HP -UX B6941-90001 Скачать руководство пользователя | Manualshive

Страница: 437 / 548

background image

Chapter 10

437

Tuning, Troubleshooting, Security, and Maintenance

ITO Security

Network Security

Network security involves the protection of data that is exchanged
between the management server and the managed node and is primarily
DCE related. ITO addresses the problem of network security by
controlling the authenticity of the parties, in this case the RPC client and
server, before granting a connection and ensuring the integrity of data
passed over the network during the connection.

Although ITO carries out its own, basic authorization checks when
communication between the management server and the managed nodes
is required, DCE allows the implementation of more stringent security at
process level between an RPC client and an RPC server, specifically in
the areas of authentication and privacy, or data protection.

The level of data protection is chosen by the client, although the server
has the option of deciding whether a chosen level is sufficient, and ITO
sees the concept of authentication in the context of either the RPC client
or the RPC server. For example, in the same way that an RPC server
needs to determine whether or not an incoming request is from a genuine
ITO client, an RPC client also needs to be sure that the server it is
calling really is an ITO server.

The section on network security covers the following areas:

❏

DCE Configuration

❏

Authentication

❏

Process names and passwords

❏

Port security

❏

Processes and port numbers

Basic DCE Configuration

If you want to protect communication between the ITO management
server and managed nodes using DCE’s security mechanisms, you need
to carry out some extra configuration steps. First of all, a DCE server
installation must be available in the local network. The DCE server
installation provides:

❏

Cell Directory Service (CDS)

❏

DCE security service

❏

DCE Distributed Time Service (DTS)

«
...
435
436
437
438
439
...
»

Содержание -UX B6941-90001

Страница 1: ...HP OpenView IT Operations Administrator s Reference Management Server on HP UX Edition 3 B6941 90001 HP OpenView IT Operations Version A 05 00 February 1999 ...

Страница 2: ... Therefore information about the Year 2000 status of Hewlett Packard products is provided as is without warranties of any kind and is subject to change without notice Hewlett Packard makes no representation or warranty respecting the accuracy or reliability of information about non Hewlett Packard products Such information if any was provided by the manufacturers of those products and customers ar...

Страница 3: ...thout prior written permission is prohibited except as allowed under the copyright laws copyright 1979 1980 1983 1985 93 Regents of the University of California This software is based in part on the Fourth Berkeley Software Distribution under license from the Regents of the University of California copyright 1986 1992 Sun Microsystems Inc copyright 1985 86 1988 Massachusetts Institute of Technolog...

Страница 4: ... trademarks of Microsoft Corp Oracle SQL Net and SQL Plus are registered U S trademarks of Oracle Corporation Redwood City California Oracle Reports Oracle7 and Oracle7 Server are trademarks of Oracle Corporation Redwood City California Java is a U S trademark of Sun Microsystems Inc Netscape Commerce Server and Netscape Communications Server are U S trademarks of Netscape Communications Corporati...

Страница 5: ...nting date The manual part number will change when extensive changes are made Manual updates may be issued between editions to correct errors or document product changes To ensure that you receive the updated or new editions you should subscribe to the appropriate product support service See your HP sales representative for details First Edition June 1996 Second Edition August 1997 Third Edition F...

Страница 6: ...6 ...

Страница 7: ... system with new software perform remote logins to other systems search locate and edit ASCII files The reader should be thoroughly familiar with file system organization X applications HP OpenView NNM platform user interface and services Database administration ITO concepts For information on how to install ITO on the management server see the HP OpenView IT Operations Installation Guide for the ...

Страница 8: ...8 ...

Страница 9: ... entering a command At the prompt type rlogin your_name where you supply your login name Parameters to a function The oper_name parameter returns an integer response Bold New terms The monitor agent observes Computer Text and items on the computer screen The system replies Press Enter Command names Use the grep command Function names Use the opc_connect function to connect File and directory names...

Страница 10: ...e Click Operator Click on the Apply button Menu Items A menu name followed by a colon means that you select the menu then the item When the item is followed by an arrow a cascading menu follows Select Actions Utilities Reports Font Type What the Font Type Represents Example ...

Страница 11: ...in your own environment The HP OpenView IT Operations Installation Guide for the Management Server is for administrators who install ITO software on the management server and perform initial configuration It includes verification of software and hardware requirements software installation and de installation instructions configuration instructions using defaults The HP OpenView IT Operations Admin...

Страница 12: ... description of new features In addition they provide information to help you compare the current software s features with those available in previous versions of the software determine system and software compatibility solve known problems ITO Online Information The following information is available online The HP ITO Administrator s Guide to Online Information is a context sensistive help system...

Страница 13: ...e HP OpenView Event Correlation Services ECS Designer for NNM and ITO you receive the full ECS Designer documentation set including the title HP OpenView ECS Configuring Circuits for NNM and ITO which contains information you need to use the ECS Designer product in the NNM and ITO environments Advanced Network Security for HP OpenView IT Operations If you purchase the Advanced Network Security ANS...

Страница 14: ...s hp com ITO DynaText Library The ITO DynaText Library is a collection of ITO manuals in online format based on DynaText DynaText is an application for viewing searching printing and annotating your online library The browser and the manuals are available in the appropriate ITO documentation software bundle See the HP OpenView IT Operations Installation Guide for the Management Server for general ...

Страница 15: ...m a keyword search within the help system an index search utility that leads you directly to the desired topic a glossary of terms that are important to users of ITO help on help for users just getting started with online information systems a printing facility which allows you to print any or all topics in the help system a HP LaserJet printer is required to print graphics You can access the help...

Страница 16: ...pts An introduction to the key concepts and features of ITO and the OV ServiceNavigator References Detailed information to help operators maximize their use of ITO and the OV ServiceNavigator Troubleshooting Solutions to common problems you may encounter while using ITO or the OV ServiceNavigator Index An index to help operators quickly find the information they need To view any topic open the app...

Страница 17: ...62 Installation Tips for DYNIX ptx Managed Nodes 63 Installation Tips for HP UX 10 x and 11 x Managed Nodes 63 Installation Tips for IRIX Managed Nodes 70 Installation Tips for MPE iX Managed Nodes 70 Installation Tips for NCR UNIX SVR4 Managed Nodes 74 Installation Tips for Novell NetWare Managed Nodes 75 Installation Tips for Olivetti UNIX Managed Nodes 88 Installation Tips for OS 2 Managed Node...

Страница 18: ...pted by ITO on Digital UNIX 124 File Tree Layout on HP UX 10 x and 11 x Managed Nodes 125 NFS Cluster Servers on HP UX 10 x 125 NFS Cluster Client on HP UX 10 x 126 The ITO Default Operator on HP UX 10 x and 11 x 127 System Resources Adapted by ITO on HP UX 10 x and 11 x 127 File Tree Layout on MPE iX Managed Nodes 128 ITO Default Operator on MPE iX 128 System Resources Adapted by ITO on MPE iX 12...

Страница 19: ...OSx 140 The ITO Default Operator on Pyramid DataCenter OSx 140 System Resources Adapted by ITO on Pyramid DataCenter OSx 141 File Tree Layout on SCO OpenServer Managed Nodes 142 Standalone Systems or NFS Cluster Servers on SCO OpenServer 142 NFS Cluster Clients on SCO OpenServer 143 The ITO Default Operator on SCO OpenServer 143 System Resources Adapted by ITO on SCO OpenServer 144 File Tree Layou...

Страница 20: ...out on Solaris Managed Nodes 157 Standalone Systems or NFS Cluster Servers on Solaris 157 NFS Cluster Client on Solaris 158 The ITO Default Operator on Solaris 158 Solaris System Resources Adapted by ITO 158 File Tree Layout on Windows NT Managed Nodes 160 ITO Default Operator on Windows NT 161 System Resources Adapted by ITO on Windows NT 161 4 Software Maintenance on Managed Nodes Overview 165 I...

Страница 21: ...abling De Installation Debugging 181 5 Configuring ITO Preconfigured Elements 185 Managed Nodes 185 Message Groups 186 The Message Browser 187 Message Ownership 191 Template Groups 193 ITO Users 195 Applications 201 Windows NT Applications Intel DEC Alpha based 209 Novell NetWare Applications 225 OS 2 Applications 233 Event Correlation 235 Logfile Encapsulation 236 SNMP Trap and Event Interception...

Страница 22: ...ions and User Interface 296 Time Templates 297 6 Installing Updating the ITO Configuration on the Managed Nodes Configuration Installation Update on Managed Nodes 301 Script and Program Distribution to Managed Nodes 301 Distributing the ITO Agent Configuration to the Managed Nodes 305 7 Integrating Applications into ITO Integrating Applications into ITO 317 Integrating Applications into the Applic...

Страница 23: ...iderations 336 Language Support on Managed Nodes 338 Language of Messages on Managed Nodes 338 Character Sets for Internal Processing on Managed Nodes 339 The ASCII Character Set 340 External Character Set on Managed Nodes 341 Character Sets supported by the Logfile Encapsulator 343 Character Conversion in ITO 345 English Environment 345 Japanese Environment 348 Localized Object Names 350 Flexible...

Страница 24: ...0 Interpreting the Trace File 382 Troubleshooting Characterizing the Problem 383 Debug Information for OS 2 Managed Nodes 384 Troubleshooting General Considerations 385 Troubleshooting How ITO Reports Errors 386 Errors Reported in Logfiles 386 Errors Reported via the Message Browser 387 Errors Reported via the GUI Error Dialog Box 388 Errors Reported via stderr and stdout 389 Troubleshooting When ...

Страница 25: ...TO Managed Nodes 473 License Maintenance 477 License Types 477 ITO License Maintenance Tools 478 A ITO Managed Node APIs and Libraries ITO APIs on Managed Nodes 483 ITO APIs for Novell NetWare Managed Nodes 484 Writing ITO enabled NetWare Loadable Modules 484 ITO Managed Node Libraries 486 Include Files on all Managed Nodes 496 Managed Node Makefiles 497 B Administration of MC ServiceGuard Overvie...

Страница 26: ...09 MC ServiceGuard Support on the Management Server 509 Troubleshooting ITO in a ServiceGuard Environment 511 ITO SG Logfiles 511 Maintenance Notes for ITO NNM and MC ServiceGuard 511 C ITO Tables and Tablespaces in the Database ITO Tables in the Database 514 ITO Tables and Tablespace 515 D ITO Man Pages Listing Overview of ITO Man Pages 523 Man Pages in ITO 523 Man Pages for ITO APIs 526 Man Page...

Страница 27: ...27 1 Prerequisites for Installing ITO Agent Software ...

Страница 28: ...rerequisites for each type of supported agent This information is provided in order to help you select the correct agent platforms to use as ITO managed nodes Check the minimum requirements thoroughly for each agent platform that you expect to install as a managed node NOTE In this section ITO managed nodes are also referred to as ITO agents ...

Страница 29: ...d nodes must meet the following hardware requirements Novell NetWare 4 1 Server or higher Novell SMP is not supported 10 MB disk space on each NetWare server in the SYS volume 20 MB disk space for the software depot on the NetWare depot server in the SYS volume 7 MB additional free RAM on the NetWare server 4 MB for the ITO agent 1 MB for TI RPC and 0 5 to 2 MB for the NetWare Management Agent and...

Страница 30: ...ged nodes Windows NT Hardware Requirements The Windows NT systems you select as managed nodes must meet the following minimum hardware requirements Windows NT 4 0 Workstation or Server Windows NT 4 0 Server 16 MB Memory Windows NT 4 0 Workstation 12 MB Memory 10 MB disk space on local NTFS disk During installation an additional 10 MB of disk space is required on the local C drive Software Requirem...

Страница 31: ...on Type a AIX IBM RS 6000 BULL DPX 20 4 1 4 2 4 3 DCE DataCenter OSx SVR4 Pyramid 1 1 NCS Digital UNIX DEC Alpha 4 0 DCE DYNIX ptx Intel 486 or higher 4 1 2 4 1 3 4 2 0 4 4 0 4 4 1 4 4 2 NCS HP UX HP 9000 Technical Workstations b 10 01 10 10 10 20 11 0 DCE DCE HP UX HP 9000 Enterprise Servers c d 10 01 10 10 10 20 11 0 DCE DCE IRIX Silicon Graphics 5 3 6 2 6 4 6 5 NCS MPE iX HP 3000 900 5 5 6 0 NC...

Страница 32: ...ating system for example Windows NT Server Enterprise Edition or Windows NT Server Terminal Server Edition nor does it support any software products extending these editions for example WinFrame or MetaFrame from Citrix Systems Inc Contact your local HP Sales Representative for the latest information about support for these products h ITO supports the remote protocol calls RPCs but not the securit...

Страница 33: ...t Operating Systems If DCE runtime is not available with your other agent platforms you will need to use NCS 1 5 1 with the Local Location Broker Daemon llbd instead of dced rpcd running on the managed node NOTE Starting with DCE version 1 4 1 the DCE daemon dced replaces the RPC daemon rpcd For platforms which support the NCS communication type the following configuration step applies If DCE or N...

Страница 34: ...ient core rte time 2 1 0 4 dce client core rte zones 2 1 0 0 dce client core rte admin 2 1 0 5 dce client core rte config 2 1 0 2 dce client dfs rte 2 1 0 6 The following filesets must be installed on the AIX 4 3 DCE RPC managed node dce client core rte 2 1 ARPA Berkeley Services The MIB monitoring functionality of ITO requires SNMP based MIB I RFC 1156 or MIB II RFC 1158 compliant agent software ...

Страница 35: ...se base system only for managed nodes running Digital Unix in a Japanese environment IOSJPBASE4xx Japanese Base System Software Requirements for HP UX 10 x Managed Nodes The following software must be installed on HP UX 10 x managed nodes Operating system For the supported OS versions see Table 1 1 on page 31 DCE RPC version 1 2 1 or higher on HP UX 10 x SD package DCE Core DCE CORE RUN Internet S...

Страница 36: ...ternet Services SD package InternetSrvcs INETSRVCS RUN LAN 9000 SD package Networking NET RUN SNMP agent for MIB monitoring SD Package for HP UX 11 x and lower NetworkingSnmpAgent SD Package for HP UX 11 x and higher OVSNMPAgent Native Language Support NLS Package SD package OS Core NLS AUX Software Requirements for MPE iX Managed Nodes The following software must be installed on MPE iX managed no...

Страница 37: ...ell NetWare managed node Operating System For the supported OS versions see Table 1 1 on page 31 TCP IP services configured running and automatically started Network FRAMING types must be configured Ethernet II frame type is required CLIB NLM version 4 10 or higher Novell TIRPC If this product is missing ITO copies the required files during the installation process SNMP daemon configured running a...

Страница 38: ...IX managed nodes Operating System For the supported OS versions see Table 1 1 on page 31 Olivetti networking support utilities nsu 2 4 Olivetti internet utilities software inet 2 4 Gradient NCS 1 5 1 package SVR4 for x86 NckNidl GR 1 3 1 If NCS is not yet installed on the managed node ITO installs llbd and lb_admin during ITO software installation For use in NFS cluster client operations the Olive...

Страница 39: ...tFinity installed Software Requirements for Pyramid DataCenter OSx Managed Nodes The following software must be installed on Pyramid DataCenter OSx managed nodes Operating System For the supported OS versions see Table 1 1 on page 31 Pyramid TCP IP software OpenNet TCP IP 1 0 Gradient NCS 1 5 1 package SVR4 for MIPS NckNidl GR1 3 0 If NCS is not yet installed on the managed node ITO installs llbd ...

Страница 40: ...stalled on the managed node nfs 2 1 Software Requirements for Sequent DYNIX ptx Managed Nodes The following software must be installed on Sequent managed nodes Operating System For the supported OS versions see Table 1 1 on page 31 Sequent local area network product ptx LAN version 4 0 1 or higher Sequent TCP IP product ptx TCP IP version 4 0 3 or higher Gradient NCS 1 5 1 package NckNidl If NCS i...

Страница 41: ...anaged Nodes The following software must be installed on SINIX Reliant managed nodes Operating System For the supported OS versions see Table 1 1 on page 31 Siemens Nixdorf networking packages 5 43 tcp SImac596 NCS 1 5 1 If NCS is chosen as the Node Type in the ITO GUI and NCS 1 5 1 is not found on the managed node ITO installs llbd and lb_admin during the ITO agent software installation DCE DCE C...

Страница 42: ...aged Nodes The following software must be installed on Windows NT managed nodes Required Service Packs Windows NT 3 51 Service Pack 5 Windows NT 4 0 Service Pack 3 or 4 Operating system for the supported OS versions see Table 1 1 on page 31 FTP Service running required during ftp Agent Package type installation Schedule Service must not be disabled required during installation TCP IP services runn...

Страница 43: ...43 2 Installing ITO Agents on the Managed Nodes ...

Страница 44: ... on the various supported managed nodes and includes numerous tips for different operating systems The installation procedures assume that you have already installed and configured the database and ITO on the management server as described in the HP OpenView IT Operations Installation Guide for the Management Server ...

Страница 45: ...llation procedures for managed nodes Make sure that the kernel parameters are set correctly on UNIX systems Although system default values are normally sufficient the logfile encapsulator sometimes requires that the number of open files be increased You can check and change the system parameters using the tools listed in Table 2 1 on page 45 Table 2 1 System Administration Tools Operating System T...

Страница 46: ...ormally a value of 20 per process is sufficient However the more log files con figured for the logfile encapsulator the more file descriptors are needed Normally one logfile requires about one file descriptor Any actions which result in processes being started on the managed node need additional file descriptors SCO UnixWare sysadm SINIX sysadm Solaris admintool Operating System Tool Parameter Des...

Страница 47: ... using the nslookup command On systems running Windows NT OS 2 or NetWare use the ping command or NLM The DCE RPC daemon dced or rpcd must be running when installing or updating the ITO Software on the management server Either the DCE RPC daemon dced or rpcd or NCS Local Location Broker daemon llbd must be running when installing or updating the ITO Software on the management server and or managed...

Страница 48: ...templates only when performing automatic and or operator initiated actions Do not up or downgrade the OS version of the management server or managed node to a level not supported by ITO For a list of supported OS versions on the management server see the HP OpenView IT Operations Installation Guide for the Management Server and on the managed nodes see Table 1 1 Supported ITO Agent Operating Syste...

Страница 49: ...his file see Table 10 3 on page 399 If you do not need the functionality of the ITO default operator on your managed nodes except on the management server you can purge the related information UNIX erase the home directory of the user opc_op remove the opc_op entry from etc passwd remove the opcgrp entry from etc group MPE iX purge the account OVOPR NOTE The ITO default operator may not be removed...

Страница 50: ...odes at the time you are asked for a password your terminal settings will be corrupted and any commands that you type will not be echoed in the terminal If this happens you can reset the terminal by typing the following stty echo Do not de install any of the management server bits for example OVOPC ORA or OVOPC if any managed node is still configured and has the appropriate ITO bits Do not de inst...

Страница 51: ... By default ITO registers the default operator opc_op with user ID 777 and group ID 77 if available for AIX and user ID 777 and group ID 177 if available for SINIX Olivetti Pyramid and SCO UnixWare For consistency make sure that the user ID and group ID are identical on all your managed nodes NOTE If you wish to install or re install the ITO agent manually on nodes with the ITO Advanced Network Se...

Страница 52: ...ected for cluster clients even if the software is already installed on the cluster server because node specific directories symbolic links mounts etc are established for each cluster node You can however respond with n to the question Do you want to force update The ITO agent software package is only installed on the cluster server when the first cluster member cluster client or cluster server is ...

Страница 53: ... installed in the same directories as the previous version Disk space occupied by previous versions of ITO agents under export lpp OV rs6000 aix will be freed AIX diskless nodes may initially be created so that root password is not required It is possible to remote login on these systems but command execution with remsh will not be possible because rhosts is initially not present on the diskless c...

Страница 54: ...or ibm rs6000 aix A 05 00 RPC_DCE_ TCP UDP nsp_pkg Z 2 Uncompress the agent package uncompress opc_pkg Z If appropriate uncompress the ANS package too uncompress nsp_pkg Z 3 Install the agent on the node installp ac I X F d directory opc_pkg all If appropriate install ANS on the node too installp ac I X F d directory nsp_pkg all Activate the Node Using the Command Line You can activate the agent o...

Страница 55: ...ement server a opt OV bin OpC opcsw installed node b opt OV bin OpC opchbp start node This will update the database and start heartbeat polling for the node The templates monitors commands and actions must still be installed using the ITO administrator GUI Activate the Node Using the ITO GUI After the node with the pre installed agent is connected to the network use this procedure to activate and ...

Страница 56: ...he rpcd daemon does not exist on AIX 4 the SMIT utility erroneously tries to run it in the option entitled Restart RPC Daemons in the local machine Start the dced daemon instead using the script etc rc dce or the SMIT option Restart the DCE DFS Daemons Problems Caused by Missing OS Patches for AIX Sometimes the ITO agent de installation procedure on AIX 4 1 systems does not return freed disk space...

Страница 57: ... be skipped But it is important that the IP address on this adapter does not change If no such adapter is available each node should be assigned an IP alias in the same network in which the boot and service IP addresses reside In addition the node must be configured in such a way that this IP alias address is assigned to the service adapter as an alias for the boot IP address Once a fixed IP addre...

Страница 58: ... alias that is used by the ITO agents during and after the installation process on each node on which you wish to run the ITO agent To set the IP alias on AIX v4 3 1 Use the smit menus 2 In a shell enter the following command smit tcpip Then select from the menu bar Further Configuration Network Interface Selection Configure Aliases Add an IPV4 Network Alias 3 Select the desired interface eg en0 4...

Страница 59: ...ages AIX 4 2 IX75987 AIX 4 3 IX78397 Only after the fixes for the AIX OS have been installed will HACMP function properly some HACMP functionality does not work on managed nodes without the AIX OS fixes installed e g swap adapter event Pre Installation Instructions for Managed Nodes with the AIX OS Patch for IP Aliases All HACMP events work once the AIX OS fixes are installed and the IP alias is s...

Страница 60: ...ng the following command in a shell smit hacmp Then select Cluster Configuration Cluster Resources Change Show Cluster Events Next select the appropriate option from the list and fill in the Post event Command field You can put the shell script in the following directory usr sbin cluster local Note that from time to time entries like this will appear in the file var lpp OV log OpC opcerror WARNING...

Страница 61: ...s used for the installation of the ITO agent If this IP address changes this line should be changed accordingly Note that this line must be present in order to ensure that the IP address is the same in the context of both ITO and ANS ITO s Advanced Network Security extension This ensures that the same hostname is used by all security functions that require hostname as their argument e g secret key...

Страница 62: ...sing the instructions in Manual Installation Windows NT Agent on page 111 all references to intel in the path name should be replaced with alpha For example ms intel nt should be changed to ms alpha nt Installation Tips for Digital UNIX Managed Nodes The ITO Agent software is installed on the usr opt file tree If there is not enough space for installation of the ITO agents create a symbolic link b...

Страница 63: ... bigdisk is a local file system with enough free space mkdir p bigdisk OV ln s bigdisk OV opt OV In a cluster environment you must check that bigdisk is also accessible from all cluster clients and that it is mounted from all client nodes For example the local file system bigdisk on the cluster client must be mounted to the exported file system bigdisk on the cluster server Installation Tips for H...

