote system and ensure that information exchanged with the remote system cannot be viewed or changed by others. To ensure system security, it is strongly recommended that you either generate a new X.509 certificate, reuse an existing X.509 certificate, or import a root certificate or certificate chain from a Certification Authority (CA).
NOTE: You must be logged in with Administrator privileges to perform certificate management.
You can manage X.509 certificates for Server Administrator and IT Assistant from the Preferences Web page. Click General Settings, click the Web Server tab, and click X.509 Certificate.
Use the X.509 certificate tool to either generate a new X.509 certificate, reuse an existing X.509 certificate, or import a root certificate or certificate chain from a CA. Authorized CAs include Verisign, Entrust, and Thawte.
