HP Insight Management WBEM Providers User Manual
Page 19
Security 19
Configuring Insight Provider Security for a User
Account using HP SIM Configure and Repair Agents
NOTE:
When you must configure a non-administrator account on an x64 target server, verify
that the system is identified to HP SIM as a server and that it has the system subtype. For more
information, see the HP SIM help file.
The following procedure provides access rights to allow a standard user account to view most
management information. However, you must use an administrator account to perform some management
tasks such as rebooting a server.
To configure a domain or local user (non-administrator) account for remote management:
1.
From HP SIM, select Configure > Configure or Repair Agents.
If the targets are selected, the Step 1: Select Target Systems page appears.
2.
Click Next.
The Step 2: Enter credentials page appears.
3.
The credentials you specify on this page are for a privileged account on the target system. In
addition, the credentials must work for all selected target systems. HP recommends using domain
administrator credentials. HP SIM only saves these credentials to run a scheduled task later.
a.
In the User name field, enter the system administrator name.
b.
In the Password field, enter the system administrator password.
c.
In the Password (Verify) field, re-enter the system administrator password.
d.
If you are using a domain account, enter the Windows domain in the Domain field.
4.
Click Next.
The Step 3: Install Providers and Agents (Optional) page appears.
5.
Select the Install WBEM / WMI Provider (HP Insight Management WBEM Provider) for Windows box.
6.
Click Next.
The Step 4: Configure or Repair Agents page appears.
7.
(Optional) Select the Configure a non-administrative account for HP SIM to access WMI data option.
This option applies to Windows® systems with the Insight Providers. The configuration of the
managed system is updated to allow the user to access WMI information over the network. This user
account is used by HP SIM to read inventory and configuration information from the system, and is
configured as the WBEM user in the System Protocol Settings.
This configuration step is not necessary if HP SIM is configured with a user with Windows®
administrator rights. HP SIM does not create this user. The user must exist as a domain user or one
local to the managed system.
The user is added to the Distributed COM Users group on the managed system and is given read-
only access to WMI information in addition to read-write permissions to the HPQ name space.
This user does not need to be an administrator of the managed system and does not need login
rights. HP recommends that the domain administrator create a special-purpose domain account.
8.
Enter the credentials for HP SIM to access the managed systems:
a.
In the User name field, enter a user name.
b.
In the Password field, enter the password for the user.