Страница 64: ...s installed once on a depot node in the remote LAN Subsequent agent installations then get the package from the local depot Figure 2 1 Standard ITO Agent Installation Method Wide Area Network WAN Local Area Network LAN ITO Node N ITO Node 2 ITO Node 1 Management Server ITO Package ITO Agent Data Transmission Key ...

Страница 65: ...erver over the WAN to the depot node using FTP The ITO software package opc_pkg Z is located in the following directory on the management server for HP UX 10 x managed nodes var opt OV share databases OpC mgd_node vendor hp s 7 8 00 hp ux10 ito_version RPC_DCE_ TCP UDP opc_pkg Z for HP UX 11 x managed nodes var opt OV share databases OpC mgd_node vendor hp pa risc hp ux11 ito_version RPC_DCE_ TCP ...

Страница 66: ...pot Once the SD depot is established all ITO agents within the LAN can retrieve the ITO binary package from the SD depot instead of from the management server see Figure 2 1 and Figure 2 2 This part of the installation process is performed automatically The install operation is initiated from the administrator s GUI on the ITO management server The management server contacts the managed node and i...

Страница 67: ...the agent without a depot and without any network connection However if you plan to pre install many agents you may find it more convenient to create and use a depot see Creating a Software Depot on a Remote Node on page 65 Using an SD tape file a Copy the ITO agent package to a temporary directory on the managed node On the management server this agent package is located in for HP UX 10 x managed...

Страница 68: ... on the node too swinstall s depot_host depot_path ITOAgentNSP b Examine the node s logfile var adm sw swagent log If any errors occurred during installation correct the problems and reinstall TIP Installing the agent from the command line is somewhat faster than with the SD GUI but it has the disadvantage that it does not notify you of any warnings found in the analysis phase unless you run it tw...

Страница 69: ...database and start heartbeat polling for the node The templates monitors commands etc must still be installed using the management server GUI Activate the Node Using the ITO GUI After the node with the pre installed agent is connected to the network use this procedure to activate and register the managed node 1 Add the pre installed node s to the ITO Node Bank using the menu sequence Actions Node ...

Страница 70: ...ent must be mounted to the exported file system bigdisk on the cluster server Installation Tips for MPE iX Managed Nodes NOTE Interactive log on and log off UDCs are not supported by ITO For this reason logon and logoff UDCs must be disabled during both software installation and application starts using the vt3k connection For software installation disable the logon logoff UDCs for manager sys mrg...

Страница 71: ...ee the section System Maintenance on page 460 ITO agents run in the job OPCAGTJ AGENT OVOPC for this reason the HPJOBLIMIT must probably be adapted to guarantee that all jobs including ITO agents can be started as when not running ITO s intelligent agents The ITO action agent also streams separate jobs for application startup and command broadcasting Adapt the HPJOBLIMIT accordingly The system boo...

Страница 72: ...ing hard coded passwords See the Node Advanced Options window accessed from the Add Modify Node or Node Defaults window If you do this there are no passwords placed in the ITO job files and control over the job is given to your own stream facility Alternatively you may leave the ITO default If you leave the default passwords remain unencrypted and the file OPCSTRTJ BIN OVOPC contains the AGENT OVO...

Страница 73: ...race logfiles receive the wrong creation time stamp This can cause problems when working with multiple management servers Insert the following call at a global location for example the logon UDC or SYSSTART PUB SYS call setvar TZ TIMEZONE Required MPE iX Patches Patch MPEKXE5A must be installed on all MPE iX 5 5 systems This patch adds routines to the system SL PUB SYS that the console interceptor...

Страница 74: ...Logs NCR UNIX SVR4 for the node The ITO agent software is installed on the opt file tree If the file system that hosts the opt file tree is too small for the installation of ITO Agents create a symbolic link before installing ITO For example if bigdisk is a local file system with enough free space mkdir p bigdisk OV ln s bigdisk OV opt OV In a cluster environment you must check that bigdisk is als...

Страница 75: ...he managed nodes NetWare Depot Server phase Installing NetBasic on the NetWare depot server Unzipping the ITO agent package Installing the ITO agent software on the managed nodes Installing the ITO agent software ping only Assigning and transferring templates to the managed nodes Note that installing the ITO agent on Novell NetWare SFT III does not differ from the standard agent installation on No...

Страница 76: ...loppy or FTP NetWare Depot Server 3 Install NetBasic 4 Unzip opc_pkg Z NetWare server 1 NetWare server 2 NetWare server N ITO Management Server 1 Admin GUI 1st part add NetWare managed nodes 5 Run ITOINST install de install agent software on managed nodes run Actions Install for all managed nodes select Agent Software ping only 6 Admin GUI 2nd part template distribution run Actions Assign Template...

Страница 77: ... novell intel nw A 05 00 RPC_SUN_TCP opc_pkg Z The above directory also contains the files unzip nlm and unzip txt which are used to unzip the opc_pkg Z file on the NetWare depot server Copy the files to the sys system directory on the NetWare depot server The NetWare Depot Server Phase The NetWare depot server is a NetWare server which installs the ITO agent software on other NetWare servers It s...

Страница 78: ... the drive letter mapped to SYS If the version you have is 6 00j Build 4 127 or above you do not need to install NetBasic You also need a Windows 95 or Windows NT version 4 0 system acting as a NetWare client to perform the NetBasic installation 3 Install NetBasic on the NetWare depot server a NetBasic is located in the following directory on the ITO management server var opt OV share databases Op...

Страница 79: ... NT 4 0 system is no longer needed 4 Unzip opc_pkg z enter load unzip sys tmp opc_pkg Z Note that this assumes that opc_pkg Z has been copied to the directory sys tmp Figure 2 4 on page 79 shows the file tree layout of the directory SYS volume after opc_pkg Z has been unzipped Figure 2 4 File Tree Layout of the ITO NetWare Depot Server SYS DEPOINST ITO ITO ITO files ITOINST various NLMs itoinst it...

Страница 80: ...T BINDERY CONTEXT ou organizational_unit o organization must be present in SYS SYSTEM AUTOEXEC NCF on each NetWare server This is the default Novell setting If you use NDS ADMIN login name and password for the directory tree the software described in Software Requirements for Novell NetWare Managed Nodes on page 37 is installed and running on each NetWare managed node 5 Install the ITO agent softw...

Страница 81: ...zation For example cn admin ou ITO o hp The distinguished login name is made up of the full path from the root of the directory tree g Schedule a shutdown of the NetWare servers to take place after the installation This is optional If you have selected this option the installation procedure asks for the date and time of the shutdown the format of the date and time string is MM DD YYYY hh mm ss Not...

Страница 82: ...ssage and proceeds to the next selected NetWare server If you are using NDS the superuser ADMIN is already logged in and the installation proceeds with the following step Checks that ITO agent processes are not running already If OPCAGT NLM is running on the selected NetWare server currently active ITO NLMs must be stopped manually on the NetWare server in order to re install the ITO agent Checks ...

Страница 83: ...xity and the problems that this may cause Checks for TIRPC The ITO management server requires the TIRPC module If the installation process does not find the module and it is not located in SYS SYSTEM a warning is displayed You can safely ignore this warning message because the TIRPC module was already copied when unzipping the package Checks for XCONSOLE The active modules list and the AUTOEXEC NC...

Страница 84: ...parameter cache buffers If the calculated amount is more than 30 of NetWare parameter total server work memory the installation proceeds otherwise the installation for the current NetWare server is aborted and the next selected NetWare server is processed Copies files If the source file is a NLM file the installation checks if NLM already exists on the target NetWare system If it does the NetWare ...

Страница 85: ...s the same security level as the user ADMIN All these actions are performed in bindery or NDS mode CAUTION Do not forget to manually change the password for the user OPC_OP j When all selected servers have been processed a special NLM is invoked at the depot server to perform a shutdown at the time you previously scheduled The shutdown is only performed if no files are opened on the NetWare server...

Страница 86: ...perience problems with the ITO event interceptor check that SNMPLOG NLM is not loaded If you need SNMPLOG NLM to report traps disable the ITO event interceptor Setting usr adm inetd sec on the Management Server The ITO agent monitors the connection from the NetWare server to ITO management server by sending the UDP echo packages The UDP echo service must therefore be enabled on the ITO management ...

Страница 87: ...PT OV CONF OPC AGTREG is not encrypted Tracing cannot be switched on off during agent operation The opcagt 1 command implementation differs from the implementation on other platforms Only one instance of the opcagt command can be started on NetWare Starting the opcagt 1 command starts the ITO agent service It is a common practice in NetWare that a service opens its own virtual screen on the consol...

Страница 88: ...ible from all cluster clients and that it is mounted from all client nodes For example the local file system bigdisk on the cluster client must be mounted to the exported file system bigdisk on the cluster server Some of the logfiles checked by the logfile encapsulator are not by default present on Olivetti managed nodes for example var adm messages It is important that all logfiles that are check...

Страница 89: ...me must be provided for the installation FTP must be enabled for the user who is installing the agent software and ftpd must be running FTP access can be configured in the TCP IP Configuration notebook Security tab or by hand by adding a new user in the MPTN ETC TRUSERS file The user must be allowed to execute commands remotely from the management server via remsh without supplying a password Acce...

Страница 90: ... the ITO agent software is installed manually so that the management server may be informed about a successful installation If it is not running a warning is displayed along with instructions concerning how to inform the management server manually 1 Copy the following files from the management server to a temporary directory on the OS 2 managed node installation script opcinst cmd var opt OV share...

Страница 91: ...ng is an example of a typical response file INSTALLATION_TMP_DIR C TMP OPC_INSTALLATION_DRIVE C MANAGEMENT_SERVER management server com interactively by calling the opcinst cmd command and responding directly to the prompts of the installation script opcinst cmd Table 2 3 Command Options for the OS 2 Agent Installation Option Response File Token Possible Values Value Type DRIVE OPC_INSTALLATION_DR...

Страница 92: ...r example the local file system bigdisk on the cluster client must be mounted to the exported file system bigdisk on the cluster server Some of the logfiles checked by the logfile encapsulator are not by default present on Pyramid managed nodes for example var adm badlog It is important that all logfiles that are checked by the logfile encapsulator agent are present on the managed node To add the ...

Страница 93: ...disk is also accessible from all cluster clients and that it is mounted from all client nodes For example the local file system bigdisk on the cluster client must be mounted to the exported file system bigdisk on the cluster server Installation Tips for SCO UnixWare Managed Nodes The ITO agent software is installed on the opt file tree If there is not enough space for the installation of the ITO a...

Страница 94: ...you must check that bigdisk is also accessible from all cluster clients and that it is mounted from all client nodes For example the local file system bigdisk on the cluster client must be mounted to the exported file system bigdisk on the cluster server Some of the logfiles checked by the logfile encapsulator are not by default present on SINIX managed nodes for example var adm loginlog It is imp...

Страница 95: ...de vendor ncr 3000 sinix A 05 00 RPC_ NCS DCE_TCP DCE_UDP opc_pkg Z Installation Tips for Solaris Managed Nodes Package SUNWaccu MUST be installed on the system if process table and CPU utilization are to be monitored by ITO If this package is not installed and monitoring templates proc_util and cpu_util are configured warning messages will appear in the Message Browser stating that the correspond...

Страница 96: ...if many workstations are prepared in a central location or if you want to avoid using the root connection over the network that is necessary for a standard agent installation Install the Agent on the Managed Node Use the following instructions to install the ITO Solaris agent on a Solaris workstation that will become an ITO managed node 1 Copy the ITO appropriate agent package NCS DCE TCP UDP to a...

Страница 97: ...e s to the ITO Node Bank using the menu sequence Actions Node Add 2 Add the node to an ITO node group The easiest way to do this is to drag and drop it onto a node group in the ITO Node Group Bank window 3 Distribute the ITO configuration to the node a Select Actions Agents Install from the menu bar of the ITO Node Bank The Install Update ITO Software and Configuration window opens b Select all co...

Страница 98: ...client for ITO agents on AIX Cluster Client systems after the ITO agent software package has been installed on the AIX Cluster Server system For more information see Manually Activating the ITO Agent on NFS Cluster Clients on page 169 See the man page opcactivate 1m for more information 2 After the node is connected to the network execute the following two commands on the management server a opt O...

Страница 99: ... a primary or backup domain controller with the ITO agent package installed Table 2 4 NT Agent Installation Options Use the described on to install or upgrade the NT agent package on ftp installation page 103 a primary or backup domain controller a primary or backup domain controller that does not give administrative rightsa to the HP ITO account on an installation server in another domain a stand...

Страница 100: ... estab lished by using the User Manager for Domains on the pri mary domain controller of the trusted and trusting domains ftp re installation page 109 a primary or backup domain controller for the second time a primary or backup domain controller that does not give administrative rights to the HP ITO account of a domain with an installation server a stand alone system manual installation page 111 ...

Страница 101: ...ilable to the node Ten MB free disk space must be temporarily available on local C drive during installation via the installation server Windows NT Windows NT ftp installation TRUST standard installation Stand alone Windows NT System ftp installation Domain 1 Domain 2 standard installation Possible only if Domain 2 gives administrative rights to the HP ITO account in Domain 1 standard installation...

Страница 102: ... or a backup domain controller ftp services must be running on the primary or backup domain controller if the agent package is being installed from the ITO management server this will always be true for the first installation The ftp service must have read write permission for drive that contains the ftp home directory Requirements for the ITO Management Server The ITO management server must be in...

Страница 103: ...re that your systems meet all the listed requirements 2 Select Window Node Bank from any submap to display the ITO Node Bank window 3 Select Actions Node Add to display the Add Node window 4 Fill in the following fields of the Add Node window Label enter the name of the node as it will appear in the ITO Node bank In this example ntserver is used Hostname enter the complete hostname of the Windows ...

Страница 104: ... The ITO Node Bank window now shows a new symbol with the label you entered in the Label field in this example ntserver 7 Add the new node to a node group so that it can be managed by an ITO operator a Open the ITO Node Group Bank window and double click the node group to which you want to add the node Add a new node group if you do not want to use one of the ITO default node groups Remember to as...

Страница 105: ...hen install the agent package on the NT node NOTE The agent can also be installed via anonymous ftp if you have read write access to the ftp home directory drive Use user ftp and password ftp NOTE The next five steps must be performed on the NT machine If the NT system is not physically near you you can ask someone near the machine to perform these steps 12 At the NT machine log in as the administ...

Страница 106: ...procedure a Windows NT installation server must be available either in the domain of the system you are installing or in some other domain where the HP ITO account has administrative rights on the system where you want to install the agent NOTE Ensure that the latest version of the ITO agent software is installed on the installation server See ftp Agent Package Installation on page 103 for instruc...

Страница 107: ... the following fields of the Add Node window Label enter the name of the node as it will appear in the ITO Node Bank In this example ntworkstation is used Hostname enter the complete hostname of the Windows NT system where you want to install the agent This example will use the hostname ntworkstation com After entering this name and pressing return ITO will look up and verify the IP Address as wel...

Страница 108: ...to assign any new node groups to an operator b Drag the node from the ITO Node Bank window and drop it into the submap of the node group 8 You can monitor the rest of the installation by looking at messages received in the message browser If you added a new group configure the message browser to receive messages from this new group If the message browser is open it will prompt you for a restart wh...

Страница 109: ...server If you wish to examine the installation log use the ITO Install Log application in the ITO Application Group NT Tools Window ftp Agent Package Re installation This procedure uses a Windows NT installation server to re install or upgrade the agent package that were originally installed on Windows NT systems using the ftp installation method NOTE If the installation program aborts during the ...

Страница 110: ... field blank ITO will search the available local drives for a disk that has enough free space If you are re installing the ITO agent software enter the letter of the NTFS drive where the agent software was installed NOTE If you want to re install on a different NTFS drive de install the ITO agent software first and then proceed with the ftp installation Installation Server enter the complete hostn...

Страница 111: ...he node icon and double clicking the ITO Status application in the ITO Application Bank Window This application returns the status of the ITO agent processes If they are running you know that the NT agent is installed and that the NT domain controller is functioning as the NT installation server If you wish to examine the installation log use the ITO Install Log application in the ITO Application ...

Страница 112: ...pcsetup inf opc_inst bat nsp_pkg Z Only for nodes with ITO Advanced Network Security ANS installed Note that you wil have to rename this file manually to nsp_pkg zip Always use RPC_DCE_TCP as communication type if Service Pack 1 or 2 is installed on your Windows NT version 3 51 or 4 0 managed node Using RPC_DCE_UDP may cause problems with the operating system 2 Edit the opcsetup inf file changing ...

Страница 113: ...or sjis for Japanese OPC_NODE_CHARSET acp1252 or acp932 for Japanese OPC_COMM_TYPE RPC_DCE_TCP OPC_NSP_TYPE NONE SECRET 1 for ANS only OPC_NSP_VERSION 0 for ANS only 1 One or the other depending on your ANS setting requirements NOTE If the ITO agent version A 04 x or lower is already installed on the managed node run the following commands to stop the ITO agent on the node and remove the old nodei...

Страница 114: ...mber of the administrators group only those user rights listed in Table 2 5 on page 114 are required by the account to function correctly All other user rights associated by default with the HP ITO account may be removed or granted as required Table 2 5 Required User Rights for the HP ITO Account User Right is required in ITO Access this computer from the network by the NT installation server Act ...

Страница 115: ...115 3 File Tree Layouts on the Managed Node Platforms ...

Страница 116: ... Olivetti UNIX OS 2 Pyramid DataCenter OSx SCO OpenServer UnixWare Sequent DYNIX ptx Siemens Nixdorf SINIX Reliant UNIX SGI IRIX Solaris Windows NT The diagrams showing the file tree layouts of the various operating systems in this section use the symbol B to represent the directory structure indicated in the following diagram For each platform information is provided about the ITO default operato...

Страница 117: ... Layouts on the Managed Node Platforms NFS cluster clients and server systems where appropriate For detailed information about the directory contents see the opc 5 page Note that all man pages reside on the management server ...

Страница 118: ... a different location from previous releases export lpp OV rs6000 aix This simplification was possible because ITO software can now operate from the read only usr file system on cluster clients NFS Cluster Client on AIX AIX cluster clients both diskless dataless and diskpoor are those AIX systems that have usr file system NFS mounted Their cluster server is the system to which usr is mounted No ad...

Страница 119: ... Resources Adapted by ITO on AIX ITO applies changes in the following system resource files etc passwd and etc security passwd entry for ITO default operator etc group and etc security group group entry for ITO default operator etc inittab ITO Agent startup entry only done if the Automatic Update of System Resource Files option has been set etc rc opc ITO startup file called by etc inittab Note th...

Страница 120: ...perator on DEC Alpha NT Managed Nodes Information concerning default ITO operators for DEC Alpha NT is the same as the information concerning default ITO operators for Windows NT on intel and is described in ITO Default Operator on Windows NT on page 161 alpha bin conf tmp log usr OV OpC OpC OpC node node OpC lib nls lang bin conf node include alpha install databases OpC mgd_node vendor country co...

Страница 121: ... Nodes System Resources Adapted by ITO on DEC Alpha NT Managed Nodes Information concerning adapted system resources for DEC Alpha NT is the same as the information concerning adapted system resources for Windows NT on intel and is described in System Resources Adapted by ITO on Windows NT on page 161 ...

Страница 122: ... file system with read only permissions ITO software is located on the usr opt OV path with the logical path name the same as the physical path name NOTE By default Digital UNIX does not export the usr opt or the usr file system You can enable ITO cluster operations manually by exporting the usr opt or usr file system to one Digital UNIX system and then mount it from other Digital UNIX systems You...

Страница 123: ...t operator opc_op and the group opcgrp are created as the ITO default operator if they don t already exist Table 3 1 ITO Entry in etc passwd on Digital UNIX Managed Nodes Table 3 2 ITO Entry in etc group on Digital UNIX Managed Nodes Field Entry User Name opc_op Encrypted Password no login User ID 777 if still available or next possible free number Group ID 77 if still available or next possible f...

Страница 124: ...es in the following system resource files during installation etc passwd and etc shadow if present Protected Password Database if present entry for the default ITO operator etc group group entry for the default ITO operator sbin init d opcagt ITO startup shutdown script sbin rc0 d file K01opcagt created sbin rc2 d file K01opcagt created sbin rc3 d file S97opcagt created ...

Страница 125: ...e software trees shown above is combined with the management server file tree at installation For a diagram of the management server file tree see the HP OpenView IT Operations Installation Guide for the Management Server NFS Cluster Servers on HP UX 10 x In an NFS diskless environment each cluster client has its own private root directory containing files and directories that are private to that ...

Страница 126: ...igure cluster clients for HP UX 10 01 and above using SAM Figure 3 5 Exported File System From HP UX 10 x Cluster Server to Cluster Clients NOTE The cluster server must also be configured as an ITO managed node if you are monitoring cluster clients as the tree is only writable for the cluster server NFS Cluster Client on HP UX 10 x In general cluster clients mount directories and swap space from t...

Страница 127: ...rator opc_op on the NIS server before installing the ITO software on a managed node This ensures that the ITO default operator opc_op is used by ITO and is consistent on all systems System Resources Adapted by ITO on HP UX 10 x and 11 x ITO makes changes in the following system resource files etc passwd entry for the default ITO operator etc group entry for the default ITO operator sbin init d opc...

Страница 128: ...O on MPE iX ITO makes changes to the following system resource files SYSSTART PUB SYS ITO agent startup modification is only done if the Automatic Update of System Resource Files option has been set ARPA to NS Node Name Mapping for MPE iX ITO uses the vt3k operation for software de installation purposes and for a virtual terminal connection from the operator s Application Desktop or the administra...

Страница 129: ...OV share conf xnmvt3 k conf ITO resolves the ARPA host name to NS node name as follows 1 It searches for the first line in the vt3k conf file that begins with a matching ARPA hostname If a matching name is found the NS node name in the second column is input to the vt3k operation 2 If no matching ARPA hostname is found in the vt3k conf file the search is repeated with only the first part of the AR...

Страница 130: ... Figure 3 7 ARPA to NS Node Name Mapping ARPA NS node name Comment hpbbli smarty different node names but same domain hpsgmx18 sgp hp com hpsgmx18 sgp hpcom same node names but Managed Node belongs to different domain as management server topaz sgp hp com nstopaz mis hpsg node names and domains differ ...

Страница 131: ...h with the same logical and physical path names NOTE By default NCR UNIX does not export the opt file system ITO cluster operations can only be enabled by manually exporting the opt file system on one NCR system and then mounting it from one or more NCR systems This manual cluster setup must be done before the ITO installation process in order to have an impact on the ITO installation NFS Cluster ...

Страница 132: ...em Resources Adapted by ITO on NCR UNIX SVR4 ITO makes changes to the following system resource files etc passwd and etc shadow entry for the default ITO operator etc group group entry for the default ITO operator etc init d opc ITO startup script etc rc2 d file S93opc is created etc rc0 d file K07opc is created etc rc1 d file K07opc is created etc init d ncs NCS startup script if not already pres...

