beautypg.com

Trust modes, Restart service, Win32disableacceptex – HP System Management Homepage-Software User Manual

Page 60

background image

Trust Modes

The HP SMH trusts HP SIM or HP Insight Manager 7 (IM 7) secure task execution requests and
single sign on requests with various levels of security, ranging from trust all to only trust HP SIM or
HP Insight Manager 7 with trusted certificates:

Trust All

This command sets up the http server to accept all secure task execution requests and single
sign on requests from any HP SIM or HP Insight Manager 7 7 server:

smhconfig -t|--trustmode[=] TrustByAll

Trust By Name

This command sets up the HP SMH to only accept secure task execution requests and single
sign on requests from the listed HP SIM or HP Insight Manager 7 7 servers:

smhconfig -t|--trust-mode[=] TrustByName

To configure the trusted servers name list for the TrustByName trust mode, use the following
command:

smhconfig -X|--xenamelist[=] XENAMELIST

XENAMELIST

is a list of the HP SIM or HP Insight Manager 7 7 servers that trust, using a

comma or semicolon as a delimiter. The following is an example of the name list format:

server1,server2.domain1;server3,server4.domain2

Trusted Certificates

This command establishes the trust relationship between HP SIM or HP Insight Manager 7 7
and the HP SMH using the certificate. The trust mode is set to TrustByCert using the following
command:

smhconfig -t|--trustmode[=] TrustByCert

A trusted certificate is added to the trusted certificate list using the following command:

smhconfig -C|--trust-certificate[=] FILE

FILE

is the name of the file containing the base 64 encoded certificate to be added to the

trusted certificate list.

Restart service

Restart the HP SMH on completion of applying the new configuration settings.

smhconfig -r|--restart

Reject Program Admin Login (Windows and Linux only)

Reject or accept and Web-enabled System Management Software or HP VCA login request.

smhconfig -j|--reject-prog-admin-login[=] true|false

Win32DisableAcceptEX

AcceptEX() is a Microsoft WinSock v2 API that provides performance improvements over the use
of the BSD style accept() API in specific circumstances. Some popular Windows products, typically
virus scanning or virtual private network packages, have bugs that interfere with the operation of
AcceptEx(). If you encounter an error condition like:

[error] (730038) An operation was attempted on something that is not a

socket:: winnt_accept: AcceptEx failed. Attempting to recover.

Use the following directive to disable the use of AcceptEx():

smhconfig -w|--win32-disable-acceptex[=] True | False

60

Command Line Interface configuration