HP CloudSystem Foundation Guide de l'utilisateur Page 24
- Page / 211
- Table des matières
- DEPANNAGE
- MARQUE LIVRES
Noté. / 5. Basé sur avis des utilisateurs
Best PracticeTopic
Updates
• Ensure that a process is in place to determine if software and firmware updates are available,
and to install updates for all components in your environment on a regular basis.
Virtual
Environment
• Most security policies and practices used in a traditional environment apply in a virtualized
environment. However, in a virtualized environment, these policies might require modifications
and additions.
• Educate administrators about changes to their roles and responsibilities in a virtual environment.
• Restrict access to the appliance console to authorized users. For more information, see Restricting
console access (page 24).
• If you use an Intrusion Detection System (IDS) solution in your environment, ensure that the solution
has visibility into network traffic in the virtual switch.
• Maintain a zone of trust, for example, a DMZ (demilitarized zone) that is separate from production
machines.
• Ensure proper access controls on Fibre Channel devices.
• Use LUN masking on both storage and compute hosts.
• Ensure that LUNs are defined in the host configuration, instead of being discovered.
• Use hard zoning (which restricts communication across a fabric) based on port WWNs
(Worldwide Names), if possible.
• Ensure that communication with the WWNs is enforced at the switch-port level.
Enabling or disabling authorized services access
When you first start up the appliance, you can choose to enable or disable access by on-site
authorized support representatives. By default, on-site authorized support representatives are
allowed to access your system through the appliance console and diagnose issues that you have
reported.
Support access is a root-level shell, which enables the on-site authorized support representative to
debug any problems on the appliance and obtain a one-time password using a challenge/response
mechanism similar to the one for a password reset.
Any time after the initial configuration of the appliance, you can enable or disable services access
through the UI by selecting Actions→Edit services access on the Settings window.
You can also use an appliance/settings REST API to enable or disable services access.
NOTE: HP recommends that you enable access. Otherwise, the authorized support representative
might be unable to access the appliance to correct a problem.
Restricting console access
For the virtual appliance, you can restrict console access through secure management practices
of the hypervisor itself.
For VMware vSphere, this information is available from the VMware website:
http://www.vmware.com
In particular, search for topics related to vSphere's Console Interaction privilege and best practices
for managing VMware's roles and permissions.
Best practices for browser use
• Enable SSL v3 and TLS.
SSL v2 is considered insecure and should not be enabled in the browser unless there is a
specific need for it.
• Enable cookies to store the authenticated user’s session ID.
24 Security in CloudSystem
- Abstract 1
- Contents 3
- 4 Contents 4
- Contents 5 5
- 6 Contents 6
- Contents 7 7
- 8 Contents 8
- Contents 9 9
- 10 Contents 10
- Consumers 12
- Administrator 12
- Resources 12
- OpenStack 12
- Features 13
- 2 Concepts and architecture 15
- Associated appliances 16
- Physical servers 17
- User authentication 17
- OpenStack technology 18
- Network tasks and user roles 20
- 3 Security in CloudSystem 22
- Restricting console access 24
- Protecting credentials 25
- 26 Security in CloudSystem 26
- 4 Installation 27
- About Activity 29
- About alerts 30
- About tasks 31
- About the Activity sidebar 31
- Activity states 31
- Icon descriptions 32
- User control icons 33
- Browser requirements 34
- Search resources 35
- 6 Support and other resources 37
- Download audit logs 38
- Create a support dump file 39
- How to contact HP 41
- HP authorized resellers 41
- Documentation feedback 41
- Related information 41
- HP CloudSystem documents 42
- HP Software documents 42
- Related information 43 43
- HP ProLiant servers documents 44