Страница 133: ...s the same security level as the user ADMIN This account is a normal user account and is used to execute applications ITO Default Operator on Novell NetWare Table 3 3 ITO Entry in the User Manager for Domains on Novell NetWare Managed Nodes BIN CONF TMP LOG SYS OPT OV OPC OPC OPC OpC INSTALL LIB lang BIN CONF B SYS VAR OPT OV INCLUDE NLS B bin OpC UTILS Field Entry User Name OPC_OP Encrypted Passw...

Страница 134: ...ole if the user does not yet have a correctly installed remote console LOAD XCONSOLE is added to invoke the X windows console if you have not yet correctly installed this product SYS ETC HOSTS server_name IP_address is added for the NetWare server that is currently installed with ITO agent software if this line is not already present in this file mng_server_name IP_address is added when you answer...

Страница 135: ... The cluster server exports the opt file system with read only permissions ITO software is located on the opt OV path with the same logical and physical path names NOTE By default Olivetti UNIX does not export the opt file system You can enable ITO cluster operations manually by exporting the opt file system to one Olivetti UNIX system and then mount it from other Olivetti UNIX systems You must se...

Страница 136: ...perator opc_op and the group opcgrp are created as the ITO default operator if they don t already exist Table 3 4 ITO Entry in etc passwd on Olivetti UNIX Managed Nodes Table 3 5 ITO Entry in etc group on Olivetti UNIX Managed Nodes Field Entry User Name opc_op Encrypted Password no login User ID 777 if still available or next possible free number Group ID 177 if still available or next possible f...

Страница 137: ...Password Database if present entry for the default ITO operator etc group group entry for the default ITO operator etc init d opcagt ITO startup shutdown script etc rc0 d file K09opcagt created etc rc1 d file K09opcagt created etc rc2 d file S99opcagt created etc init d ncs NCS startup shutdown script if not already present etc rc0 d file K52ncs created if not already present etc rc1 d file K52ncs...

Страница 138: ...OS 2 Managed Nodes OS 2 does not support a user concept so that no ITO default operator exists on OS 2 managed nodes System Resources adapted by ITO on OS 2 Managed Nodes During agent software installation ITO modifies the STARTUP CMD file if the box Automatic Update of System Resource Files is checked in the ITO GUI bin lib OpC nls C install utils conf log bin tmp OpC OpC OpC OpC bin B var opt OV...

Страница 139: ...s The cluster server exports the opt file system with read only permissions ITO software is located on the opt OV path with the logical path name the same as the physical path name NOTE By default Pyramid DataCenter OSx does not export the opt file system You can enable ITO cluster operations manually by exporting the opt file system to one Pyramid DataCenter OSx system and then mount it from othe...

Страница 140: ...lt Operator on Pyramid DataCenter OSx The ITO default operator opc_op and the group opcgrp are created as the ITO default operator if they don t already exist Table 3 6 ITO Entry in etc passwd on Pyramid DataCenter OSx Managed Nodes Table 3 7 ITO Entry in etc group on Pyramid DataCenter OSx Managed Nodes Field Entry User Name opc_op Encrypted Password no login User ID 777 if still available or nex...

Страница 141: ... for the default ITO operator etc group group entry for the default ITO operator etc init d opcagt ITO startup shutdown script etc rc0 d file K09opcagt created etc rc1 d file K09opcagt created etc rc2 d file S89opcagt created etc init d ncs NCS startup shutdown script if not already present etc rc0 d file K52ncs created if not already present etc rc1 d file K52ncs created if not already present et...

Страница 142: ...rs The cluster server exports the opt file system with read only permissions The ITO software is located in the opt OV path with the same logical and physical path names NOTE By default SCO OpenServer does not export the opt file system You can enable ITO cluster operations manually by exporting the opt file system on one SCO OpenServer system then mount it from other SCO OpenServer systems You mu...

Страница 143: ...lready exist Table 3 8 ITO Entry in etc passwd on SCO OpenServer Managed Nodes Table 3 9 ITO Entry in etc group on SCO OpenServer Managed Nodes a HOME_DIR is set to the path name specified in etc default authsh with the HOME_DIR The HOME_DIR vari able reflects the current settings on the system in question If etc default authsh is not present or HOME_DIR is not set then usr is assumed Field Entry ...

Страница 144: ...nd etc shadow if present Protected Password Database if present entry for the default ITO operator etc group group entry for the default ITO operator etc init d opcagt ITO startup shutdown script etc rc0 d file K09opcagt created etc rc2 d file S94opcagt created etc init d ncs NCS startup shutdown script etc rc0 d file K24ncs created etc rc2 d file S93ncs created Group ID 77 or higher Users opc_op ...

Страница 145: ...rvers The cluster server exports the opt file system with read only privileges The ITO software is located in the opt OV path with the same logical and physical path names NOTE By default SCO UnixWare does not export the opt file system You can enable ITO cluster operations manually by exporting the opt file system on one SCO UnixWare system then mount it from other SCO UnixWare systems You must d...

Страница 146: ...c_op and the group opcgrp are created as the ITO default operator if they don t already exist Table 3 10 ITO Entry in etc passwd on SCO UnixWare Managed Nodes Table 3 11 ITO Entry in etc group on SCO UnixWare Managed Nodes Field Entry User Name opc_op Encrypted Password no login User ID 777 if still available or next possible free number Group ID 177 if still available or next possible free number...

Страница 147: ...anges in the following system resource files during installation etc passwd and etc shadow if present Protected Password Database if present entry for the default ITO operator etc group group entry for the default ITO operator etc init d opcagt ITO startup shutdown script etc rc0 d file K09opcagt created etc rc1 d file K09opcagt created etc rc2 d file S95opcagt created ...

Страница 148: ...vers The cluster server exports the opt file system with read only permissions ITO software is located on the opt OV path with the logical path name the same as the physical path name NOTE By default Sequent DYNIX ptx does not export the opt file system You can enable ITO cluster operations manually by exporting the opt file system to one DYNIX ptx system and then mount it from other DYNIX ptx sys...

Страница 149: ...perator opc_op and the group opcgrp are created as the ITO default operator if they don t already exist Table 3 12 ITO Entry in etc passwd on Sequent DYNIX ptx Managed Nodes Table 3 13 ITO Entry in etc group on Sequent DYNIX ptx Managed Nodes Field Entry User Name opc_op Encrypted Password no login User ID 777 if still available or next possible free number Group ID 77 if still available or next p...

Страница 150: ...esource files during installation etc passwd and etc shadow if present Protected Password Database if present entry for the default ITO operator etc group group entry for the default ITO operator etc init d opcagt ITO startup shutdown script etc rc0 d file K07opcagt created etc rc2 d file S93opcagt created etc init d ncs NCS startup shutdown script etc rc0 d file K52ncs created etc rc2 d file S76n...

Страница 151: ...software is located in opt OV with the same logical and physical path names NFS Cluster Client on SGI IRIX In addition to the general rule for determining cluster clients described in Installation Tips for IRIX Managed Nodes on page 70 there is also one specific rule for IRIX IRIX cluster clients both diskless and normal disks are those IRIX systems that have either a usr file system or opt file s...

Страница 152: ...IRIX Managed Nodes System Resources Adapted by ITO on SGI IRIX ITO makes changes in the following system resource files etc passwd and etc shadow if present entry for the default ITO operator Field Entry User Name opc_op Encrypted Password no login User ID 777 if still available or next possible free number Group ID 77 if still available or next possible free number Description ITO default operato...

Страница 153: ...tc init d opcagt ITO startup shutdown script etc rc0 d file K09opcagt created etc rc2 d file S89opcagt is created etc exports on cluster server only entry for export of opt directory etc fstab on cluster client only entry for mount opt directory etc init d grad_nck NCS startup shutdown script etc rc0 d file K35nck is created etc rc2 d file S40nck is created ...

Страница 154: ...ver exports the opt file system with read only permissions ITO software is located on the opt OV path with the logical path name the same as the physical path name NOTE By default SINIX does not export the opt file system You can enable ITO cluster operations manually by exporting the opt file system to one SINIX system and then mount it from other SINIX systems You must set up the cluster manuall...

Страница 155: ...d the group opcgrp are created as the ITO default operator if they don t already exist Table 3 16 ITO Entry in etc passwd on SINIX Managed Nodes Table 3 17 ITO Entry in etc group on SINIX Managed Nodes Field Entry User Name opc_op Encrypted Password no login User ID 777 if still available or next possible free number Group ID 177 if still available or next possible free number Description ITO defa...

Страница 156: ... ITO startup shutdown script etc rc0 d file K09opcagt created etc rc1 d file K09opcagt created etc rc2 d file S89opcagt created etc init d ncs NCS startup shutdown script if not already present and communciation type is NCS RPC etc rc0 d file K52ncs created if not already present and communciation type is NCS RPC etc rc1 d file K52ncs created if not already present and communciation type is NCS RP...

Страница 157: ...ted as cluster servers The cluster server exports the opt file system with read only permissions ITO software is located on opt OV path with the same logical and physical path names This simplification was possible because ITO software can now operate from the read only opt file system on cluster clients By default Solaris does not export the opt file system not even on the cluster server During t...

Страница 158: ... By default the operator uses the Bourne Shell bin sh and is locked until the passwd 1M command is executed User opc_op belongs to the group opcgrp Currently user opc_op and group opcgrp are only added locally on the managed node useradd or groupadd are used If the managed node is a Network Information Service NIS or NIS client the ITO installation checks if user opc_op is already in the NIS datab...

Страница 159: ...s on the Managed Node Platforms File Tree Layout on Solaris Managed Nodes etc rc3 d S76ncs file created if not already present etc rc0 d K52ncs file created if not already present etc rc2 d K52ncs file created if not already present ...

Страница 160: ...ich has all rights and privileges that are required for the ITO agent software It also creates the opc_op account which is a normal user account and is used to execute applications NOTE The directories represented in Figure 3 19 by the letter B are created by the control agent if necessary intel bin conf tmp log usr OV OpC OpC OpC node node node OpC lib nls lang bin conf node include intel install...

Страница 161: ...e following command SystemRoot System32 regedt32 exe The registry editor will show the following keys for ITO HKEY_LOCAL_MACHINE SOFTWARE Hewlett Packard OpenView ITO HKEY_LOCAL_MACHINE SYSTEM Current ControlSet Control Lsa MSV1_0 HKEY_LOCAL_MACHINE SYSTEM Current ControlSet Services HP ITO Agent And if on a primary or backup domain controller HKEY_LOCAL_MACHINE SYSTEM Current ControlSet Services ...

Страница 162: ...162 Chapter3 File Tree Layouts on the Managed Node Platforms File Tree Layout on Windows NT Managed Nodes ...

Страница 163: ...163 4 Software Maintenance on Managed Nodes ...

Страница 164: ...tenance This chapter includes Installing and upgrading the ITO agent software using the GUI De installation of the ITO agent software using the GUI Checking installed agent software packages on the management server Removing ITO agent software packages from the management server that are no longer required NOTE For information about adding an additional ITO agent software package to the management...

Страница 165: ...s or rhosts entries must be available for user root UNIX only Failing that make sure the local etc hosts equiv on the UNIX managed nodes contains an entry for the management server Before installing ITO software on the managed nodes or de installing ITO software from the managed nodes read the section General Installation Tips for Managed Nodes on page 47 Before you can install ITO on a managed no...

Страница 166: ... For detailed information about how to set the managed node attributes refer to the online help Select the Automatic De Installation option and the ITO software is automatically installed onto the managed node when you invoke the installation for this system in the Install Update ITO Software and Configuration window ...

Страница 167: ...gents Install Update SW Config item in the menu bar Figure 4 2 Install Update ITO Software and Configuration Window For detailed information about the Install Update ITO Software and Configuration window see the online help To install or update the ITO software automatically 1 Use the Install Update ITO Software and Configuration window of the ITO administrator s GUI and select the appropriate opt...

Страница 168: ...re reachable and accessible by the super user If a password is missing you are asked to supply one before installation is done Watch the script execution carefully Your interaction might be required if any errors or warnings occur At the end of the script execution when you have verified the overall result of the script run close the terminal window by pressing Return 3 Check the local managed nod...

Страница 169: ...gmt_sv install log Note that ITO agent software installation does not include configuration distribution Manually Activating the ITO Agent on NFS Cluster Clients You can manually activate the ITO agent on an NFS Cluster Client system However the ITO agent software must already be installed on the NFS Cluster Server system and the ITO agent software bits must be available on the target node through...

Страница 170: ...he ITO agents on the NFS Cluster If the ITO agent software is to be re installed make sure that the ITO agents have been stopped on all NFS cluster nodes before starting the re installation 2 Execute the following command on the NFS Cluster Server system opcactivate mode cluster_server node ITO_mgt_server 3 Execute the following command on the NFS Cluster Client system opcactivate mode cluster_cli...

Страница 171: ...nge the communication type you choose between the following methods depending on the number of managed nodes you want to modify If you want to change the communication type for only a small number of nodes a In the ITO administrator GUI select the managed node in the ITO Node Bank for which you want to change the communication type b Select Actions Node Modify The Modify Node window opens c Click ...

Страница 172: ...alled with root permissions Click on OK opcnode is added as an application to the ITO Application Bank d Select the nodes for which you want to change the communication type in the ITO Node Bank or any other node hierarchy e In the ITO Application Bank double click the opcnode symbol to execute the application The communication type changes for all selected nodes Verify this by opening the Node Ad...

Страница 173: ...s button Another ITO Question Dialog window appears asking about automatically de installing software from the managed nodes When leaving this window by clicking on the Yes button the software de installation script inst sh 1M is run in an additional terminal window This script checks that all deleted managed nodes are accessible by root if passwords are missing you will be prompted for them Durin...

Страница 174: ...emoval operations Only one record is written for each package SCO UnixWare tmp pkgrm log Sequent DYNIX ptx tmp pkgrm log SGI IRIX tmp inst log SINIX tmp pkgrm log Solaris tmp pkgrm log Windows NT c temp inst log 3 Systems running MPE iX 5 0 or earlier could experience a problem using the PURGEACCT command which leads to a possible de installation error If this occurs reboot the system and purge th...

Страница 175: ...n script opcinst cmd also de installs the ITO agent software from OS 2 managed nodes 1 On the managed node change to the directory where opcinst cmd is located If opcinst cmd has been removed after the installation copy the script from the directory opt OV bin OpC install on the managed node or from the management server to a temporary location see Manual OS 2 Agent Installation on page 90 NOTE op...

Страница 176: ...aris NCR and SINIX managed nodes is only supported with ITO version A 05 00 and higher Manually De installing ITO Software from Windows NT Managed Nodes The installation script opcsetup also de installs the ITO agent software from Windows NT managed nodes 1 Stop all ITO agents running on the managed node 2 On Intel Windows NT run the following command usr OV bin OpC intel opcsetup u 3 On DEC Alpha...

Страница 177: ... higher In addition only homogeneous NFS Clusters are supported and the cluster server and cluster client systems must have the same OS To de activate the ITO agent from the NFS cluster client system manually 1 Execute the following command on NFS Cluster Client system opcdeactivate mode cluster_client 2 Execute the following command on the NFS Cluster Server system opcdeactivate mode cluster_serv...

Страница 178: ...nt version having the same fileset name on a management server supporting the same or a super set of OS versions as the previously installed ITO agent version the previous ITO agent version is erased However if you install a new ITO agent version on a management server supporting only some of the previously supported OS versions then both ITO agent versions are kept on the management server Runnin...

Страница 179: ...c hp ux11 hp s900 mpe ix ibm intel os2 ibm rs6000 aix ms alpha nt ms intel nt ncr 3000 unix novell intel nw olivetti intel unix pyramid mips unix sco intel unix sco intel uw sequent intel dynix sgi mips irix sni mips sinix sun sparc solaris ito_version Is the version of ITO that supports this agent platform for example A 05 00 package_type Is the type of RPC communication used by that platform eit...

Страница 180: ...nger require Running swremove is only useful if you wish to de install all ITO agent packages of a particular architecture In addition remove the managed nodes from the ITO Node Bank before doing a complete de installation of all managed nodes of a given architecture Otherwise the managed nodes can no longer be easily removed using the administrator GUI ...

Страница 181: ...mand tracing to record important events of the installation process into the existing installation logfile var opt OV log OpC mgmt_sv install log The de installation process can be debugged both locally on the management server and remotely on the managed node A debug definition file inst_debug conf is provided to force debugging and to specify debug options The debug facility is therefore availab...

Страница 182: ...onf is not checked Be careful when editing this file because syntax errors will cause the installation process to abort To disable debugging remove the file var opt OV share tmp OpC mgmt_sv inst_debug conf For a detailed description of the de installation debug facilities and examples of the file inst_debug conf see the man page inst_debug 5M ...

Страница 183: ...183 5 Configuring ITO ...

Страница 184: ...tribute the ITO configuration to managed nodes and how to integrate applications into ITO In addition to this chapter you should also read the HP OpenView IT Operations Concepts Guide to gain a fuller understanding of the elements and the windows you can use to review or customize these preconfigured elements ...

Страница 185: ...itored objects SNMP event interception template groups templates for external interfaces Note also the configuration tips in this section Managed Nodes By default the management server is also configured as a managed node with the default templates for SNMP event interception ITO message interception logfile encapsulation and monitoring as described in this section The management server belongs to...

Страница 186: ...are Messages relating to hardware problems Misc Messages which cannot be assigned to any other message group If a message does not have a message group assigned or the message group is not configured the message will belong to the Misc message group This message group cannot be deleted NetWare Messages generated by Novell NetWare managed nodes Network Messages relating to network connectivity prob...

Страница 187: ... no automatic action has been configured for this message See Figure 5 1 on page 189 Understanding the Message Browser Headline The first column in the Message Browser window headline is Sev which tells you at a glance the severity status of the message The ITO administrator assigns a severity level to a message based on its importance in a given operator s environment To comply with telecom stand...

Страница 188: ...ccurred and immediate corrective action is required Major Orange the severity of the problem is relatively high and normal use of the object is likely to be impeded Minor Yellow a problem of relatively low severity has occurred which should not impede normal use of the object Warning Cyan a potential or impending service affecting fault has occurred Action should be taken to diagnose and correct t...

Страница 189: ...ship Owned of a message or that the message is a notification message The four types of flag that you may expect to find in this column indicate that a message is O owned by the user of the browser on view X owned and therefore restricted in terms of access by someone other than the user of the browser on view M marked by the user of the browser on view N a notification message Only ITO users can ...

Страница 190: ... or suppress conditions I Help instructions Instructions help you resolve the problem If available these instructions are displayed in the Message Details window A Automatic Action Indicates that an automatic action has been configured for the message and gives the status of the action The value of the attribute tells you if the action S was successful F has failed R is running O Operator initiate...

Страница 191: ...application that was affected by or detected the message MsgGroup Specifies the message group the message belongs to Object Specifies the object which was affected by detected or caused the message This can be for example a printer which sent a message when it stopped accepting requests or a backup device that sent a message when a backup stopped Description Displays the text of the message You ca...

Страница 192: ...hat is owned or marked is ignored for the purposes of status propagation in the Managed Nodes operator Message Group Node Bank Node Group Bank and administrator s Message Group Bank windows as well as the ITO Alarm symbol in the Node Submap If the ownership display mode is set to Status propagation then the status of all messages whether they are owned or not is used in reflecting status propagati...

Страница 193: ...tempting to perform operations on a message that is not owned by anybody that message is assigned to him automatically In enforced mode ownership of a message will be assigned to the operator who attempts to perform operator initiated actions relating to a message escalate a message unacknowledge a message that is move a message from the history database to the active database In informational mod...

Страница 194: ...for the ITO agent a ECS Management Server Event correlation templates for ITO management server a HP UX 10 x Templates for HP UX 10 x agent HP UX 11 x Templates for HP UX 11 x agent IBM OS 2 Templates for IBM OS 2 agent IRIX Templates for SGI agent MC ServiceGuard Templates for MC ServiceGuard support MPE iX Templates for MPE iX agent Management Server Templates for the ITO Management Server NCR T...

Страница 195: ...irements of individual organizations The user configurations that come as standard are the ITO administrator opc_op operator netop operator itop operator To start the ITO GUI enter the following command opc SCO OpenServer Templates for SCO OpenServer agent SCO UnixWare Templates for SCO UnixWare agent SINIX 5 43 Templates for SINIX 5 43 or earlier agent SINIX 5 44 Templates for SINIX 5 44 or later...

Страница 196: ...rt introduction to ITO is also available by clicking the ITO symbol in the System_Info folder of the general toolbox On HP UX systems running the HP CDE GUI the ITO GUI icon is in the toplevel Application Manager window For information describing how to bypass the login dialog box see the opc 1 man page When a user starts an ITO operator GUI session the working directory is defined by environment ...

Страница 197: ... to template management The ITO Operators ITO provides three default operators which are preconfigured and have distinct areas of responsibility The default operators are opc_op netop itop For more information on the scope of each default operator see the HP OpenView IT Operations Concepts Guide The following tables show you at a glance which node groups message groups applications and application...

Страница 198: ...messages to which operator For example although by default all ITO operators have the Network message group icon in their respective Message Groups window the node groups that send messages associated with the Network message group vary according to the operator The origin of the messages depends upon the selection the administrator makes in a given operator s responsibility matrix Table 5 7 Defau...

Страница 199: ...ons and application groups as well as nodes node groups message groups and so on by dragging and dropping or copying and pasting In this way the administrator can use the default settings as a base for configuring users and responsibilities that match the needs of individual environments Table 5 8 Default Applications for the ITO Operators SNMP Data Tools UN X Tools Application Groups opc_op netop...

Страница 200: ...agement server This solution is preferable to the method above if you log in or run applications on the managed node as many different users Set a password for the executing user on the managed node if not yet done Use this password in the corresponding ITO windows Access to Windows NT Nodes for ITO Users The UNIX user has only limited access to Windows NT managed nodes most notably via ITO s virt...

Страница 201: ...trator s default Application Bank window Table 5 9 Administrator s Applications and Application Groups Name Application Application Group Broadcast ITO Status Jovw MPE Tools Net Activity Net Config Net Diag NetWare Config NetWare Performance NetWare Tools NNM Tools NT Tools OS 2 Tools OV Services Performance Physical Terminal Reports SNMP Data ...

Страница 202: ...ged by the operator you must supply a password MPE iX Default user MGR OVOPR Default password none required because application is started via the ITO action agent NOTE If the default user has been changed by the operator you must supply a password Windows NT Default user opc_op Default password none required because application is started via the ITO action agent NOTE If the default user has been...

Страница 203: ...y a password MPE iX Command issued discfree d Default user MGR OVOPR NOTE If the default user has been changed by the operator you must supply a password Windows NT Returns information about all drives on the system including floppy drives CD ROM drives and network drives Default user HP ITO account ITO Agent Status ITO Agent Status shows the status of the ITO agent on a selected system This comma...

Страница 204: ...e integration mechanism of HP OpenView applications ITO logically distinguishes between OV Services and OV Applications OV Services are not accessed by double clicking their symbols they are accessed from the menu bar Some OV Services only start daemons The administrator can see OV Service symbols in his Application Bank window These can be copied to the operators Application Desktop window as req...

Страница 205: ...ysical Terminal command in the Managed Node Configuration window is called when starting the physical terminal application UNIX Default user root Default password none configured MPE iX Default user MANAGER SYS Default password none configured Windows NT Default user administrator Default Password none configured Print Status Print Status shows the current status of spooling systems UNIX Command i...

