beautypg.com

Configuring ssh bypass properties, Audit log, Configuring the hp sim audit log – HP Systems Insight Manager User Manual

Page 528: Configuring the tool definition files, Configuring the log.properties file, Configuring ssh bypass properties audit log

background image

Related procedure

HP-UX and Linux

Related topic

Backing up and restoring the database

Configuring SSH bypass properties

The globalsettings.props has many configurable properties. These setting are used to fine-tune the
performance of various settings of HP Systems Insight Manager (HP SIM) to adjust to your running environment.

SSH Bypass is used to boost performance by bypassing the overhead of setting up SSH connections for
specified users when the

Central Management Server

(CMS) is executing a tool locally on the CMS. This

also alleviates potential problems with SSH not being configured properly locally. This applies to tools that
run exclusively on the CMS. This feature was introduced with HP SIM 4.2 SP2 – Windows and is also
included for HP-UX and Linux with HP SIM 5.0 This feature is enabled by default for the root user on HP-UX
and Linux and for the administrator and the installer account on Windows.

To configure SSH bypass properties in globalsettings.props:

1.

Open the globalsettings.props file located at:

On Windows

It is typically located at C:\Program Files\HP\Systems Insight

Manager\config\globalsettings.props

.

On HP-UX and Linux

It is located at /etc/opt/mx/config/globalsettings.props.

2.

Edit the following properties:

mx_dtf_ssh_bypass_user

Modify this property to add additional user names for the SSH bypass

feature. Separate each with a comma. For Windows domain accounts, two backslashes must exist
between the domain name and the user name. For example,

mydomain\\myname. Do add a user

name if you do not intend for them to have full administrator privileges on the CMS.

mx_dtf_enable_ssh_bypass

Set this property to

True to bypass use of SSH for most local tools

for the users listed in

mx_dtf_ssh_bypass_user, or set to False to always use SSH tools that execute

locally. The default setting is set to

True.

Audit log

HP Systems Insight Manager (HP SIM) logs all

tasks

performed by all HP SIM

users

on all

systems

. The

information is stored in the Audit Log file on the

Central Management Server

(CMS). Several features of the

HP SIM Audit Log are configurable. For example, you can specify which tools log data and the maximum
Audit Log file size. The HP SIM Audit Log is configured through the log.properties file, and tool logging
is enabled or disabled through the

XML

tool definition files.

Configuring the HP SIM audit log

Configuring the HP SIM Audit log is performed from the

command line interface

(CLI), and you must be

signed in as root or administrator.

See

“Configuring the audit log file”

for more information.

Configuring the tool definition files

The XML tool definition file provides an option to disable logging of

single-system aware

(SSA) and

multiple-system aware

(MSA) command tools. The log attribute for the command element specifies whether

the results of the command are output to the HP SIM log file. Command output is logged by default.

Configuring the log.properties file

You might need to create the file and name it log.properties if one does not exist in the directory. HP
SIM uses default values when the file does not exist or when a variable is not defined in the file.

See

“Configuring the audit log file”

for more information.

528 Administering systems and events