- About managing the appliance 46
- Shut down the appliance 47
- Restart the appliance 47
- Reboot Foundation appliances 48
- Update Foundation appliances 48
- –insecure 51
- 8 Manage users and groups 52
- ◦ Initial password 53
- ◦ User's full name 53
- Authenticating users 54
- Adding a directory server 54
- Add a directory service 55
- 56 Manage users and groups 56
- Add a directory server 58
- Add a directory group 59
- 60 Manage users and groups 60
- Allow local logins 61
- Disable local logins 61
- Challenge = xyaay42a3a 62
- Password: 62
- VET ROME DUE HESS FAR GAS 62
- 9 Manage licenses 63
- License keys 64
- License key format 65
- View license details 66
- 10 Manage security 67
- Verifying a certificate 68
- Configuring cloud resources 70
- 12 Network configuration 73
- About Provider Networks 74
- Delete Provider Network 75
- About Private Networks 76
- About the External Network 77
- 78 Network configuration 78
- About the External Network 79 79
- 80 Network configuration 80
- Managing integrated tools 81
- VMware vCenter Server 82
- VMware vCenter Server 83 83
- 14 Image management 84
- Creating and obtaining images 85
- Add Image 86
- Edit Image 87
- Delete Image 88
- 15 Storage configuration 89
- Edit Block Storage Drivers 90
- Delete Block Storage Drivers 91
- About volume types 91
- Add Volume Types 92
- About Volumes 93
- Understanding Volumes data 94
- Delete Volumes 95
- 16 Compute node creation 96
- Configuring networks 97
- 98 Compute node creation 98
- Creating KVM compute nodes 99
- 102 Compute node creation 102
- 17 Compute node management 103
- 104 Compute node management 104
- Import a cluster 105
- Activate a compute node 105
- Deactivate a compute node 106
- Delete a compute node 107
- Start instance 108
- About Flavors 109
- Flavors in the cloud 110
- Manage flavors 110
- Add Flavor 110
- Delete Flavor 111
- About the Console Dashboard 112
- Dashboard status indicators 113
- Data refresh 114
- Create a security group 118
- Create a key pair 119
- Create a Private network 119
- CloudSystem Portal 122
- Enterprise in the cloud 124
- Multitenancy in Enterprise 125
- 23 Install Enterprise 126
- Enterprise appliance settings 132
- • Current date and time 133
- Set up a template 135
- Create a server group 135
- Create an offering 136
- Deploy an offering 137
- You cannot log in 141
- First-time setup 141
- External difficulties 142
- Enterprise management hosts 142
- Audit log 144
- Licensing 144
- Cannot add directory service 149
- Cannot add directory group 150
- CloudSystem Console 153
- Troubleshooting networks 155
- Neutron CLI 157
- OpenStack Nova command errors 158
- Floating IPs are not working 158
- Troubleshooting images 162
- Troubleshooting storage 166
- Unable to edit a volume type 170
- Troubleshooting compute nodes 173
- Implementation error 182
- 29 Troubleshoot CLI errors 183
- 30 Troubleshoot Enterprise 185
- Part VII Appendices 188
- Using OpenLDAP 189
- Using Active Directory 190
- -----BEGIN CERTIFICATE 191
- MIIEDTCCAvWgAwIBAgIJANgTCE 191
- IFl1P+c9Gro82S7z 191
- -----END CERTIFICATE 191
- Getting help for csadmin 192
- Command syntax and examples 193
- DefinitionArgument 198
Produits connexes et manuels pour Logiciel HP CloudSystem Foundation
Logiciel HP TC3100 Manuel d'utilisateur
(121 pages)
(121 pages)
Logiciel HP PROCURVE 6120 Manuel d'utilisateur
(589 pages)
(589 pages)
Logiciel HP B.06.X Manuel d'utilisateur
(78 pages)
(78 pages)
Logiciel HP 3PAR Guide de l'utilisateur
(676 pages)
(676 pages)
Logiciel HP E3000 Manuel d'utilisateur
(111 pages)
(111 pages)
Logiciel HP 4000S Guide de l'utilisateur
(246 pages)
(246 pages)
Logiciel HP C50 Manuel d'utilisateur
(484 pages)
(484 pages)
Logiciel HP B6960-96008 Manuel d'utilisateur
(396 pages)
(396 pages)
Logiciel HP rp7410 Guide de l'utilisateur
(266 pages)
(266 pages)
Logiciel HP 11i Manuel d'utilisateur
(113 pages)
(113 pages)
Logiciel HP 41B Manuel d'utilisateur
(44 pages)
(44 pages)
Logiciel HP P6350 Manuel d'utilisateur
(316 pages)
(316 pages)
Logiciel HP CD52ce Manuel d'utilisateur
(109 pages)
(109 pages)
© 2020, manymanuals.fr. Tous droits réservés | 0.032 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commentaires sur ces manuels