Страница 206: ...managed nodes Processes UNIX and MPE iX ITO displays the status of the running processes UNIX Command issued opcps This is a script calling ps eaf on HP UX AIX Solaris NCR UNIX SVR4 SGI IRIX SCO OpenServer SCO UnixWare Digital UNIX OSF 1 DYNIX ptx Olivetti UNIX Pyramid DataCenter OSx and SINIX Reliant Default user opc_op NOTE If the default user has been changed by the operator you must supply a p...

Страница 207: ...ort Pending Message System Administration Manager SAM Motif and ASCII HP UX ITO can start the ASCII or Motif version of the SAM user interface on HP UX systems Note that the Motif interface is only available on HP UX versions 9 0 and higher Motif SAM Command issued sam Default user root user must be root Default password none required because application is started via the ITO action agent NOTE If...

Страница 208: ... for remote login NOTE Make sure that the rlogind has not been configured with the B for banner file option in the inetd conf file this causes problems with the remote login procedure for Window Input Output applications If an rhosts or etc hosts equiv entry is available for the specified user or if the default or configured password fits a remote login is performed For a more detailed explanation...

Страница 209: ...nfigurable switches if any This section is useful if you want to learn how existing Windows NT applications can be customized for your particular situation and requirements Cancel Reboot This application will cancel a system reboot command that was issued from the ITO reboot application for the selected Windows NT node Default itosdown exe a Description of Values Returned See Reboot on page 216 Di...

Страница 210: ...rns one of these four types of drive REMOVABLE i e a floppy drive REMOTE i e a network connection FIXED i e a local hard drive CD ROM i e a CD disk drive FILE SYSTEM Returns one of these file system types NTFS NTFAT DOS HPFS OS 2 TOTAL Returns the total size of the drive in Megabytes FREE N A will be reported for the name File system and total and free space if the drive is not fixed and the disk ...

Страница 211: ...y other threads Private time Returns the percentage of processor time spent in Privileged Mode in non idle threads The Windows NT service layer the Executive routines and the Windows NT Kernel execute in Privileged Mode User Time Returns the percentage of processor time spent in User Mode in non Idle threads All application code and subsystem code executes in User Mode Interrupts s Returns the num...

Страница 212: ... will be listed This will only include Windows NT software Older software e g Windows 3 1 will not be shown This function returns all the subtrees from the registry local machine under the key Software All software written for Windows NT will create a subkey under Software to store external parameters The itoreg cfg file is used to filter out unwanted information See Reg Viewer on page 217 for a s...

Страница 213: ...led to run Default at exe User Configurable Parameters For a full description of creating and removing scheduled jobs refer to the Windows NT documentation LM Sessions This application lists sessions between the selected Windows NT node and other computers on the network If the selected system is acting as a logon server it will show sessions of the users for which it has validated logons If no us...

Страница 214: ...ues Returned See Show Users on page 223 Memory Load This application returns information about the current memory usage of the selected Windows NT node If you need more information about the Windows NT node use the Diagnostics application Default itodiag exe memory User Configurable Parameters See Diagnostics on page 209 Description of Values Returned See Diagnostics on page 209 NetBios Sessions T...

Страница 215: ...e s Returns a maximum of ten instances if more are defined it will print out the message MULTIPLE INSTANCES TOO MANY TO LIST this setting is default f Returns full list will print all instances no matter how many are defined NOTE The performance objects are always stored in both US English and the local language if the local language is not also US English On a German NT system for example names a...

Страница 216: ...how the exe after executable files this information is not stored in the registry NOTE Under NT a user with administrator rights can kill any process but normal users can only kill processes that are running under their account name If you want the ITO operator to be able to kill any process configure the application to run under HP ITO account Description of Values Returned Refer to the User Conf...

Страница 217: ...r message Description of Values Returned Refer to the User Configurable Parameters for this application Reg Viewer This application returns the values and subkeys for the define key of the Selected Windows NT node Example To view the ITO Agent configuration modify the application to use enum 1 initkey LM key Software Hewlett Packard OpenView ITO Default None this application requires an entry from...

Страница 218: ...any character not in the specified set Escape a character like or Use the view option to scan values type type Define a entry type REG_DWORD REG_SZ valuename name Define value enum To scan registry for pattern scan pattern initkey lm cu cr us key path view To enumerate a registry tree thereby printing out registry keys to the set depth emum uses a config file that verifies keys that should not be ...

Страница 219: ...server User Configurable Parameters For a full description of net exe refer to the Windows NT documentation Description of Values Returned Server Name The name of the server Comment Comment for the server that is displayed in Windows NT Screens and with the NET VIEW command Software version Version number Server is active on The network connections that the server is using Server hidden Specifies ...

Страница 220: ...at are available on the selected Windows NT node All shares ending with are hidden shares that the NT system makes available for remote administration by default Default net exe share User Configurable Parameters None Description of Values Returned Share name The full name of the available netbios share Resource The location of the share on the local machine Remark Common Remarks Default share The...

Страница 221: ...Running Paused or Stopped represented by a blank entry STARTUP The startup type of a service can be Automatic boot or system Service starts every time the system starts Manual Service can be started by a user or a dependent service Disabled Service cannot be started Show Services This application returns a list of the services that are configured on the selected Windows NT system If the ITO user d...

Страница 222: ... application bank it is included here because it may be useful for use with monitor scripts Description of Values Returned Name Internal name of the service Display The name that is normally displayed to the user Status The status of a service can be Started Paused or Stopped indicated by a blank entry Startup The startup type of a service can be Automatic Service starts every time the system star...

Страница 223: ...stem ns Returns number of sessions on the system local Returns the name of user logged into the local system Description of Values Returned Refer to the User Configurable Parameters for this application Start Services This application will start the requested service on the selected Windows NT node If a service is disabled as opposed to being stopped this application cannot enable the service Serv...

Страница 224: ...rt number the port number can also be nbsession which is a netbois connection over TCP IP State The current state of the connection Used Shares This application returns a list of connections that the selected Windows NT node has made If the status is disconnected a connection is automatically established as soon as the local user switches to this drive Default net exe use User Configurable Paramet...

Страница 225: ... exe statistics workstation User Configurable Parameters For a full description of net exe refer to the Windows NT documentation Description of Values Returned For a full description of net exe refer to the Windows NT documentation Novell NetWare Applications This section lists and defines the default applications in the NetWare Tools NetWare Config and NetWare Performance application groups ITO f...

Страница 226: ... console The NetWare agent NLMs are NWTRAP NLM 400 traps with Novell NetExpert help text HOSTMIB NLM NetWare Server SNMP Host Resources MIB SERVINST NLM NetWare Server SNMP instrumentation NTREND NLM NetWare Server server based trending All NetWare servers from Novell are supported by NMA including all 3 x and 4 x NetWare servers SFT III servers SMP servers and Mirrored Servers These agents are al...

Страница 227: ...ITO users to monitor NetWare server variables not monitored internally by the NMA NetWare Config The following application icons are available by default in the NetWare Config window Down Reboot Down Restart NOTE Down Reboot and Down Restart cannot be started on NetWare SFT III systems Restart NMA The user opc_op can execute these application on the NetWare server NetWare Performance The following...

Страница 228: ...e by default in NetWare Tools window The user opc_op can execute all of these applications on the NetWare server except the Xconsole application which is only used to run a NetWare console in an X window on the ITO console NOTE Note that on NetWare SFT III systems starting applications of the application group NetWare Tools on the secondary IO Engine can cause problems if the secondary IO Engine i...

Страница 229: ...asis on data relating specifically to connections This enables you to determine how busy the server really is and which connections and users are the busiest CPU Info Returns information about devices including the CPU speed Default cpuinfo server_name Disks Enables you to get detailed information about the disk drives in a managed server Default diskinfo server_name Part of the detailed informati...

Страница 230: ...lt itoload nlm_name Unloads an NLM Default itounload nlm_name Starting arbitrary NLMs is supported via the itoload and itounload commands These applications must be started via a customized start up so that additional parameters can be entered Memory Use Monitors memory use Default meminfo server_name The memory use action displays the following data Alloc Memory Pool KB Cache Buffer KB Cache Mova...

Страница 231: ... being executed The NMA actions are described below Note that some actions take a while to execute These actions are marked with an asterisk Network Interfaces Displays interface information for each network board in a server Default netintrf server_name Use Network Interfaces as a troubleshooting tool to determine why a user cannot log in to a file server If the frame types are different you can ...

Страница 232: ...information on the current trend parameters Default presvinfo server_name System Summary Returns information about the server name server up time OS description Default sysumary server_name Users Monitors user activity to determine amongst other things the optimum server shutdown time Default userinfo server_name Volume Enables you to determine the exact amount of space available on every volume i...

Страница 233: ...s is not a NetWare user name and is only present in the ITO database as a warning that the password for the remote console access may be different to the user opc_op s password OS 2 Applications Table 5 11 OS 2 Applications on page 233 lists and defines the default applications in the OS 2 Applications window in the ITO Application Bank Table 5 11 OS 2 Applications Application Command Description ...

Страница 234: ...e as well as actions encapsulated in DLLs Dynamic link Library For example frequently used monitoring actions for OS 2 managed nodes reside in the DLL opcvend dll This configuration improves performance because actions are executed very quickly once the DLL is loaded into active memory The notation for calling DLL encapsulated actions is name_of_DLL name_of_entry_function See the templates os2_swa...

Страница 235: ...ripts on OS 2 Managed Nodes REXX is the default scripting language in OS 2 REXX scripts can for example be used as external monitors or as actions Note that REXX command must be delimited by a semicolon or by a CR LF If user supplied scripts do not conform to these rules the actions are not executed successfully The ITO action agent does not exit until all running actions have completed Therefore ...

Страница 236: ...apsulated Logfiles on AIX Managed Nodes a Refer to etc syslog conf to determine or to set the actual syslog logfile name and the events to be logged Platform ITO Management Server ITO Agent HP UX 10 x HP UX 11 x Solaris 2 51 2 6 7 Windows NT 3 51 4 0 Logfile Description Template Name var adm aix_sulog Switch user logfile Su AIX var adm audit log Auditing information logfile Audit Log AIX tmp syslo...

Страница 237: ...dy included in syslog conf add the following line using tabs not spaces kern debug var adm messages After editing the etc syslog conf file create the file var adm messages for example using the touch command with the following ownership and permission rw r 1 root adm messages Then restart the syslogd process Logfile Description Template Name var adm cluster log HACMP cluster logs HACMP logfile AIX...

Страница 238: ...ne start_opckmsg for the template to work Logfile Description Template Name var adm sulog su 1 Switch user logfile Su 10 x HP UX var adm cron log cron 1M Clock daemon logfile Cron 10 x HP UX var adm syslog syslog log syslogd 1M Syslog daemon logfile Syslog 10 x HP UX etc rc log Messages during system boot up Boot 10 x HP UX var adm btmp binary format History of bad login attempts Bad Logs 10 x HP ...

Страница 239: ...on log Cron logfile Cron NCR UNIX SVR4 etc osm NCR GIS NCR UNIX OS messages OS Msgs NCR UNIX SVR4 var adm sulog Switch user logfile Su NCR UNIX SVR4 var adm wtmpx History of logins Logs NCR UNIX SVR4 Logfile Description Template Name var cron log Cron logfile Cron Olivetti UNIX var adm messages a Olivetti OS messages OS Msgs Olivetti UNIX var adm sulog Switch user logfile Su Olivetti UNIX var adm ...

Страница 240: ...tory of bad logins Bad Logs PYRAMID usr spool lp logs l psched Line printer deamon logfile Lp Serv PYRAMID usr spool lp logs r equests Printer requests logfile Lp Req PYRAMID Logfile Description Template Name usr lib cron log Cron logfile Cron SCO OpenServer usr adm messages OS messages OS Msgs SCO OpenServer usr adm sulog Switch user logfile Su SCO OpenServer etc wtmp History of logins Logs SCO O...

Страница 241: ...ar adm sulog Switch user logfile Su UnixWare var adm wtmpx History of logins Logs UnixWare var lp logs lpsched Printer services Logfile Lp Serv UnixWare var lp logs request s Printer Requests Logfile Lp Req UnixWare Logfile Description Template Name var adm loginlog History of failed login attempts Bad Logs IRIX var cron log Cron logfile Cron IRIX var adm sulog Switch user logfile Su IRIX var adm ...

Страница 242: ...ces logfile Lp Serv DYNIX ptx usr spool lp remotelp Remote printer services log Rlp Serv DYNIX ptx usr spool lp logs req uests Printer requests logfile Lp Req DYNIX ptx Logfile Description Template Name var cron log a Cron logfile Cron SINIX etc osm SINIX OS messages OS Msgs SINIX var adm sulog b Switch user logfile Su SINIX var adm wtmpx History of logins Logins SINIX var adm loginlog c Bad login...

Страница 243: ...he Message Source Templates window of the ITO administrator GUI By default ITO intercepts SNMP traps from any application sending traps to the opctrapd daemon running on the management server and on all managed nodes where the OV trap daemon ovtrapd is running or where port 162 can be accessed directly The ITO event interceptor is supported on the following platforms AIX 4 1 4 2 and 4 3 direct por...

Страница 244: ...arded to the management server Basic Configuration 1 Make sure that SNMP devices have only one SNMP destination or that there is only one system serving as the NNM collection station for the management server preferably the collection station connected via the fastest network The destination system s for SNMP devices on HP UX nodes is set in the etc SnmpAgent d snmpd conf file with a trap_dest nod...

Страница 245: ...Syntax SNMP_EVENT_FLOW ALL RAW CORR opctrapd connects to the default ECS stream of pmd If required you can configure opctrapd to connect to a specific ECS stream of pmd by specifying the ECS stream in the opcinfo file SNMP_STREAM_NAME stream_name ITO Message Interception By default any message submitted via the opcmsg 1 command or via the opcmsg 3 API is intercepted For message attribute defaults ...

Страница 246: ...aged Nodes For information on how MPE iX messages are mapped to the ITO severity levels see Table 5 28 on page 246 Table 5 28 MPE iX and ITO Message Mapping Severity MPE iX Classification ITO Message Group Database Misc DTC Misc Hardware Hardware Jobs Job Logging Misc MPE iX OS Network Network Printer Output Performance Performance Security Security Spooler Output Storage Backup MPE Severity Level...

Страница 247: ...PE If this field is omitted the default 00 is used aaa MPE iX Application ID identifying the source of the message mapped to the ITO Application field optional values from 0 to 310 If the aaa portion is omitted it is set to the default value of 310 This maps the message to the message group Misc and the application Console Event Table 5 29 shows how NMEV markers are mapped in ITO Some of the entri...

Страница 248: ...4 Storage Printer Tape Spool 215 Storage Software Resiliency 216 OS Threshold Mgr 217 Storage Store Restore 218 Job Jobs Sessions 220 OS Process Manager 221 Logging System Logging 222 OS Transaction Mgmt 224 Logging User Logging 225 Hardware SPU Switchover 226 OS Reply Info Table 227 OS System Manager 228 Output High End Printer 229 Hardware Diagnostic System 230 OS Command Interpreter MPE iX Appl...

Страница 249: ...grouping The ITO attribute mapping is defined in the file CONSDESC COMMANDS OVOPC delivered by default with the MPE agent installation See Generating a New NMEV Marker on page 249 for more information about how to configure this file to map NMEVs other than the ones defined in Table 5 29 Generating a New NMEV Marker The ITO Console Interceptor supports all methods of generating NMEV event messages...

Страница 250: ... to the consdesc file so that ITO can map user defined NMEV markers to user defined ITO message groups application and object fields It is not recommended to create user defined IDs because it is possible that the user defined application IDs could conflict with HP defined ID in the future if HP added entries to the default consdesc file The default consdesc file is located in the following direct...

Страница 251: ...tilities do not run on all the platforms Such instances are indicated in Table 5 31 by footnotes You may want to adjust the polling interval to a value more suitable to your environment Object Description Threshold Polling Interval disk_util Monitors disk space utilization on the root disk 90 10m distrib_mon Monitors the software distribution process 20 10m mondbfile Monitors free space on disk an...

Страница 252: ...tion Threshold Polling Interval mins cpu_util Monitors CPU utilization requires the sar program 95 a 2b disk_util Monitors disk space utilization on the root disk 90 10 Inetd Number of executing instances of inetd Internet Daemon 0 5 5 MailQueue Length Length of the sendmail queue number of unsent mail messages 30 2c proc_util Monitors process table utilization 75 d 5e sco_tmp Size in disk blocks ...

Страница 253: ... the threshold is exceeded for four consecutive minutes 95 1 dflt_rpcss_NT Monitors the RPC services 90 30 Object Description Threshold Polling Interval mins os2_disk_util Monitors disk space utilization on C disk 90 10m os2_cpu_utila Monitors processor utilization 95 1m os2_swap_util Monitors SWAP utilization 16 MB 5m inetd_mon Checks if Inetd Inet Daemon is running 0 5 30m snmpd_mon Checks if sn...

Страница 254: ...ws NT Performance Monitor To monitor Windows NT objects set the Monitor to Program then in the Monitor Program or MIB ID field enter NTPerfMon This case sensitive designator should preface all requests to the NT performance monitor The syntax for requests is shown in Figure 5 2 on page 255 and explained below snmpd_mon_ext External monitor for Snmpd 0 5 schedule action dependent mib2_mon_ext Exter...

Страница 255: ...rrectly but Logical Disk will not If you omit the sign from the counter label the monitor returns the raw value instead of the percentage Parent Instance and Instance These values vary according to what is being monitored The example in Figure 5 2 on page 255 shows 0 in this case the SCSI port and C in this case the drive letter Valid values can be found using NT Performance Monitor found in the N...

Страница 256: ...onitor agent can be configured to monitor MIB variables provided by the TME NetFinity product The following prerequisites must be met on the OS 2 managed node TME NetFinity must be installed TME NetFinity is pre installed with OS 2 Warp 4 0 the file NETVIEW_PATH BIN AGENT DMISA MAP must contain the following entry 1 3 6 1 4 1 2 5 11 1 10 1 1 1 1 TME 10 NetFinity Services 0 0 where NETVIEW_PATH is ...

Страница 257: ...ors 1314150981 Packets Sec Locked Memory 1653400672 Megabytes Memory Usage 1653400673 Megabytes Print Jobs Queued 107264 Jobs Process Count 2872344981 Processes Swap file size 1921839360 Megabytes Swap space remaining 1921839361 Megabytes TCP Connections 1314150982 TCP Connections TCP IP Sockets 1314150983 TCP IP Sockets TCP IP Interface 0 Unicast Packets Sent 1314140225 Packets Sec TCP IP Interfa...

Страница 258: ...ibute ID see Table 5 34 Attribute IDs of TME NetFinity MIB Variables on page 257 Once you have calculated the value of the MIB variable and written a program or script to monitor this value you configure a threshold monitor template in the Message Source Templates window TCP IP Interface 0 Bytes Received 1314140230 Bytes Sec Thread Count 2872344982 Threads UDP Datagrams Sent 1314150977 Packets Sec...

Страница 259: ...s ITO provides an example for calling an external trouble ticket system or external notification service in opt OV bin OpC extern_intf ttns_mail sh This script sends a corresponding mail to all operators responsible for that message Customer scripts and programs for calling external interfaces can also be placed in extern_intf if it is intended they be erased when de installing ITO NOTE If your sc...

Страница 260: ... OV share databases OpC mgd_node customer hp s900 mpe ix make sure that the file names are not longer than 8 characters The characters underscore _ and dash are not allowed MPE iX does not distinguish between upper and lower case letters Only ASCII files are supported Binaries for automatic distribution to MPE iX are not supported because the appropriate MPE iX file code is not known to the manage...

Страница 261: ...e Opc or in your private file HOME Xdefaults In addition you can use ITO s enhanced reporting features in conjunction with the OpenView Service Reporter functionality to retrieve specific information directly from the database and publish and view the resulting reports in graphically rich formats on the web For more information see the documentation supplied with the OpenView Service Reporter prod...

Страница 262: ...g OpC mgmt_sv opcerror a Logon Report Logon audit report for all operators ITO user showing UNIX user source GUI API CLI etc date time report area logon off and un successfull actions This report is only available for audit levels above Login Times Nodes Overview Report on all configured nodes showing node name machine type node type message allowed controlled etc license heartbeat polling setting...

Страница 263: ... acknowledged messages for a given operator Templates Overview Lists all templates and shows to which template groups the various templates belong Templates Summary Report about all aspects of all templates this might take a long time to generate Template Detail Detailed report on one selected template Unmonitored Report on configured but currently unmonitored objects indicating for example unassi...

Страница 264: ...or ITO Operators Report Name Description All Active Messages Short report on all active messages seen by the user who runs the report All Active Details Detailed report on all active messages seen by the user who runs the report All History Messages Brief report on all history messages seen by the user who runs the report All Pending Messages Brief report on all pending messages see by the user wh...

Страница 265: ...cal and trend analysis reports over a defined period of time These reports can be configured to cover periods from as little as a few days to as much as weeks or even months Note that the tool opt OV bin OpC opcdbmsgmv moves all messages that are marked as acknowledged to the history message tables in the database where they are retained with little or no negative impact on operational tasks Altho...

Страница 266: ...ner process running on the database node in order to accept net connections The listener process accepts connection requests from any legal database user If you wish to tighten security still further there are products available for example from Oracle which help improve general communication security in this area For more information see the Oracle product documentation NOTE The web reporting ser...

Страница 267: ...p the flexible management features in ITO see the sections on flexible management tasks in the HP ITO Administrator s Guide to Online Information Templates for Flexible Management ITO provides a set of ASCII templates which you can copy and edit to define the ITO features required to set up and use flexible management features in a widely distributed environment Table 5 38 provides a brief descrip...

Страница 268: ...ow the sun functions followthesun Defines the time templates and responsible managers for ITO follow the sun responsibility switching This template defines three management servers M1 M2 and M3 which can switch responsibility at different times of the day and week hierarchy Defines the target management server to which messages can be escalated in the hierarchical escalation of messages to a centr...

Страница 269: ... is configured as the primary manager for all nodes and MC is configured as an action allowed manager for all nodes hierarchy sv Defines the responsible managers for hierarchical management responsibility switching for regional management servers msgforw Defines the responsible managers for manager to manager message forwarding This template defines the message forwarding target rules outage Defin...

Страница 270: ...st is sent Only the primary ITO manager can configure action allowed managers for an agent ACTIONALLOWMANAGER NODE The node name of the ACTIONALLOWMANAGER You can use the variable OPC_PRIMARY_MGR to specify that this will always be the primary manager DESCRIPTION A string containing a short description of the SECONDARYMANAGER MSGTARGETRULES MSGTARGETRULE Rules to configure the MSGTARGETRULECONDS a...

Страница 271: ...f the ITO Manager You can use the keyword OPC_PRIMARY_MGR to denote that this will always be the primary manager MSGCONTROLLINGMGR Attribute of a message target manager enabling it to switch control of a message NOTIFYMGR Attribute of a message target manager enabling it to notify itself This is set by default if no attribute is defined for the message target manager ACKNONLOCALMGR Attribute for a...

Страница 272: ...ys for example NODE IP 0 0 0 0 hpbbn If the node is defined using the format IP ipaddress or IP ipaddress string you should normally use the IP address 0 0 0 0 The real IP address is then resolved by the domain name service DNS APPLICATION A string containing the application name MSGGRP A string containing the name of the message group OBJECT A string containing the name of the object MSGTYPE A st...

Страница 273: ...line a comment If you want to use quotation marks in a syntax string escape the quotation marks with a backslash For example quotation Syntax for Responsible Manager Configuration respmgrconfigs respmgrconfigs RESPMGRCONFIG DESCRIPTION string respmgrconds e respmgrconds SECONDARYMANAGERS secondmgrs ACTIONALLOWMANAGERS actallowmgrs MSGTARGETRULES msgtargetrules secondmgrs secondmgrs SECONDARYMANAGE...

Страница 274: ...ct_date ON date FROM date TO date day Monday Tuesday Wednesday Thursday Friday Saturday Sunday date mm dd yyyy mm dd Syntax for Management Responsibility Switching configfile TIMETEMPLATES timetmpls RESPMGRCONFIGS respmgrconfigs Syntax for Message Target Rules msgtargetmgrs msgtargetmgrs MSGTARGETMANAGER TIMETEMPLATE string OPCMGR node msgtargetmgrs MSGTARGETMANAGER TIMETEMPLATE string OPCMGR node...

Страница 275: ...xact_date ON date FROM date TO date day Monday Tuesday Wednesday Thursday Friday Saturday Sunday date mm dd yyyy mm dd Syntax for service hours and scheduled outages respmgrconfigs respmgrconfigs RESPMGRCONFIG DESCRIPTION string respmgrconds e respmgrconds MSGTARGETRULES msgtargetrules msgtargetrules msgtargetrules MSGTARGETRULE DESCRIPTION string msgtargetrule e msgtargetrule MSGTARGETRULECONDS m...

Страница 276: ...uled outages is the same as that used to configure flexible management and consequently may be checked with the opcmomchk tool For more information on template syntax see Syntax for Time Templates on page 274 and Syntax for Service Hours and Scheduled Outages on page 274 The template for service hours and scheduled outages allows you to suppress log only or buffer inservice messages that match cer...

Страница 277: ...file on the ITO management server to FALSE IN this case messages remain in the Pending Messages Browser window In addition you can change the value of the message attributes Forward to Trouble Ticket Forward to Notification Interface and in conjunction with the time template forward messages to a trouble ticket or notification interface according to time of day For example set the following values...

Страница 278: ...ariable in several conditions For example an external interface can set the state of many conditions with one call The following abbreviated example of a template defining service hours sets the condition status variable for SAP to true TIMETEMPLATES CONDSTATUSVARS CONDSTATUSVAR sap True RESPMGRCONFIG MESSAGETARGETRULECONDS MESSAGETARGETRULECOND DESCRIPTION Filter SAP messages CONDSTATUSVAR sap AP...

Страница 279: ...or US Eastern Standard Time The ITO management server uses the value of the time zone string and the time in UTC to calculate the fixed local time on the given management server for which an outage has been scheduled The following example illustrates the syntax for the time zone string TIMEZONETYPE FIX TIMEZONEVALUE EST By default ITO evaluates time conditions for both service hours and scheduled ...

Страница 280: ...d_stat_var true false default To list the current status of the status variables enter opccfgout list_cond cond_stat_var all The Message forwarding Template ITO allows you to control both the generation of notification messages to be sent to remote management servers and the switch of control for a message with one single template which you configure and assign to the source management server and ...

Страница 281: ...an be added directly to the opcsvinfo file on each target management server Table 5 40 provides more information about these parameters their default values and a short description of the function of each parameter The value of the parameters must be set for each target manager If no value is specified the default value is set Table 5 40 Message Forwarding Parameters Parameter Name Default Value D...

Страница 282: ...an also see the man page opcmom 4 and the example templates in the following directory etc opt OV share conf OpC mgmt_sv tmpl_respmgrs OPC_FORW_CTRL_SWTCH_TO_TT TRUE forward control switch messages to trouble ticket or notification service OPC_SEND_ACKN_TO_CTRL_SWTCH TRUE send acknowledge to control switched messages OPC_SEND_ANNO_TO_CTRL_SWTCH TRUE send annotation to control switched messages OPC...

Страница 283: ...o be true for 24 hours from 00 00 to 24 00 every day of the year ITO requires you set up a time template for the message target rules even if the scheduled action does not depend on time You can use the variable OPC_ALWAYS to configure time templates when the condition is always true Specific Dates or Times If you specify a condition ITO assumes the conditions should continually exist for the time...

Страница 284: ... correctly completed ITO does not issue an error message Dates or Periods Using a Wildcard For example To set a condition for December 1st every year use the syntax DATE ON 12 01 To set a condition from August 6th to September 10th every year use the syntax DATE FROM 08 06 TO 09 10 Keywords for Time Templates TIMETEMPLATE string string contains the template name DESCRIPTION A string containing a s...

Страница 285: ...ime Specify a time period Set the time using the format HH MM NOTE The FROM time must be before the TO time For example FROM 18 00 TO 24 00 or FROM 0 00 TO 6 00 WEEKDAY You can specify every day of the week Monday Tuesday Wednesday Thursday Friday Saturday Sunday ON day At one day of the week for example Sunday FROM day TO day A time period for example FROM Monday TO Wednesday DATE The date must h...

Страница 286: ...tation TIMETEMPLATES TIMETEMPLATE shift1 DESCRIPTION Time Template 1 TIMETMPLCONDS TIMETMPLCOND TIMECONDTYPE Match TIME FROM 10 00 TO 14 00 WEEKDAY FROM Monday TO Friday TIMETMPLCOND TIMECONDTYPE Match TIME FROM 17 00 TO 24 00 WEEKDAY FROM Monday TO Friday TIMETEMPLATE shift2 DESCRIPTION Time Template 2 TIMETMPLCONDS TIMETMPLCOND TIMECONDTYPE Match TIME FROM 6 00 TO 18 00 WEEKDAY FROM Monday TO Fr...

Страница 287: ... Time template for shift1 this include the time from 17 00 to 24 00 and from 0 00 to 6 00 on the weekday Monday to Friday TIMETMPLCONDS TIMETMPLCOND TIME FROM 0 00 TO 6 00 WEEKDAY FROM Monday TO Friday TIMETMPLCOND TIME FROM 17 00 TO 24 00 WEEKDAY FROM Monday TO Friday TIMETEMPLATE shift2 DESCRIPTION Time Template 2 Time template for shift2 this includes the time from 6 00 to 17 00 on the weekday ...

Страница 288: ...ESCRIPTION target rule description MSGTARGETRULECONDS for all messages MSGTARGETMANAGERS MSGTARGETMANAGER target manager from 17 00 to 24 00 and 00 00 to 6 00 from Monday to Friday TIMETEMPLATE shift1 OPCMGR IP 0 0 0 0 M1 target manager from 6 00 to 17 00 from Monday to Friday MSGTARGETMANAGER TIMETEMPLATE shift2 OPCMGR IP 0 0 0 0 M2 target manager on the whole weekend MSGTARGETMANAGER TIMETEMPLAT...

Страница 289: ...OPCMGR IP 0 0 0 0 dbexpert MSGCONTROLLINGMGR MSGTARGETMANAGER TIMETEMPLATE OPC_ALWAYS OPCMGR IP 0 0 0 0 dbnotify ACKNONLOCALMGR MSGTARGETRULE DESCRIPTION Financial Application MSGTARGETRULECONDS MSGTARGETRULECOND DESCRIPTION Financial appl msg APPLICATION xyz MSGTARGETRULECOND DESCRIPTION CAD appl messages APPLICATION CAD OBJECT objxy MSGTARGETMANAGERS MSGTARGETMANAGER TIMETEMPLATE OPC_ALWAYS OPCM...

Страница 290: ...Buffer msg outside service hrs for SAP MSGTARGETRULECONDS MSGTARGETRULECOND DESCRIPTION Node with SAP server NODE IP 0 0 0 0 sapsrv01 MSGOPERATIONS MSGOPERATION TIMETEMPLATE outside service hours INSERVICE Scheduled Outage The following example template defines a scheduled outage that suppresses all messages relating to the application oracle from node sapsrv01 CONDSTATUSVARS CONDSTATUSVAR ora_on_...

Страница 291: ...imum number of commands saved is 128 per user OPC_ENV env variable Returns the value of the environmental variable for the user who has started ITO for example PATH NLS_LANG EDITOR SHELL HOME TERM OPC_HOME Returns the working directory of the user who starts an ITO GUI session If OPC_HOME is not set the working directory is tmp If the unix user that started the ITO GUI has no write permission in t...

Страница 292: ... Sample output richie c com 1 Returns all attributes greater than n as name value string Sample output 1 2 richie c com 2 Returns the nth variable binding as name value Note not valid in the command field Sample output 1 2 ritchie c com n Returns all attributes greater than n as seq name type value strings Sample output 2 1 2 OctetString kernighan c com 2 Returns the nth variable binding as seq na...

Страница 293: ...ect identifier of the event Sample output 1 3 6 1 4 1 11 2 17 1 0 58916865 R Returns the true source of the event This value is inferred via the transport mechanism which delivered the event Sample output kernighan c com r Returns the implied source of the event This may not be the true source of the event if the true source is proxying for another source such as when a monitoring application runn...

Страница 294: ...tion of the Add Modify Logfile or Add Modify Console Messages windows However if a console message already has a value for this field MSG_APPL is not overwritten by an entry in the Add Modify Console Messages window Sample output usr bin su 1 Switch User MSG_GRP Returns the default message group of the message as set in the Message Defaults section of the Add Modify Logfile Add Modify Console Mess...

Страница 295: ...n the original message Sample output 05 NMEV_CLASS Returns the class field that was set within the NMEV marker if the marker was present in the original message Sample output 194 Threshold Monitor Templates The variables listed below can be used in most threshold monitor template text entry fields exceptions are noted The variables can be used within ITO or passed to external programs MSG_ID Retur...

Страница 296: ...ast Applications and User Interface The variables listed below can be used in most broadcast application text entry fields exceptions are noted The variables can be used within ITO or passed to external programs OPC_ENV env variable Returns the value of the environment variable for the user who has started ITO for example PATH NLS_LANG EDITOR SHELL HOME TERM OPC_EXT_NODES Returns the node pattern ...

Страница 297: ...60 0f887a7c0000 OPC_NODES Returns the names of all regular nodes that are selected at the time the application is executed The names are separated by spaces The nodes need not be in the node bank Nodes can be selected directly in a submap of the IP Map Sample output kernighan c com richie c com OPC_USER Returns the name of the ITO user who is currently logged in on the management server Sample out...

Страница 298: ...298 Chapter5 Configuring ITO Variables ...

Страница 299: ...299 6 Installing Updating the ITO Configuration on the Managed Nodes ...

Страница 300: ...his chapter describes how to install update the ITO configuration on the managed nodes In addition to this chapter you should also read the HP OpenView IT Operations Concepts Guide for a fuller understanding of the elements and the windows you can use to review or customize them ...

Страница 301: ...y distributes these scripts and programs if they are not installed on the managed node or if a newer version is available on the management server However in order to reduce network traffic and speed up distribution note the following points 1 Put only commonly used binaries into the var opt OV share databases OpC mgd_node customer arch monitor actions cmds subdirectories because the entire direct...

Страница 302: ... script in the appropriate ITO configuration Alternatively make sure the file is available via the PATH settings of the executing user on the managed node This is an example of a customized script to determine running processes which can be called as an application on the Application Desktop or as a broadcast command name opc_op scripts my_ps or my_ps and the PATH variable of the executing user on...

Страница 303: ...e Group Bank window In the Node Bank or Node Group Bank window open the Configure Management Server window by selecting Actions Server Configure This is shown in Figure 6 1 Set a low number in the Parallel Distribution field For more information press F1 to see help on this field Reduce the process priority of opcdistm distribution manager on the management server using the renice 1 command ...

Страница 304: ...aged Nodes Figure 6 1 Configure Management Server Window 5 If identical files for actions cmds monitor are found in the following directories var opt OV share databases OpC mgd_node customer arch and var opt OV share databases OpC mgd_node vendor arch ito_version package_type the customer s file is used in preference ...

Страница 305: ...istribution to HP UX Managed Nodes Customer written programs for HP 9000 series 700 computers Technical Workstations should be compiled using the DA1 1 option HP PA compatibility mode This is because these programs must also run on HP 9000 series 800 computers Enterprise Servers ITO does not distinguish between these two architectures If this is not possible the following symbolic link must be rep...

Страница 306: ...ITO provides the distribution of commonly used scripts and programs These can be called as automatic or as operator initiated actions or as scheduled actions Furthermore these scripts can be used for broadcasting commands or other procedures from the Application Desktop or they can be used by the monitoring agent and logfile encapsulator To distribute the appropriate files select the corresponding...

Страница 307: ...s and Programs Provided by Customers a Where arch is the platform specific directory for example hp s700 hp ux10 On managed nodes the scripts and programs are put into the directories listed in Table 6 2 and Table 6 3 Script Program Location a Automatic Operator initiated and Scheduled Actions var opt OV share databases OpC mgd_node customer arch actions Monitoring scripts programs used by monitor...

Страница 308: ...ions usr OV tmp OpC bin alpha cmds usr OV tmp OpC bin alpha monitor DEC Alpha AXP Digital UNIX var opt OV tmp OpC bin actions var opt OV tmp OpC bin cmds var opt OV tmp OpC bin monitor HP 3000 900 MPE iX TMPACT OVOPC TMPCMDS OVOPC TMPMON OVOPC ZOVOPC for compressed files HP 9000 78 00 HP UX 10 x and 11 x var opt OV tmp OpC bin actions var opt OV tmp OpC bin cmds var opt OV tmp OpC bin monitor IBM ...

Страница 309: ...erver and UnixWare var opt OV tmp OpC bin actions var opt OV tmp OpC bin cmds var opt OV tmp OpC bin monitor Windows NT usr OV tmp OpC bin intel actions usr OV tmp OpC bin intel cmds usr OV tmp OpC bin intel monitor NCR System 3xxx 4xxx 5xxx Intel 486 or higher UNIX SVR4 var opt OV tmp OpC bin actions var opt OV tmp OpC bin cmds var opt OV tmp OpC bin monitor Olivetti Intel PCs Olivetti UNIX SVR4 ...

Страница 310: ... actions var opt OV tmp OpC bin cmds var opt OV tmp OpC bin monitor Silicon Graphics IRIX var opt OV tmp OpC bin actions var opt OV tmp OpC bin cmds var opt OV tmp OpC bin monitor Sun SPARCstation Solaris var opt OV tmp OpC bin actions var opt OV tmp OpC bin cmds var opt OV tmp OpC bin monitor Managed Node Operating System Temporary Directory Managed Node OS Directory Access Rights DEC Alpha AXP D...

Страница 311: ...cmds rwxr xr x owner root var opt OV bin OpC monitor rwxr r owner root HP 3000 900 MPE iX ACTIONS OVOPC cap BA IA PM MR DS PH R X L A W S AC COMMANDS OVOPC cap BA IA PM MR DS PH R X ANY L A W S AC MONITOR OVOPC cap BA IA PM MR DS PH R X L A W S AC IBM RS 6000 Bull DPX 20 AIX var lpp OV OpC actions rwxr r owner root var lpp OV OpC cmds rwxr xr x owner root var lpp OV OpC monitor rwxr r owner root M...

Страница 312: ...ator full access OS 2 var opt OV bin OpC actions rwxa var opt OV bin OpC cmds rwxa var opt OV bin OpC monitor rwxa SCO OpenServer UnixWare DYNIX var opt OV bin OpC actions rwxr r owner root var opt OV bin OpC cmds rwxr xr x owner root var opt OV bin OpC monitor rwxr r owner root WindowsNT usr OV bin OpC intel actions Administrator full access Everyone rx usr OV bin OpC intel cmds Administrator ful...

Страница 313: ... INTEL PCs Olivetti UNIX var opt OV bin OpC actions rwxr r owner root var opt OV bin OpC cmds rwxr xr r x owner root var opt OV bin OpC monitor rwxr r owner root Pyramid mips_r3000 Data Center OSx var opt OV bin OpC actions rwxr r owner root var opt OV bin OpC cmds rwxr xr r x owner root var opt OV bin OpC monitor rwxr r owner root Siemens Nixdorf SINIX var opt OV bin OpC actions rwxr r owner root...

Страница 314: ...t The ITO action agent and monitor agent append the appropriate directories to the PATH setting of the executing user Silicon Graphics IRIX var opt OV bin OpC actions rwxr r owner root var opt OV bin OpC cmds rwxr xr x owner root var opt OV bin OpC monitor rwxr r owner root Sun SPARCstation Solaris var opt OV bin OpC actions rwxr r owner root var opt OV bin OpC cmds rwxr xr x owner root var opt OV...

Страница 315: ...315 7 Integrating Applications into ITO ...

Страница 316: ...ns into ITO The HP OpenView IT Operations Concepts Guide provides more detailed information on the elements and the windows you can use to carry out the integration See also the HP OpenView IT Operations Application Integration Guide available with the HP OpenView IT Operations Developer s Toolkit ...

Страница 317: ...ing opccfgupld 1M You can integrate applications into the following components of ITO operators Application Desktop or administrator s ITO Application Bank broadcast automatic operator initiated actions and scheduled actions monitoring logfile encapsulation SNMP trap and message interception This section also explains how ITO starts applications and broadcasts Integrating Applications into the App...

Страница 318: ...g in of HP OpenView integrated applications is provided by Application Registration Files ARFs which define how users access applications and how application processes are managed HP OpenView applications also have access to HP OpenView windows through the HP OpenView Windows Applications Programming Interface API This is useful for example for generating application specific submaps as done by HP...

Страница 319: ...ent in the IP Map window are not available in this instance The ITO administrator should ensure that the directory tree var opt OV share databases openview mapdb is owned by root Allowing an Operator to View and Manage the opology of IP Networks in the IP Map 1 Working as the administrator from the menu bar of the root IP Map select Window Application Bank The ITO Application Bank window opens 2 D...

Страница 320: ... OV application into an operator s Assigned Applications window to enable the operator to monitor the ethernet traffic Re start the operator s session b As operator Select a node and double click on the Ethernet Traffic application in the Application Desktop Integrating IP Activity Monitoring Tables as an OV Service 1 Working as the administrator from the menu bar of the root IP Map select Window ...

Страница 321: ...tion enables you to graph performance data on the selected managed node s This application runs on the management server and requires that HP PerfView is installed on the management server Start Glance This application starts HP GlancePlus on the managed node This requires that HP GlancePlus is first installed on the managed node In addition ITO allows you to receive alarms from HP MeasureWare Age...

Страница 322: ...egrating PerfView 4 0 and MeasureWare Agents PerfView 3 0 integration is based on the logfile encapsulation of PerfView s alarm log database logfile PerfView template group Perfview With PerfView 4 0 the PerfView agent is replaced by MeasureWare software called PCS Performance Collection Software This software uses unique alarm definitions which send alarms to the performance manager system It is ...

Страница 323: ... GUI However changes to this policy may be made by updating ITO Status which ITO provides in the Application Bank as a preconfigured ITO Application If you wish to allow the operators to control ITO agents make two copies of the ITO Status application exchange the parameters label and description texts and finally assign these applications to your operators To do this carry out the following steps...

Страница 324: ...er root Password leave field empty b Select No Window for example X Application from the option button c Click on OK 6 Assign the new applications to the appropriate users Integrating Applications as Broadcast Commands Applications can be launched on several systems at the same time using the ITO broadcast command facility in the Application Desktop Application Bank The application must be accessi...

Страница 325: ...nistrator and User Administrator groups If an action is prohibited for one of these groups the HP ITO Account will not be able to perform that action The application must be accessible via the root s PATH settings on UNIX systems or the path must be fully qualified on the corresponding message condition configuration window You can also distribute simple and widely used applications via ITO to the...

Страница 326: ...oncepts Guide for more information Application Message Interception The applications that ITO can make use of to integrate a message include Logfiles SNMP traps opcmsg 1 command opcmsg 3 API These messages can then be either suppressed or forwarded according to the configuration of ITO In addition the message can be restructured and ITO specific attributes set up For MPE iX systems ITO also suppor...

Страница 327: ... user input in the profile Instead you can provide an appropriate default value to be returned only when Return is pressed For example the following script for HP UX 10 x produces an endless loop if no valid answer is specified usr bin sh TERM while z TERM do echo Type of terminal hp vt100 c read TERM if TERM hp a TERM vt100 then TERM fi done The correct way to specify the default value is shown b...

Страница 328: ...only answers up to four prompts with Return Do not add a logout message to the user s profile because ITO adds the message at the end of the applications output In addition do not use sequences of escape characters in the profile because these are also added to the application output causing it to be garbled SMS Integration The ITO SMS integration is a collection of monitors and templates that pro...

Страница 329: ...NT systems that run the services that the templates will monitor The DWN monitor sends ITO a message when the service that it monitors is down and either automatically restarts the service or provides the operator with the command that will restart it The UP monitor sends ITO a message when the service is running again UP monitors never have an associated action Table 7 1 ITO SMS Monitors for SMS ...

Страница 330: ...sses all NT application event log entries that are not SMS related thus ensuring that the entire set of 586 match conditions is not checked unnecessarily for non SMS log entries The default NT Logfile encapsulator template dflt_ApplEvLog has a forward unmatched flag set by default This means that if both templates are installed on an SMS Site Server two messages will be generated for each SMS rela...

Страница 331: ...to ITO Message Objects SMS Message ITO Message Group All messages containing one of the words inventory job package instruction or compress Jobs All SMS network errors that are not related to jobs Network All SMS security errors that are not related to jobs Security All SMS database errors that are not related to jobs DB All remaining errors OS SMS Events ITO Message Objects All events that are re...

Страница 332: ... system administration tool To start the EMS GUI start SAM for example from the ITO Application Bank window and double click on the Resource Management icon then on the Event Monitoring Service icon opcmsg 3 has been integrated into the EMS GUI and can be selected as a notification target for EMS events EMS also provides preconfigured conditions for the ITO Interface Messages template for use with...

Страница 333: ...333 8 ITO Language Support ...

Страница 334: ... dependencies of the ITO management server processes managed node commands and processes and the ITO GUI It also describes the languages and LANG settings supported for the various ITO platforms In addition you will find information on the character sets supported by ITO ...

Страница 335: ...0 At this point the LANG variable is set to C or not yet set If you require the ITO server processes to send their status messages in a different supported language set LANG before ovstart ovacomm is called Internal Processing Character Set on Management Server ITO supports the Oracle database character sets WE8ISO8859P1 JA16SJIS WE8ISO8859P1 is an 8 bit character set which corresponds to ISO8859 ...

Страница 336: ...fects how messages are displayed in the GUI the contents of the ITO database remain unchanged TIP ITO also supports running an English ITO GUI in a Japanese environment In this case however although you are running on a Japanese management server you will receive messages and some labels in Japanese due to various HP OpenView platform restrictions If your management server is in a Japanese environ...

Страница 337: ...below English opt OV lib X11 app defaults C Opc Japanese opt OV lib X11 app defaults ja_JP SJIS Opc Table 8 2 ITO Specific X Resources Used for Fonts Resource Description FontList Font used for window titles Vuewm icon fontList Font used for icon titles Resource Description Opc fixedTextFont Font used in list boxes for example in the Message Browser Opc variableTextFont Font used for other labels ...

Страница 338: ... system resource files adapted by ITO on all supported agent platforms See Table 8 5 on page 341 for LANG settings supported on English managed nodes and Table 8 6 on page 343 for LANG settings supported on Japanese managed nodes NOTE Windows NT DEC Alpha NT Novell NetWare and OS 2 managed nodes use the NT System Language A LANG environment variable is not available NOTE HP UX AIX Solaris Digital ...

Страница 339: ...naged nodes depends on the environment If you operate in an English environment your database character set is WE8ISO8859P1 Oracle and the following character sets are supported for ITO managed nodes Table 8 3 Supported Character Sets on Managed Nodes in an English Environment a Code Page 1252 is analogous to ISO 8859 1 If you operate in a Japanese environment your database character set is Shift ...

Страница 340: ... Japanese management server Note however that if you are using ASCII as the character set for internal processing in the Node Advanced Options window you must also specify ASCII as the character set for the monitored logfile messages NOTE To change the character set of the ITO Logfile Encapsulator on the managed node you must first deassign and remove the logfile template from the managed nodes On...

Страница 341: ...also converted before it is acted upon by any managed node processes The following table shows the values of LANG supported by ITO and the related external character set in an English environment Table 8 5 External Character Sets in an English Environment Platform LANG External Character Set AIX C lang ISO8859 1 lang IBM 850 ASCII ISO 8859 1 OEM Code Page 850 Digital UNIX C lang ISO8859 1 ASCII IS...

Страница 342: ...following table shows the values of LANG supported by ITO and the related external character set in a Japanese environment OS 2 LANG variable not available ASCII ISO 8859 1 OEM Code Page 437 OEM Code Page 850 NCR UNIX SVR4 SCO UnixWare SGI IRIX Sequent DYNIX ptx Olivetti UNIX Pyramid DataCenter OSx C lang iso8859 1 ASCII ISO 8859 1 SCO OpenServer C lang 8859 ASCII ISO 8859 1 Siemens Nixdorf SINIX ...

Страница 343: ...processing by setting the locale to C you must also specify ASCII as the character set for the monitored logfile messages ASCII is a subset of Shift JIS and can be converted without loss of data Shift JIS logfiles cannot be converted to ASCII without risking loss of data Table 8 6 on page 343 shows all the supported character sets for various logfile messages NOTE Code Page 932 or Code Page 1252 a...

Страница 344: ...es HP UX Solaris AIX Digital UNIX Nodes NetWare OS 2 Nodes Other Nodes English Japanese English Japanese English English ASCII ISO 8859 1 no MPE ROMAN 8 HP UX MPE American EBCDIC HP UX Multilingual OEM code page 850 AIX OEM US code page 437 Multilingual ANSI code page 1252 NetWare Japanese ANSI code page 932 Shift JIS Solaris 2 6 EUC 2 byte Extended UNIX code ...

Страница 345: ...ut to disk reports broadcast save opccfgupld MIB Ext CS Node CS User def Node CS SV CS Management Server SGI IRIX SCO OS WE8ISO8859P1 Oracle opccfgdwn Key ISO 8859 1 MOM config SV CS Server Character Set Ext CS External Character Set Digital UNIX DYNIX ptx ITO Server ITO UI Olivetti UNIX ISO 8859 1 SINIX Pyramid DC NetWare Windows NT Managed Nodes SCO UW OS 2 DEC Alpha NT ACP1252 ASCII ASCII ISO 8...

Страница 346: ...er set No input conversion is done for configuration files configuration files are always in the node processing character set as defined in the Add Modify Node window No output conversion is done for local ITO logfiles the contents of logfiles are always in the node processing character set as defined in the Add Modify Node window MIB processing is always performed in the node processing characte...

Страница 347: ...u set the character set most frequently used on each managed node For example if you mostly monitor logfiles with ROMAN8 characters you should use ROMAN8 for your managed nodes Similarly if your environment mostly generates input data for ITO in the ISO 8859 1 character set you should set the managed node character set to ISO 8859 1 If in doubt use ISO 8859 1 Note that you can use a different char...

Страница 348: ...he ITO agents on HP UX Solaris AIX and Digital UNIX are running with the processing character set EUC Managed Nodes Incoming SNMP events are always interpreted as ASCII DB OVwindows Shift JIS HP UX Solaris AIX Shift JIS logfiles opcerror opcmsglg monitored logfile configuration files user command opcmsg opcmon opcagt Shift JIS EUC Shift JIS Shift JIS action agent Shift JIS Shift JIS output to disk...

Страница 349: ...P SJIS opcmsg msg_text This is a message with Shift JIS characters Conversion Input conversion of the opcmsg is from Shift JIS to EUC Output conversion before forwarding the message to the management server is from EUC to Shift JIS the database character set Tips On HP UX it is possible to define different character sets for different managed nodes It is recommended that you set the character set ...

Страница 350: ...ames are only displayed in the ITO GUI if a label hasn t been specified To display localized object names in the ITO GUI assign a label to the object You can then localize the label Recommendations Use only ASCII characters for File names for example automatic actions scheduled actions monitor scripts and programs full qualified Trouble Ticket interface notification services physical console ITO o...

Страница 351: ...ation file on the management server from Shift JIS to EUC enter usr bin iconv f sjis t euc mom_orig mom_new where mom_orig is the name of the original configuration file in Shift JIS and mom_new is the IP address of the managed node in Hex as returned by the command opc_ip_addr Alternatively you can convert the mgrconf file on the EUC managed nodes NOTE The above conversion can also be applied to ...

Страница 352: ...352 Chapter8 ITO Language Support Flexible Management in a Japanese Environment ...

Страница 353: ...353 9 An Overview of ITO Processes ...

Страница 354: ...escribes ITO manager and agent processes and subprocesses and lists files used by ITO The chapter is divided into sections that describe the following Management Server Processes Managed Node Processes Secure Networking Figure 9 1 on page 355 provides a functional overview of the major parts of ITO ...

Страница 355: ...ues r e g r o u p Broadcast threshold exceeded Message Sources Monitor Sources Display Manager Action Manager Message Agent Monitor Agent t h r e s h o l d s Action Agent Message Manager Managed Nodes Management Server Display Stations Shell Scripts Programs Supplied Actions Logfile SNMP Traps Logfile Encapsulator Console Interceptor Event Interceptor SNMP MIB others Monitor Script Program Monitor...

Страница 356: ...ction texts are determined using this mechanism ovoareqsdr The request sender informs the control agents to start stop or update their local ITO agents The request sender is also responsible for ITO s self monitoring of ITO manager services and for the heartbeat polling of the managed nodes opcctlm The control manager starts and stops all other ITO manager processes performs all licence checking a...

Страница 357: ...y the control manager opcctlm opcmsgm The message manager receives messages from the managed nodes via the message receiver opcmsgr The messages can be re grouped and logged by the message manager running on the management server The message manager is also responsible for adding annotations triggering notifications and for forwarding the message to the trouble ticket and notification service mana...

Страница 358: ...hroughput If an external instruction text is specified for a message opcttnsm evaluates this help text by way of the Action Manager opcuiadm The ITO GUI for the ITO administrator required for the administrator s configuration activities Note that an additional opcuiopadm process is started Runs as user root opcuiop The ITO GUI for the ITO operator for message browsing and application startup One i...

Страница 359: ...r and control manager cfgchanges File to inform the ITO management server processes about configuration changes for example regroup conditions nodes trouble ticket notification service dispq dispp Queue pipe between the display manager and GUI opcuiop opcuiadm One instance for each ITO GUI that is running forwmgrp forwmgrq Queue pipe between used by the message manager display manager action manag...

Страница 360: ...ion manager pids ITO Manager s process IDs are controlled by the ITO control manager which is also used for self monitoring rqsdbf Buffer file used by the request sender to store requests if the control agent on a given managed node can not be accessed rqsp rqsq Queue pipe between the request handler and the request sender Also used by the display manager and the action manager trace Trace logfile...

Страница 361: ...ver This connection allows access to and modification of messages from the ITO message flow on the agent those messages modified by this process appear in the Message Details window available from the Message Browser with the message source MSI opceca Like all agent processes opceca is controlled by the control agent opcle The logfile encapsulator scans one or more application and or system logfil...

Страница 362: ...ggers local automatic actions by forwarding the task to the action agent opcmsgi The message interceptor receives and processes incoming messages The opcmsg 1 command and opcmsg 3 API can be used to forward messages into ITO Conditions can be set up to integrate or suppress chosen message types opcconsi The MPE iX console message interceptor is the message interface for feeding MPE iX console mess...

Страница 363: ...node use are described in Table 9 3 on page 364 Platform File Location AIX var lpp OV tmp OpC DEC Alpha NT usr OV tmp OpC node HP UX 10 x and 11 x Digital UNIX NCR UNIX SVR4 Olivetti UNIX OS 2 Pyramid DataCenter OSx SCO OpenServer SCO UnixWare Sequent DYNIX ptx SGI IRIX Solaris var opt OV tmp OpC MPE iX TMP OVOPC Novell NetWare SYS var opt OV tmp OpC Windows NT usr OV tmp OpC node ...

Страница 364: ...ssage agent and message stream interfaces to transfer control sequences for message handling via the MSI mpimap mpimaq Queue pipe used by the message agent and message stream interfaces to transfer messages from MSI programs to the message agent msgagtdf File that holds any messages that cannot be passed to the management server for example if the network is down The messages will be read from thi...

Страница 365: ...he HP OpenView IT Operations Administrator s Reference aa Temporary files used by the action agent for example to store the action or application output written to stderr and sdtout moa Temporary files used by the monitor agent Agent File Name File Contents and Function Platform Agent File Location AIX var lpp OV conf OpC DEC Alpha NT usr OV conf OpC node HP UX 10 x and 11 x Digital UNIX NCR UNIX ...

Страница 366: ...tection The level of data protection is chosen by the client although the server has the option of deciding whether a chosen level is sufficient ITO sees the concept of authentication in the context of either the RPC client or the RPC server For example just as a server needs to determine whether or not an incoming request is from a genuine ITO client an RPC client also needs to be sure that the s...

Страница 367: ...est reply sequence starts Authentication can be limited to the connection the first RPC Client Server call or all RPCs between client and server The following simple example of communication between an RPC client and an RPC server illustrates the procedure in the context of ITO In this case the RPC client is the message agent on the managed node and the RPC server is the message receiver on the ma...

Страница 368: ...e s opcinfo file and in the relevant entry in the database on the management server In this way security on a given managed node may be changed to handle for example the addition of sensitive connections through a firewall ITO may be configured in such a way as to be able to overcome a situation where owing to the temporary unavailability or mis configuration of the security service a process is r...

Страница 369: ...cesses on the management server and a managed node To simplify matters ITO sets the default value on the managed node to No security and allows you to select the security configuration node by node In this way the administrator can change a given node s security level depending for example on whether or not there is a need for a given node to communicate across a firewall or through a restricted r...

Страница 370: ... the permitted range However a possible consequence of this is that the newly assigned port may not be available either In this case ITO generates an error message For more information on how to set port ranges and the consequences of incorrect port assignment see the HP ITO Administrator s Guide to Online Information Dynamic Port Assignment through a Firewall Example Scenario If the security prec...

Страница 371: ...TO management server that it should accept another IP address for this node Restrictions and Recommendations If the systems participating in the ITO environment are connected via a fast network LAN it is generally recommended that you choose UDP rather than TCP as the DCE RPC protocol UDP requires significantly less overhead and is therefore faster and less demanding of resources If the managed no...

Страница 372: ...372 Chapter9 An Overview of ITO Processes Secure Networking ...

Страница 373: ...373 10 Tuning Troubleshooting Security and Maintenance ...

Страница 374: ...his chapter contains information for administrators who perform system maintenance performance tuning and troubleshooting It also describes some important security information and how to change the hostname and IP address of your management server and manged nodes ...

Страница 375: ...g SNMP Management Platform Performance To improve SNMP management platform performance reduce or eliminate those HP OpenView Network Node Manager processes which are not used or are used only infrequently Stop netmon 1M increase its polling interval or un manage segments which are not of interest Reduce the amount of memory used by ovwdb 1M the HP OpenView Windows object database daemon for managi...

Страница 376: ...database by running opcdbreorg 1M This frees unused pages as well as restructuring the index tables For more details see the opcdbreorg 1M man page In addition you should periodically tune the database by running optimizedb followed by sysmod Note however that during this process applications cannot work on the database For details about an Oracle database see the documentation supplied with the d...

Страница 377: ...rator if it is absolutely necessary Increase the heartbeat polling interval for the managed node activity check Improve processing performance on the managed nodes by Using message text match conditions with the case sensitive check as often as possible This flag can be set in several places including the Advanced Options window of the Add Modify Copy Logfile window Changing the sequence of the me...

Страница 378: ...tes Make sure all the required patches are correctly installed Make sure that the following directories are included in your PATH opt OV bin OpC opt OV bin OpC install Do not modify HP OpenView product files such as X resources without retaining copies of the original files Make sure that you are not using up too much of your management station s CPU and system resources by collecting too much dat...

Страница 379: ...le To simplify the interpretation of the trace logfile tracing can be activated for specific functional areas by specifying one or more functional areas in the trace statement Activating Tracing on page 380 shows how to use the trace statement and Table 10 1 gives a list of all available functional areas that may be used for tracing Note that some areas are not available for some processes Table 1...

Страница 380: ...r supported platforms opt OV bin OpC install opcinfo or var opt OV conf OpC nodeinfo NOTE When changing the attributes of a managed node the nodeinfo file is overwritten by the distribution process It is therefore recommended that you include the trace statement in the opcinfo file 1 Add OPC_TRACE TRUE in the opcsvinfo and or opcinfo file 2 Select the appropriate functional area or management serv...

Страница 381: ...nge as user root management server processes opt OV bin OpC opcsv trace or restart the management server processes opt OV bin OpC opcsv start managed node processes opt OV bin OpC opcagt trace or re start the managed node processes opt OV bin OpC opcagt start The following example shows an opcsvinfo file with tracing activated File opcsvinfo Description OpC Installation Information of Management S...

Страница 382: ...trator s Reference for file locations on other supported platforms var opt OV tmp OpC trace The general format of the trace information is the following mm dd yy hh mm ss process_name pid area detailed information mm dd yy date hh mm ss time process_name process name pid process ID area functional area as specified in the trace statement detailed information detailed information about the process ...

Страница 383: ...e try to duplicate it on a different node to find out whether it is node specific Distinguish between the administrator GUI and the operator GUI If you suspect that a problem lies with an operator try to test it on another operator to see whether the problem can be duplicated Context What has changed Determine if anything has changed on your network or with the product configuration Hardware Softw...

Страница 384: ...XX OS 2 scripting language script opt OV bin OpC utils opcclct cmd Run this script when you are in a situation that requires attention of a support engineer The script collects all necessary information and gathers important files on the OS 2 managed node and gives instructions how to send this information to the support team This may help to reduce response time from your support team ...

Страница 385: ...ap space intensive Problems may occur simply due to the exhaustion of resources Communication between the ITO management server processes is based on DCE remote procedure calls which may cause occasional failures and time outs of manager agent communications If you are using the Berkeley Internet Name Domain BIND or similar name services on your network pay special attention to hosts with multi ho...

Страница 386: ... to the appropriate log file 2 In addition if possible an ITO message is generated for display in the Message Browser In event of a problem you should always check the ITO error log files The following list indicates where you may find information relating to the operations described Errors reported by ITO manager processes on the management server during operation are written to var opt OV log Op...

Страница 387: ...stance the message agent message receiver message manager display manager display receiver If a message is not found in the Browser make sure that the workspace is configured to receive messages from that managed node Forwarding Unmatched Messages Unmatched messages that is messages that match neither message nor suppress conditions assume the default severity value assigned by the message source ...

Страница 388: ...d objects not selected while performing a task Communication problems between user interface processes and the display manager for example an action cannot be performed because the management server is down This includes errors reported from X applications and applications configured as No Window started from the Application Desktop and errors reported by starting operator initiated actions Errors...

Страница 389: ... via stderr and stdout When starting ITO commands or scripts for example opcagt and opcsv errors which occur during the operation are reported to the stderr stdout device assigned to the calling shell Errors reported by terminal applications started from the application desktop are also displayed on stderr and stdout ...

Страница 390: ...you Need More Information Further information to help you troubleshoot is available in The HP OpenView IT Operations Software Release Notes or the files in the ReleaseNotes directory opt OV ReleaseNotes ITO online help The documentation set provided with ITO HP OpenView documentation for the given platform Oracle Database manuals ...

Страница 391: ... Services Managed Nodes Installation Problems UNIX MPE iX Runtime Problems Platform Independent UNIX HP UX MPE iX llbd and dced rpcd MIB Access Network File System Security issues and system maintenance are discussed at the end of the chapter Troubleshooting on the Management Server This section includes descriptions of specific problems that may occur on the ITO management server and provides a s...

Страница 392: ...se error ORA 01034 ORACLE not available ORA 07318 smsget open error when opening sgadef dbf file HP UX Error 2 No such file or directory OpC50 15 Could not connect to database P openview Please check that the database processes are running OpC50 2 Description The Oracle database services are not running Solution Start the Oracle database su oracle c ORACLE_HOME bin dbstart Problem Creation of the ...

Страница 393: ...ne with your ORACLE_SID Check that user opc_op is properly setup Solution B If no other users of the database use OS authentication you can change the prefix Add or change the line defining the prefix in the file ORACLE_HOME dbs init ORACLE_SID ora os_authent_prefix Stop all processes accessing the database Restart the Oracle database The new prefix is now active If other users also use OS authent...

Страница 394: ...base cannot be started because the Oracle resources are already in use Solution Check that Oracle is not already running Check whether some inter process communication facilities are not freed by the Oracle processes ipcs grep oracle If there are some IPC facilities left clean them up using ipcrm Check whether the Oracle SGA definition file ORACLE_HOME dbs sgadef ORACLE_SID dbf still exists and if...

Страница 395: ...orth Despite these symptoms opcsv status may report that not all ITO manager processes are correctly operating Solution Perform the following steps 1 Stop all ITO GUIs that are running by exiting the ITO user interface File Exit 2 Stop the ITO management server processes opt OV bin ovstop opc ovoacomm 3 Erase all ITO temporary files rm f var opt OV share tmp OpC mgmt_sv Note that all pending messa...

Страница 396: ... external interface after ITO Manager is restarted even if they are no longer of interest Solution Erase ttnsq before starting the ITO management services again Problem When starting the ITO administrator GUI the HP OpenView Windows ovw Root window is created but the following error message is immediately displayed ovw Could not resolve hostname mgmt_server_host_name for licensing Description HP O...

Страница 397: ...n and are no longer visible Description Using the third mouse button action Hide Symbol means the symbol will no longer be displayed on the map In the OV status line the number of hidden symbols is shown Solution Show symbols by clicking on Edit Show Hidden Objects For This Submap Problem Icon Labels changed using OVW functionality do not appear to be updated Description Changing the labels for ic...

Страница 398: ...e the error message The user is already logged on 50 17 when logging on to ITO after the ITO GUI has crashed while users were still logged on Solution Some GUI processes may still be running check for the following processes and kill them opcuiadm opcuiop opcdispr ovw If these processes are not running but you still receive the error message delete the entry for logged on operators from the ITO da...

Страница 399: ...o DEC Alpha NT usr OV bin OpC alpha install opcinfo Digital UNIX usr opt OV bin OpC install opcinfo HP UX 10 x and 11 x opt OV bin OpC install opcinfo MPE iX OPCINFO BIN OVOPC NCR UNIX SVR4 opt OV bin OpC install opcinfo Novell NetWare sys opt OV bin OpC install opcinfo Olivetti UNIX opt OV bin OpC install opcinfo OS 2 opt OV bin OpC install opcinfo Pyramid DataCenter OSx opt OV bin OpC install op...

Страница 400: ...to the management server Use the netstat 1 command to check if a host is multi homed An example of the HP UX output follows netstat r Routing tables Destination Gateway Flags Refs Use Interface 193 1 4 1 193 1 3 1 UH 0 36598 ni0 127 0 0 1 157 0 0 1 UH 52 1919 lo0 15 136 120 15 136 120 91 U 30 86115 lan0 193 1 3 193 1 3 1 U 7 2904156 ni0 15 136 121 55 136 121 11 U 0 11121 lan1 Problem The installat...

Страница 401: ...configuration or problems with IP connectivity for example missing routes to the other LAN interfaces Incomplete Name Service Configuration Commonly the result of the host name for a managed node or management server stored in the name service not containing all host name IP address associations incomplete name service configuration prevents ITO from applying its authorization algorithm ITO checks...

Страница 402: ...ss bound to the Ethernet interface of this managed node in its database but the name service the management server uses has no association to the X 25 IP address of the managed node a message sent by this managed node will be rejected For example if the managed node jacko bbn hp com has the IP addresses 193 1 1 1 for the X 25 interface and 15 136 120 169 for the Ethernet interface The name service...

Страница 403: ...me IP address associations in the name service or by specifying it in the opc hosts file as shown in the following example Management server arthur bbn hp com etc hosts 193 1 4 1 arthur bbn hp com arthur 193 15 136 121 2 arthur bbn hp com arthur 192 1 1 1 arthur bbn hp com arthur fddi Note that ITO uses the fully qualified hostname for identifying a managed node or management server and for resolv...

Страница 404: ...ent you must select the IP address of the managed node manually from the GUI In the above scenario the communication should be bound to subnet 15 136 120 You can select the appropriate IP address from either the Add Node or Modify Node window of the ITO administrator the management server s name service must contain both IP addresses for the node jacko bbn hp com On the managed node you must edit ...

Страница 405: ...e s agents must be restarted using opt OV bin OpC opcagt start Note that the changes in opcinfo are lost when the ITO agent software is re installed Installation Problems and Solutions on MPE iX Managed Nodes Problem Installation aborts because MPE iX system name is not known on the management server Description A The LAN card is not configured with the ieee option required for vt3k operations Sol...

Страница 406: ...t domain Solution B1 Specify a corresponding mapping in vt3k conf See the section ARPA to NS Node Name Mapping for MPE iX on page 128 Solution B2 Check and set the NS node name of the management server nodename nodename ns_name Problem Installation aborts due to interactive logon logoff UDC Description ITO uses vt3k during ITO agent software installation During the installation period the interact...

Страница 407: ...stname for example xyz bbn hp com 0 0 not xyz 0 0 This display string is passed to the agent when it tries to start the X application by redirecting the display to the management server The agent may not be able to resolve the short hostname nor as a consequence start the X application If an operator initiated or auto action started the application an annotation will be added If a desktop applicat...

Страница 408: ...vailable patches Problem ITO configuration is not installed on the managed node For this reason the ITO logfile encapsulator message interceptor console interceptor and event interceptor do not run Description A The managed node contains several LAN cards and therefore several IP addresses Possibly there are several host names The ITO agents use an IP address not known on the management server for...

Страница 409: ...e Description If you start an X application on a managed node that system must be allowed to redirect the display to your display station Solution Specify on your display station for each managed node where X applications operate xhost managed_node To grant access to everyone xhost Problem Application can no longer be started from the Application Desktop Description A An application is no longer i...

Страница 410: ...parameters is too long for an application configured as having a Window Input Output Only 70 characters are available for command path and resolved parameters such as OPC_NODES Solution E Do not specify the full command path Put this path in the executing user s PATH variable Avoid hard coded parameters and only pass dynamic parameters Instead of calling the application with lots of hard coded par...

Страница 411: ...s only one common password for the assigned default operator on UNIX managed node as well as one common password for the assigned default operator on MPE IX managed nodes Furthermore only one password can be specified for default application startup So both command broadcasting using customized user password or application startup will fail Note that a password is only required for Window Input Ou...

Страница 412: ...OpC alpha opcagt status HP UX10 x 11 x Solaris NCR UNIX SVR4 SGI IRIX SCO OpenServer SCO UnixWare DYNIX ptx Digital UNIX Olivetti UNIX and Pyramid DataCenter OS x OS 2 opt OV bin OpC opcagt status MPE iX opcagt bin ovopc status Windows NT usr OV bin OpC intel opcagt status Check the local opcerror file for indications of where the problem may be originating For the location of this file see Errors...

Страница 413: ...o the ITO management server restart the ITO user interfaces and manager services too ovstart opc ovoacomm Task HP UX 10 x and 11 x Managed Nodes 1 Stop ITO agents including the control agent opt OV bin OpC opcagt kill 2 Check that all ITO agents are stopped a opt OV bin OpC opcagt status 3 Check the list of agent PIDs given by the opcagt status command If any PIDs are not stopped use the kill 1M c...

Страница 414: ...al UNIX usr opt OV bin OpC opcagt kill 2 Check that all ITO agents are stopped opcagt status 3 Check again that all ITO agents are stopped using the list of agent PIDs given by the opcagt status command If any are not stopped execute the kill 1M command ps eaf grep opc kill proc_id 4 Check that no ITO processes are still registered with the llbd or dced rpcd daemons usr sbin ncs lb_admin opt dce b...

Страница 415: ... opcagt status opcagt bin ovopc status 3 Check again that all ITO agents are stopped using the list of agent PIDs given by the opcagt status command If any are not stopped execute the kill 1M command ps eaf grep opc kill proc_id showproc system tree pin 1 MPE iX processes cannot be killed 4 Check that no ITO processes are still registered with the llbd or dced rpcd daemons etc ncs lb_admin opt dce...

Страница 416: ...page 308 and Table 6 3 on page 310 Solution A Provide enough disk space and redistribute the appropriate components Description B An instance of the program is running and cannot be overridden on UNIX platforms ITO moves the actions cmds monitor directory to a directory with the same name and the extension old before installing the latest binaries Afterwards all files in old are erased If this is ...

Страница 417: ...asts on Managed Nodes on page 327 Problem Scripts or other actions on the managed node do not execute and the action agent log file reports script not found Description The PATH variable prepared by the action agent was changed by a startup file When ITO agents are started on a system where the korn shell is used and root s profile points to a startup file where PATH is set explicitly the PATH var...

Страница 418: ...on Increment the job limit HPJOBLIMIT if required Problem When distributing command action or monitor scripts or programs it may happen that current actions commands and monitors cannot be replaced Description The commands actions or monitors are still in use scripts or programs are running text file is busy The user receives a warning to this effect In most cases this causes no problems since the...

Страница 419: ...re creates this file many times The result is that the number of open file descriptors increases and the system table used to administrate open files is overloaded It is then not possible to open any new files Solution Check that the file LASTUUID PUB HPNCS exists listf LASTUUID PUB HPNCS If the file does not exist stop all ITO agents working as user AGENT OVOPC opcagt bin kill Create a new file a...

Страница 420: ...istspf o seleq jobnum j num Check the spool file contents to determine the job number of the hanging job print o spf_id out hpspool 3 Delete the appropriate OPCAAJOB abortjob j num Problem Invalid status returned for automatic operator initiated actions when running in parallel and an action fails Description ITO uses the same environment for running automatic and operator initiated actions in par...

Страница 421: ...scheduled actions Description The output of the scheduled action cannot be read correctly Solution The scheduled action executes correctly you can safely ignore this error message Problem Setting the port range for MPE iX managed nodes has no effect Description You can set the port range in the Node Advanced Options window but this doesn t have any effect MPE iX managed nodes cannot communicate wi...

Страница 422: ...red ITO process stops responding even though it is running there may be a problem with the NCS local location broker daemon llbd or the DCE RPC daemon dced rpcd Solution For UNIX systems check that the dced rpcd is running on the management server and that either an llbd or dced rpcd is running on all managed nodes ps eaf grep dced rpcd ps eaf grep llbd You can use the tools rpccp dcecp to check t...

Страница 423: ... one of the get community strings in the snmpd configuration file Or edit the configuration file for the SNMP daemon on HP UX 10 x and 11 x managed nodes etc SnmpAgent d snmpd conf get community name enter the community name for the SNMP agent More than one community name can be specified by adding a line for each community name This can be set to one of the following When left empty The SNMP agen...

Страница 424: ...iption The logfile encapsulator can sometimes perceive logfiles set up on NFS as being open even after they have been removed This causes an attempted access to fail Solution Change the policy by closing the logfile between reads Select Window Message Source Templates to open the Message Source Templates window Make sure that logfiles are listed click on the desired logfile then on Modify In the M...

Страница 425: ...address Hostnames work within IP networks to identify a managed node While a node may have many IP addresses the hostname is used to pin point a specific node The system hostname is the string returned when you use the UNIX hostname 1 command Changing the Hostname IP Address of the Management Server Change the hostname and or IP address of the management server in two stages Firstly set up the cha...

Страница 426: ... opc ovoacomm d Check that no ITO processes are running ps eaf grep opc e If an ITO process is still running kill it manually kill proc_id All ITO intelligent agents on ITO managed nodes will start buffering their messages 2 Make sure the database is running If it is not running start it with the following commands su oracle ORACLE_HOME bin svrmgrl connect internal startup exit exit For more infor...

Страница 427: ...oracle ORACLE_HOME bin svrmgrl connect internal shutdown exit exit 5 Stop OpenView and all other integrated services including ITO opt OV bin ovstop 6 Modify the following ITO management server configurations a To change the hostname edit the following files Always replace any occurrence of the old hostname with the new one opt OV bin OpC install opcsvinfo var opt OV share databases openview ovwdb...

Страница 428: ...OV bin ovstop opc ovoacomm 2 Start the OpenView Topology Manager Daemon Service opt OV bin ovstart ovtopmd 3 If you changed the hostname you must also update the ITO subagent configuration rm etc opt OV share conf OpC mgmt_sv svreg touch etc opt OV share conf OpC mgmt_sv svreg opt OV bin OpC install opcsvreg add etc opt OV share conf OpC mgmt_sv itosvr reg To reconfigure additionally installed sub...

Страница 429: ...HP OpenView IT Operations Installation Guide for the Management Server 11 Start OpenView and all other integrated services including ITO opt OV bin ovstart NOTE At this point the agent will start forwarding its buffered messages 12 Start the ITO GUI and log in as administrator 13 Check that the templates are assigned to the new node they should still be 14 If you changed the hostname re distribute...

Страница 430: ...ment server in their opcinfo file b If the modified ITO management server is configured as a primary manager for some managed nodes update those managed nodes by running the following command from the modified ITO management server opt OV bin OpC opcragt primmgr all nodegrp group node c Make sure that your hostname IP address changes are reflected in all appropriate configurations and templates ac...

Страница 431: ...to change stop the ITO agent processes opt OV bin OpC opcagt kill 2 On the management server ensure that the database is running If it is not running start it now with the following command su oracle ORACLE_HOME bin svrmgrl connect internal startup exit exit For more information about the Oracle database see the HP OpenView IT Operations Installation Guide for the Management Server 3 On the manage...

Страница 432: ...me IP address If you are moving from a non name server environment to a name server environment make sure the name server has access to the new hostname IP address b Reboot your ITO managed node system c If the ITO agent processes did not automatically restart when you rebooted the system restart them now opt OV bin OpC opcagt start 5 Perform the following procedures on your management server a St...

Страница 433: ...eps a and b below You have to do these workaround steps since opcchgaddr changes only central tables containing node information the internal ID is not modified This means the template itself is not changed in the database Therefore the special flag indicating the template has been modified will not be set Merely using Force Update will not update the database since ITO caches the templates as fla...

Страница 434: ...f you are operating ITO in a distributed management server environment Manager of Manager environment If you are running ITO in a multi management server environment refer to opcmom 4 for more details perform the following steps 1 Follow steps 2 through 7 above on all management server systems that control or monitor the modified node 2 Carry out step 8 on all ITO management server systems that re...

Страница 435: ... problems that need to be addressed to allow the ITO management server and managed node to run on a trusted system Network security involves the protection of data that is exchanged between the management server and the managed node and is primarily DCE related ITO security looks at the security related aspects of application setup and execution operator initiated actions and so on System Security...

Страница 436: ...2 secure environment imposes a number of important restrictions on the ITO configuration Table 10 7 on page 436 lists those areas and provides a brief explanation of the cause of the restriction It is the administrator s decision as to where security priorities lie Table 10 7 Restrictions in a C2 secure Environment Restricted Area Explanation ACLs Although C2 recommends the use of ACLs the OpenVie...

Страница 437: ...n The level of data protection is chosen by the client although the server has the option of deciding whether a chosen level is sufficient and ITO sees the concept of authentication in the context of either the RPC client or the RPC server For example in the same way that an RPC server needs to determine whether or not an incoming request is from a genuine ITO client an RPC client also needs to be...

Страница 438: ...ough a DCE server system can also be an ITO management server or a managed node it is recommended that the DCE servers be separate from the ITO management server in order to distribute demand on resources It is also highly recommended that you consider the option of configuring the DCE server system as an ITO managed node In this way ITO can monitor the health and status of the DCE server system N...

Страница 439: ...ortant to switch to UNIX user root before logging into DCE This applies to both the management server and the managed node To configure the ITO management server and managed nodes to use authenticated RPCs perform the following steps 1 Ensure that each managed node and the management server are members of a DCE cell as well as a DCE server system itself To add a node to a DCE cell run the DCE util...

Страница 440: ...ions Node Set Defaults Advanced Options if you want to change the default setting for all nodes or Actions Node Modify Advanced Options if you want to change the default setting for an individual node d Fill in the relevant fields in the Communications Parameters section ITO s online help provides guidance on the options provided e Close the Advanced Options window f Click OK in the ITO Node Defau...

Страница 441: ... a key which is not visible to the client application and known only to the security service and the server The RPC server verifies the ticket using the server s password in the key file and rejects non matching RPCs i e if a client receives a successful response from the server it knows that an authentic server processed the request The only information the server has at this point is whether or ...

Страница 442: ...ity level However this configuration information must be present on both the management server and the managed node In the context of DCE ITO associates just two names or principals with the two types of node in its environment namely one each for the management server and the managed node All management server process then run under the name associated with the management server and all processes...

Страница 443: ...dle for example the addition of sensitive connections ITO may be configured in such a way as to be able to overcome a situation where owing to the temporary unavailability or poor configuration of the security service a process is required to run in unauthenticated mode or fail For example if a management server process such as the request sender receives an authentication failure when calling a c...

Страница 444: ... the port number of the RPC server on the remote system and consequently has to obtain this information before initiating an RPC request It does this by contacting the llbd or rpcd on the remote system and looking up the specific port number of the RPC server it needs to connect to With this information the RPC client sends the real request for real information to the RPC server at the port number...

Страница 445: ...res For more information on port restrictions in a firewall environment see Figure 10 2 on page 449 Table 10 8 Port Allocation in ITO If a service request for a port number within the range specified is refused because none is available the process will not start If such an occurrence arises you can stop the ITO server processes and use the utility opt OV bin OpC utils opc_reset_ports to delete th...

Страница 446: ...agents You can then configure a bigger range for this managed mode and after a successful distribution restart the agent Table 10 9 Ports Required by the ITO Agent a m number of ITO Server in parallel use n number of agents in parallel use b Local connects to the display server on the local machine ITO Component Agent Process Ports Required a Port Type No b rpc server rpcd 1 135 control agent opcc...

Страница 447: ...ocal machine ITO Component Server Process Ports Required a Port Type No b rpc server rpcd 1 135 message receiver opcmsgrd 1 distribution manager opcdistm 1 display manager opcdispm 1 socket server opctss 1 10 rpc client request sender ovoareqsdr 2 n action manager opcactm 2 local forward manager opcforwm 2 m 2 local JAVA UI server opcuiwww 1 2531 opcragt 2 n JAVA GUI socket based 1 2531 ITO SE JAV...

Страница 448: ...gured to keep the ports specified in Figure 10 2 open for communication between the ITO management server and the managed nodes It is recommended that the minimum number of ports for the management server specified in range 1 in Figure 10 2 be in the order of 50 although this depends on the number of calling managed nodes The minimum port range on the managed node range 2 should be 10 You set rang...

Страница 449: ...ients using UDP Since the managed nodes may make DCE RPC calls using UDP to the rpcd on the management server it is important that the rpcd dced runs in an environment on the management server where the value of RPC_RESTRICTED_PORTS is set to match the port range defined both on the ITO management server and at the firewall The value of RPC_RESTRICTED_PORTS needs to be set in the following way in ...

Страница 450: ... files Accessing ITO Only ITO registered users can access the ITO GUI By default the users opc_adm and opc_op are available The ITO user names and passwords have no direct relation to UNIX user names and passwords However it is possible to use UNIX user names and if the user name is defined in the ITO database the user is not prompted for a password This is the fastest way to open an ITO GUI Furth...

Страница 451: ...ect the value of umask as set before the ITO operator GUI was started Operators who want to share files with other operators need to set or ask the system administrator to set the appropriate file and group and permissions for the desired degree of sharing ITO will no longer change any of these settings automatically However ITO operators are not able to make unauthorized changes and all ITO confi...

Страница 452: ...ator to log on without entering a password Integrated applications menu items introduced using an ITO OV Service application or registered actions represented by an ITO OV Application that are started from ITO start under the same unix user as the operator which is not usually opc_op Program Security The HP UX 10 x and 11 x programs opt OV bin OpC opc and opt OV bin OpC opcuiadm have the s bit set...

Страница 453: ...ion request to start the application Application execution can be compromised by the use of password aging Password aging is a feature of C2 that expires passwords after a specific period of time has passed a specific date has been reached a certain number of unsuccessful login attempts have been made Administrators need to bear in mind that if this feature is enabled it could lead to application ...

Страница 454: ...tab file Generally the initial DCE login will fail in only the following situations any of which may be rectified by logging in on the managed node and running opc_sec_register sh manually After installation or after running for the first time in authenticated mode and if the opc_sec_register sh utility was executed on the management server to create the managed node account In this case the local...

Страница 455: ... executing user management_server opc_op Passwords on MPE iX Managed Nodes The ITO default operator MGR OVOPR does not have a password assigned by default You can set an appropriate password for user MGR for his home group PUB or for the account OVOPR Also note the following Account Passwords By default no passwords are set for account OVOPC and OVOPR Group Passwords By default no passwords are se...

Страница 456: ...h many unknown gateways and networks then administrators need to think in terms of the measures required to improve security In addition automatic and operator initiated actions are currently executed as root Consequently in order to prevent security holes it is essential that the administrator protect any shell scripts for example those used to switch user by assigning minimal rights choose caref...

Страница 457: ...izing the database You can select from the following audit levels No Audit ITO does not maintain any auditing information Operator Audit ITO maintains audit information about operator logins and logouts including attempted logins changes to the ITO user passwords all actions started from the browsers and from the Application Desktop Operator Audit is the default level after installation Administra...

Страница 458: ...assword Actions Applications Broadcasts start add modify delete Message Source Templates add modify delete add modify delete automatic and operator initiated action add modify delete condition Managed Nodes configuration distribution of actions monitor and commands changes to node defaults template assignment Node Groups add modify delete managed node assignment ITO User Configuration add modify d...

Страница 459: ...ilable Note that if you change an existing audit level the new level is applied only after the operator has begun a new ITO session Audit information can be written to a report for future review and can be displayed in the ITO Reports window You can view these reports on your screen write them to a file or print them NOTE We strongly recommend that you download audit information regularly from the...

Страница 460: ... the management server but also on the managed nodes Consequently if the restored configuration on the management server does not match the current configuration on a managed node errors relating to missing instruction text or incorrectly assigned templates may occur For this reason it is recommended that after a backup has been restored the templates action command and monitor scripts are redistr...

Страница 461: ...g using this method to backup your data the following advantages and disadvantages should be noted archive log mode is not needed which means better overall performance less disk space required you can only recover to the state of the most recent full backup binaries are backed up too if full mode is used all OV services and GUIs have to be stopped For an overview of the backup functions see the f...

Страница 462: ...ain blocked for the duration of the backup Any task that cannot be completed before the backup starts remains idle until the backup is finished and then resumes and completes Note that the backup does not include Oracle s online redo log files which cannot be backed up while the database is running However Oracle does allow you to mirror these files on different disks so that they can be recreated...

Страница 463: ...o define the names of the archived log files log_archive_format T TS S ARC 4 Start up the database and enable archive log mode Enter the following commands as user oracle svrmgrl SVRMGR connect internal SVRMGR startup mount SVRMGR alter database archivelog SVRMGR alter database open SVRMGR exit 5 After enabling archive log mode it is recommended you shutdown the database again and take a full off ...

Страница 464: ...tely 300MB of free disk space is required to backup a fresh ITO installation bigger environments wil require more space The backup may then be completed by using a command such as fbackup to save the backup to an archive medium such as a tape device For more information on the command line options see the man page ovbackup ovpl 1M Briefly ovbackup ovpl carries out the following high level steps Ba...

Страница 465: ...checkpoint ovpl and backs up the NNM analytical repository if the embedded database is used NOTE ovbackup ovpl stores progress information in the file var opt OV tmp ovbackup log The ovrestore ovpl Command The ovrestore ovpl command restores a backup or parts of a backup created with ovbackup ovpl and accepts the following command line options ovrestore ovpl operational analytical d destination If...

Страница 466: ...ckup ovpl namely var opt OV tmp ovbackup log The ito_restore sh script which is integrated in the ovrestore ovpl script allows you to restore the complete Oracle database either to the state of the backup or to the most recent state a rollforward is done based on the off line redo logs However using Oracle s archive log mode offers more possibilities For example you can retrieve single corrupt dat...

Страница 467: ...n files restored to the state of the backup and the data in the database restored to the latest possible state Consequently the recovery scenario will work only if the following restrictions apply All control files must exist Normally control files are mirrored If one of the control file still exists it can be copied from one location to the other However this should be done by an Oracle DBA The s...

Страница 468: ...w To restore previously backed up history messages or audit information see the opchistupl 1m or opcaudupl 1m man pages in the HP OpenView IT Operations Man Pages Backup the ITO configuration regularly See the previous sections for more informations on what backup possibilities are available in ITO Re organize the database using opcdbreorg This tool frees empty pages and re organizes the B trees F...

Страница 469: ...e version on HP UX 11 0 they are different releases Consequently if you upgrade the operating system from HP UX 10 20 to HP UX 11 0 you will have to upgrade the database too NOTE If you are using the HP UX 10 20 operating system we recommend you upgrade to Oracle 7 3 4 Since this version of the Oracle database is supported by both ITO 4 x and ITO A 05 00 you can verify that the database upgrade wo...

Страница 470: ...link libopcora sl which points to the current Oracle installation Change this link to point to the new upgrade installation Enter rm f opt OV libcl libopcora sl ln s ORACLE_HOME lib libclntsh sl opt OV lib libopcora sl Database Configuration Tips Although using Oracle s archivelog mode helps to reduce the loss of data after a backup and restore Oracle offers additional ways to avoid data loss in t...

Страница 471: ...w control03 ctl 5 Restart the database Create a second or even third set of mirrored online redo logs on the second or third disk ITO installs Oracle in such a way that by default it has three redo log groups each containing one member The following example creates a second set of redo log files in the directory u02 oradata openview Modify the directory names and repeat the steps as required 1 Cre...

Страница 472: ...this directory if you are unable to use another solution or there are too many unprocessed and old messages If you no longer need the logfiles you should backup and then erase the continuously growing ITO software installation update de installation logfile var opt OV log OpC mgmt_sv install log The logfile inst_err log and inst_sum log do not continuously grow because they are generated for each ...

Страница 473: ...or local message logging Since there are four logfiles if the opcmsglg file size is greater than 9 4 MB ITO performs the following tasks if it exists move opcmsgl2 to opcmsgl3 if it exists move opcmsgl1 to opcmsgl2 move opcmsglg to opcmsgl1 1 MB for local error warning message logging Since there are four logfiles if the opcerror file size is greater than 1 4 MB ITO performs the following tasks if...

Страница 474: ...OpC var lpp OV tmp OpC bin var lpp OV tmp OpC conf DEC Alpha NT usr OV tmp OpC node usr OV tmp OpC bin alpha usr OV tmp OpC conf node HP UX 10 x 11 x Digital UNIX DYNIX ptx IRIX NCR UNIX SVR4 Olivetti UNIX Pyramid DataCenter OSx OS 2 SCO OpenServer SCO UnixWare SINIX Reliant Solaris var opt OV tmp OpC var opt OV tmp OpC bin var opt OV tmp OpC conf MPE iX TMP OVOPC TMPACT OVOPC TMPCMDS OVOPC TMPCON...

Страница 475: ...nd after you have done a backup purge the file To limit the size of this file you can also change the value for Max Size in the Node Advanced Options window Other Managed Nodes The following table describes where local logfiles reside for managed nodes running Digital UNIX DYNIX ptx NCR UNIX SVR4 Olivetti UNIX Pyramid DataCenter OSx OS 2 SCO OpenServer SCO UnixWare SGI IRIX SINIX Logfile Windows N...

Страница 476: ...al Logfiles on Other Managed Nodes Logfile Digital UNIX DYNIX ptx NCR UNIX SVR4 Olivetti UNIX Pyramid DataCenter OSx OS 2 SCO OpenServer SCO UnixWare SGI IRIX SINIX Reliant and Solaris Default Logfile path var opt OV log OpC ITO errors warnings opcerror opcerro 1 3 ITO messages opcmsglg opcmsg 1 3 ...

Страница 477: ...ol opclic to maintain the licenses For more information on the command line interface opclic see ITO License Maintenance Tools on page 478 After installation the ITO administrator replaces the Instant On licence with the correct license The licence maintenance tool opclic ensures that the license file does not contain more than one server license License Types License types relate very strictly to...

Страница 478: ...n Management Stations ITO Management Server ITO license with 2 users Development Kit Limited management server license with 5 Nodes and 1 User NNM can manage a maximum of 25 objects with this license Instant On a Same as the ITO management server license Runtime 120 days Emergency a Same as the ITO management server license Runtime 14 days Evaluation Evaluation license with full functionality Runt...

Страница 479: ...ription Notes add adds new license passwords opclic does not allow more than one server license password in the license file Passwords added using unsupported methods are invalid ITO will not start and the invalid password s must be removed with opclic see also list Use the optional force parameter to replace licenses Note that the server license password is not overwritten if the force parameter ...

Страница 480: ...ete option it can only be removed or replaced with add license_pwd force report list details of the installed licenses ITO management server license type start end time ITO managed node licenses total used free Tier ITO user licenses total warnings for duplicate or invalid license passwords help lists opclic usage information including all command line parameters Command line Option Description No...

Страница 481: ...481 A ITO Managed Node APIs and Libraries ...

Страница 482: ...naged Node APIs and Libraries This chapter provides information about ITO APIs on Managed Nodes ITO APIs for Novell NetWare Managed Nodes ITO Managed Node Libraries Include Files on all Managed Nodes Managed Node Makefiles ...

Страница 483: ...ed is available in the file opcapitest c on the management server in the directory opt OV OpC examples progs See Managed Node Makefiles on page 497 for a list of the corresponding makefiles API Command Description n a opcmack 1 Acknowledges an ITO message received from the message agent on the managed node and sent to the appropriate management server opcmon 3 opcmon 1 Feed the current value of a ...

Страница 484: ...This action is executed by the ITO action agent and the output is captured as an ITO annotation define OPC_NLM include opcnwapi h main int argc char argv int handle OVnlm_init argc argv handle printf s Hello world n argv 0 OVnlm_exit handle 0 Command Description OVnlm_init Must be the first function called in the main function of an ITO enabled NetWare Loadable Module NLM This function initializes...

Страница 485: ...ndix A 485 ITO Managed Node APIs and Libraries ITO APIs for Novell NetWare Managed Nodes An additional example is provided in the following file on the management server opt OV OpC examples progs nwopcnlm c ...

Страница 486: ...A 05 00 HP UX 11 0 DCE Library n a libopc_r sl libopc_r sl Libraries linked to the ITO library n a usr lib libdce 1 usr lib libc 1 usr lib libdcekt 1 usr lib libpthread 1 usr lib libnsl 1 usr lib libc 1 Link and compile options n a lopc_r ldce lc_r lopc_r Description n a The ITO A 04 xx HP UX 11 x agent is a re certified HP UX 10 x agent and does not make use of any HP UX 11 x specific features fo...

Страница 487: ... DCE It is not exchangeable with the NCS version The compatibility link from libopc sl to libopc_r sl was introduced with patch PHSS_15265 to match the documentation Linking libdce sl and libc_r sl was recommended but not necessary Last version with the compatibility link Linking of libdce sl and libc_r sl is not recommended HP UX 10 01 10 10 10 20 NCS Library libopc78 sl n a n a Libraries linked ...

Страница 488: ...ith the NCS version n a HP UX 9 00 9 01 9 03 9 04 9 05 9 07 NCS Library libopc78 sl libopc78 sl n a Libraries linked to the ITO library usr lib libnck a lib lib lib l usr lib libnck a lib lib lib l n a Link and compile options lopc78 lopc78 n a Description This library is not exchangeable with the DCE version This library is not exchangeable with the DCE version n a MPE 5 0 5 5 6 0 NCS Library lib...

Страница 489: ...bgcc a libov a and libovutil a are statically linked into libopc so usr lib libw so usr lib libnck a usr lib libgcc a usr lib libsocket so usr lib libnsl so Link and compile options lopc lopc lnsp lov lovutil lsocket lnsl lopc nsp lsocket lnsl Description n a n a n a SunOS 4 1 3 4 1 4 NCS Library libopcapi a libopcapi a n a Libraries linked to the ITO library n a Link and compile options lopcapi l...

Страница 490: ...and compile options D_THREAD_SAVE D_CMA_NOWRAPPERS_ lopc_r lpthreads lc_r D_THREAD_SAVE 3 2 D_CMA_NOWRAPPERS_ lopc_r lpthreads lc_r D_CMA_NOWRAPPERS_ lopc_r lpthreads lc_r Description Version 3 2 is obsolete with ITO A 05 00 Note Only ITO A 04 xx integrations built on AIX 4 x with above options can be run on ITO A 05 00 AIX 3 2 4 1 4 2 4 3 NCS Library libopc o libopc o n a Libraries linked to the ...

Страница 491: ...bnsp so usr lib libnck a usr lib libnsl so usr lib libc so Link and compile options lopc lsocket lnsl lopc lsocket lnsl lopc lsocket lnsl Description n a n a n a Sequent DYNIX ptx 4 0 4 1 2 4 1 3 4 2 0 4 4 0 4 4 1 4 4 2 NCS Library libopc so libopc so libopc so Libraries linked to the ITO library usr lib libncka usr lib libintl a usr lib libsocket so usr lib librpc so usr lib libnsl so usr lib lib...

Страница 492: ...dorf SINIX Reliant 5 41 5 42 5 43 5 44 NCS Library libopc so libopc so libopc so Libraries linked to the ITO library usr lib libnck a usr lib libsocket so usr lib libnsl so mips_cc is used which comes with its own libraries mips_cc is used which comes with its own libraries Link and compile options lopc lnck lnsp lsocket lnsl lc lucb lopc lnck lnsp lsocket lnsl lc lucb Description n a Available as...

Страница 493: ...le options lopc lsocket lnsl_s lx lopc lsocket lnsl_s lx lopc lsocket lnsl_s lx Description n a n a n a DEC Alpha Digital UNIX OSF 1 3 2 4 0 4 2 5 0 DCE Library libopc so libopc_r so libopc_r so Libraries linked to the ITO library usr lib libnck a usr lib libc a usr lib libcxx so usr lib libiconv so usr shlib libiconv so usr shlib libdce so usr shlib libdce_r so optional usr shlib libphtreads so u...

Страница 494: ...scription n a n a n a DEC Alpha on Windows NT 3 51 4 0 DCE Library n a n a Libraries linked to the ITO library n a n a Same as Windows NT on Intel Link and compile options n a n a Description n a n a Use mak files to build Intel on Windows NT 3 51 4 0 DCE Library opc dll opcappi dll opc dll opcapi dll opc dll opcapi dll Libraries linked to the ITO library Link and compile options Description Use m...

Страница 495: ... n a libopc lib libopc lib Libraries linked to the ITO library n a No libraries linked No libraries linked Link and compile options n a DOPC_NW DNW DCSM_ONC bt NETWARE DOPC_NW DNW DCSM_ONC bt NETWARE Description n a libopc lib is only used as archive library for API developers it is not used at runtime libopc lib is only used as archive library for API developers it is not used at runtime Intel on...

Страница 496: ...pcapi h Sun SPARCstation Solaris opt OV include opcapi h IBM RS 6000 Bull DPX 20 AIX usr lpp OV include opcapi h NCR 3xxx 4xxx Intel 486 or higher UNIX SVR4 opt OV include opcapi h Intel 486 or higher SCO OpenServer opt OV include opcapi h Intel 486 or higher SCO UnixWare opt OV include opcapi h Silicon Graphics Indigo IRIX opt OV include opcapi h DEC Alpha AXP Digital UNIX usr opt OV include opca...

Страница 497: ...ment server also contains the makefiles for building the examples They use the correct compile and link options needed to get a correctly built executable Makef aix Makef dec Makef hpux10 Makef hpux11 Makef irix Makef mpe ix Makef ncr Makef nw Makef oli Makef os2 Makef ptx Makef pyr Makef sco Makef sinix Makef sinix dce Intel 486 or higher Novell NetWare SYS opt OV include opcapi h op cnwapi h DEC...

Страница 498: ...f uxw For Windows NT use the Microsoft Developer Studio 4 2 or higher See also opt OV OpC examples progs README Management Server Makefile The following makefile is available in the directory opt OV OpC examples progs on the management server Makef hpsv makefile for the management server on HP UX ...

Страница 499: ...499 B Administration of MC ServiceGuard ...

Страница 500: ... working with ITO in HP MC ServiceGuard clusters It assumes that you are familiar both with MC ServiceGuard and the general concepts of ITO For more detailed information about MC ServiceGuard see the Managing MC ServiceGuard manual To install and configure ITO in an MC ServiceGuard cluster see Appendix B in the HP OpenView IT Operations Installation Guide for the Management Server ...

Страница 501: ...For example two or more CPUs and two or more independent disks allow a configuration that eliminates single points of failure In addition MC ServiceGuard also provides the software support to control the transfer of your applications to another CPU or network after a system failure MC ServiceGuard can also be used to transfer the control of the running applications to another CPU during maintenanc...

Страница 502: ...ge control script Original Node The node on which the package is running before SG initiates a transfer of control Adoptive Node A node to which SG can transfer control of a package A package may have several adoptive nodes Note that you can define packages that only run on a subset of all SG cluster nodes Adoptable Package A package for which the control can be transferred to an adoptive node by ...

Страница 503: ...between different cluster servers Example 1 MC ServiceGuard Package Switchover The SG cluster shown in Figure B 1 represents a typical scenario Node 1 runs the application packages A and B Node 2 is runs the application package C Node 3 is runs the application packages D E and F The nodes are connected by two redundant LANs connected by way of a bridge Each node has its own root disk and shares vo...

Страница 504: ...ckage to another node does not transfer the program counter Processes in a transferred package will restart from the beginning If necessary all processes in a package must be written so that they can detect such a restart When a node fails the CPU is halted immediately using a Transfer Of Control TOC which is an immediate halt without a graceful shutdown Bridge Package A Package D Package C Root 1...

Страница 505: ...ubnet Node 1 and node 2 communicate by way of LAN 0 LAN 1 is in standby mode Figure B 3 MC ServiceGuard LAN Switchover Before the Switch Package C Mirror Bridge Package A Package F Package E Package D Package C Root 1 Root 2 Root 3 Root 2 Mirror Node 1 Node 2 Node 3 Package A Disk Package F Disk Package E Disk Package D Disk Package C Disk Package B Disk Package A Mirror Package D Mirror Package F...

Страница 506: ...een nodes Figure B 4 MC ServiceGuard LAN Switchover After the Switch MC ServiceGuard Redundant Data and Control Subnets In general you have two redundant subnets for ServiceGuard clusters A subnet used by the package applications for the data transfer and A subnet used by SG to transfer the heartbeat signal to and from each SG node If your network traffic is very heavy your SG clusters should have...

Страница 507: ...t interval is set in the SG cluster configuration file Heartbeat time out is the length of time that the SG cluster will wait for a node s heartbeat before performing a transfer of package Subnet B Bridge Package A Package B Package C NODE 2 NODE 1 Primary LAN Heartbeat Data Dedicated Heartbeat LAN Subnet A LAN 1 LAN 3 LAN 0 Standby LAN Heartbeat Data ...

Страница 508: ...able to another node Each package may also have a unique IP address that is associated with the package and is taken over by the adoptive node if control of the package is transferred The node that currently holds the IP address of a package controls that package Portable IP Addresses Each package may have its own hostname The IP address of the package points to this hostname You must assign a uni...

Страница 509: ... that can be switched from one SG cluster node to another together with the SG package MC ServiceGuard Support on the Management Server NNM 5 0 does not support MC ServiceGuard directly In other words it is not possible to create an NNM 5 0 ServiceGuard package However it is possible to run NNM 5 0 independently on each SG cluster node NMM 6 0 can run as a ServiceGuard package if tightly integrate...

Страница 510: ...t OV share and etc opt OV share are installed on the shared disk NOTE ITO can only be installed on a SG cluster node after the SG software is installed ITO NNM Oracle Server ITO Agent ITO Agent ServiceGuard Node1 ServiceGuard Node 2 active connections if the ITO server is running on Node 2 RDMS binaries active connections if the ITO server is running on Node 1 binaries shared files ITO NNM Server ...

Страница 511: ...tains general error messages from MC ServiceGuard etc cmcluster OpC OpC cntl log This contains the output of the ITO SG package during startup and shutdown If you do encounter problems with the ITO SG package make sure that you check the contents of both files Maintenance Notes for ITO NNM and MC ServiceGuard The ITO MC SG package can be set to maintenance mode to avoid a switch over of the packag...

Страница 512: ...512 AppendixB Administration of MC ServiceGuard Troubleshooting ITO in a ServiceGuard Environment ...

Страница 513: ...513 C ITO Tables and Tablespaces in the Database ...

Страница 514: ...O Tables and Tablespaces in the Database ITO Tables in the Database ITO Tables in the Database See the HP OpenView IT Operations Reporting and Database Schema for detailed information about the ITO tables in the RDBMS ...

Страница 515: ...space determines the size of the tablespace To increase the size of a tablespace you must add a datafile of a particular size to the tablespace You can do this interactively using the Oracle tool Server Manager or using the sql command alter tablespace add datafile Table C 1 on page 516 shows the default tablespace design and the assigned database tables For more information about improving the pe...

Страница 516: ...ble thus providing extra tablespace opc_anno_text opc_annotation opc_msg_text opc_orig_ msg_text OPC_2 SIZE 5M AUTOEXTEND ON NEXT 6M MAXSIZE 500M DEFAULT STORAGE INITIAL 1M NEXT 1M PCTINCREASE 0 Tables with heavy load Indexes not on the same disk as table thus providing extra tablespace opc_node_names OPC_3 SIZE 1M AUTOEXTEND ON NEXT 1M MAXSIZE 500M DEFAULT STORAGE INITIAL 256K NEXT 256K PCTINCREA...

Страница 517: ...with heavy load Indexes not on the same disk as table thus providing extra tablespace opc_hist_msg_text OPC_7 SIZE 4M AUTOEXTEND ON NEXT 1M MAXSIZE 500M DEFAULT STORAGE INITIAL 2M NEXT 2M PCTINCREASE 0 Tables with heavy load Indexes not on the same disk as table thus providing extra tablespace opc_hist_orig_text OPC_8 SIZE 4M AUTOEXTEND ON NEXT 1M MAXSIZE 500M DEFAULT STORAGE INITIAL 2M NEXT 2M PC...

Страница 518: ...rting OPC_TEMP SIZE 1M AUTOEXTEND ON NEXT 1M MAXSIZE 500M DEFAULT STORAGE INITIAL 512K NEXT 512K PCTINCREASE 0 none Index tablespace for active messages OPC_INDEX1 SIZE 10M AUTOEXTEND ON NEXT 1M MAXSIZE 500M DEFAULT STORAGE INITIAL 1M NEXT 1M PCTINCREASE 0 Other disk than for opc_act_ messages tablespaces Index tablespace for history messages OPC_INDEX2 SIZE 10M AUTOEXTEND ON NEXT 1M MAXSIZE 500M ...

Страница 519: ...e Temporary data TEMP SIZE 2M AUTOEXTEND ON NEXT 1M MAXSIZE 500M DEFAULT STORAGE INITIAL 100K NEXT 100K PCTINCREASE 0 none Rollback segments this tablespace is not ITO specific RBS1 SIZE 1M AUTOEXTEND ON NEXT 1M MAXSIZE 500M DEFAULT STORAGE INITIAL 500K NEXT 500K MINEXTENTS 10 PCTINCREASE 0 Tablespace with heavy load Tablespace for Oracle Tool Tables e g report writer TOOLS SIZE 1M AUTOEXTEND ON N...

Страница 520: ...520 AppendixC ITO Tables and Tablespaces in the Database ITO Tables and Tablespace ...

Страница 521: ...521 D ITO Man Pages Listing ...

Страница 522: ...a list of each man page for the HP OpenView IT Operations Developer s Toolkit To refer to the man pages call them from the command line by using man manpagename If you wish to print the man pages you can use the command man manpagename col lb lp d printer_name ...

Страница 523: ...opc_audit_secure 1M Locks the audit level in the ITO database and allows directories for the history and audit download to be set opc_backup 5 Back up the ITO configuration opc_backup 1M Interactively save ITO environment for Oracle opc_recover 5 Recover the ITO configuration opc_recover 1M Interactively recover the ITO environment for Oracle opcack 1M Externally acknowledge active messages opcack...

Страница 524: ...n data from the database to flat files opccfgout 1M Configure condition status variables for scheduled outages in ITO opccfgupld 1M Upload configuration data from flat files into the database opcchgaddr 1M Change the node address of nodes in the ITO database opccltconfig 1M Configure ITO client filesets opcconfig 1M Configure an ITO management server opcdbidx 1M Upgrade the structure of the ITO da...

Страница 525: ... messages into ITO database opcmack 1 Acknowledge an ITO message by specifying the message ID opcmgrdist 1M Distribute ITO configuration between management servers opcmom 4 Overview of ITO MoM functionality opcmomchk 1 Syntax checking tool for MoM templates opcmon 1 Forward value of monitored object to the ITO monitoring agent on the local managed node opcmsg 1 Submit a message to ITO opcpat 1 Tes...

Страница 526: ...the current version A 05 00 opcwall 1 Send a message to the currently logged in ITO users ovtrap2opc 1M Convert trapd conf file and the ITO template file Man Pages for ITO APIs Man Page Summary opcmon 3 Forward value of monitored object to the ITO monitoring agent on the local managed node opcmsg 3 Submit a message to ITO Man Pages for the HP OpenView ServiceNavigator Man Page Summary opcservice 1...

Страница 527: ...Connection API opc_distrib 3 Distribute the ITO agent configuration opcagtmon_send 3 Forward monitored object value to ITO opcagtmsg_api 3 API to handle messages on ITO agents opcanno_api 3 API to managed ITO message annotations opcapp_start 3 API to start an ITO application opcappl_api 3 API to configure and start ITO applications opcapplgrp_api 3 API to configure ITO application groups opcconf_a...

Страница 528: ...TO node groups opcnodehier_api 3 Functions to configure ITO node hierarchies opcprofile_api 3 Functions to configure ITO user profiles opcregcond 3 Set of APIs to access fields of the ITO registration condition structure opctempl_api 3 Functions to configure ITO message source templates opctempfile_api 3 Functions to configure ITO templates using template files opctemplgrp_api 3 Functions to confi...

Страница 529: ...ment CG 95 administrator default password AR 196 administrator GUI group and file permissions AR 447 administrator login AR 196 administrator windows Actions for message conditions CG 208 Add Configuration CG 144 Add ITO Application CG 120 CG 122 Add ITO Interface Messages CG 164 Add Logfile CG 162 Add Message Group CG 116 AddMPE iXConsoleMessages CG 180 Add Node CG 108 Add Operator CG 126 Add OV ...

Страница 530: ... 315 HP OpenView AR 315 AR 316 IP Map AR 316 monitoring AR 323 Network Node Manager for IP AR 316 applications CG 40 adding to Application Bank CG 119 Customized Application Call Window CG 122 Customized startup CG 122 HP OpenView CG 119 integrating into Application Desktop CG 82 integrating into ITO AR 313 integration examples AR 316 OS 2 AR 233 setting up CG 117 CG 121 CG 122 starting CG 81 arch...

Страница 531: ...ator set AR 341 managed nodes AR 337 management server AR 333 valid for logfile encapsulator AR 342 client server communication AR 30 cluster clients manual activation AR 169 manual de activation AR 176 clustered node configuration distribution CG 230 cmd exe AR 212 collecting messages CG 146 command APIs on managed nodes AR 485 commands broadcasting CG 82 CG 83 CG 227 communication type AR 170 co...

Страница 532: ...events CG 32 example ITO templates CG 156 ITO messages CG 150 messages on the managed node CG 153 messages on the management server CG 154 Customized Application Call window CG 82 customized application startup CG 81 Customized Login window CG 85 Customizing Your Environment CG 58 D data synchronization CG 231 transaction concept CG 231 database backup configuration tips AR 466 maintaining AR 464 ...

Страница 533: ...s AR 149 NFS cluster servers AR 148 standalone systems AR 148 E EMS Integration AR 330 enhanced reports CG 224 CG 225 environment administrator CG 93 backing it up AR 456 operators CG 49 reviewing your CG 49 setting up CG 95 error messages report CG 221 errors reported via logfiles AR 382 errors reported via Stderr and Stdout AR 385 errors reported via the Error Dialog Box AR 384 errors reported v...

Страница 534: ...69 templates AR 267 force update option CG 228 forward unmatched messages CG 141 CG 184 CG 185 CG 187 forwarding messages CG 261 ftp re installation process for Windows NT agent AR 100 functional tracing areas AR 375 AR 376 functionality CG 24 Message Management CG 35 G GlancePlus AR 319 Graphical User Interface permissions CG 93 troubleshooting AR 392 user ID CG 93 GUI administrator group and fil...

Страница 535: ...INIX managed nodes tips AR 94 manual installation AR 95 Solaris managed nodes tips AR 95 tips for management server AR 50 UNIX managed nodes tips AR 50 Windows NT AR 99 installation drive for Windows NT agent software AR 104 AR 110 installation on managed nodes preparing AR 45 installing ITO on managed nodes AR 44 AR 163 prerequisites AR 28 installing updating ITO configuration and software CG 226...

Страница 536: ... AR 214 itouser exe u AR 223 J Java based operator GUI CG 49 Jovw AR 204 K kernel parameters AR 46 L LANG variable setting AR 334 language support AR 331 AR 348 ITO GUI AR 334 object names AR 348 on managed nodes AR 336 on the management server AR 333 licence maintainence AR 473 types AR 473 local location broker troubleshooting AR 418 local logfiles for AIX and MPE iX managed nodes AR 471 local l...

Страница 537: ...63 HP UX 10 x file tree AR 125 AR 127 HP UX 11 x AR 63 HP UX 11 x file tree AR 125 installation AR 45 AR 165 installation prerequisites AR 28 installation tips AR 47 installing ITO AR 44 AR 163 installing scripts and programs AR 304 IRIX AR 70 IRIX file tree AR 151 local logfiles AR 469 local logfiles for AIX and MPE iX AR 471 maintenance AR 468 MPE iX AR 70 MPE iX file tree AR 128 NCR UNIX SVR4 A...

Страница 538: ...AR 90 on Solaris nodes AR 96 on Windows NT nodes AR 111 mask operator CG 204 maximum threshold CG 169 MC ServiceGuard AR 482 IP addresses AR 490 local network switching AR 487 package AR 483 package switchover AR 485 service AR 483 troubleshooting AR 493 MeasureWare agents PCS AR 320 integrating with Perfview 4 0 in ITC AR 320 MeasureWare Agent AR 319 receiving alarms from AR 319 menu utility AR 4...

Страница 539: ...eformatting CG 207 regrouping CG 215 CG 218 responses CG 208 routing CG 159 severity AR 188 SNMP trap CG 178 sources CG 33 CG 140 CG 146 CG 149 status propagation CG 70 AR 192 suppress conditions CG 141 switching control CG 159 templates CG 141 types from ITO CG 214 unbuffer CG 54 unmatched CG 214 MIB access troubleshooting AR 419 MIB browser configuration AR 204 MIB object CG 166 MIB objects from...

Страница 540: ...er AR 316 NFS troubleshooting AR 420 NFS cluster client SGI IRIX AR 151 Solaris AR 158 NFS cluster clients AIX AR 118 Digital UNIX managed nodes AR 123 DYNIX ptx managed nodes AR 149 manual activation AR 169 manual de activation AR 176 Olivetti UNIX managed nodes AR 136 Pyramid DataCenter OSx managed nodes AR 140 SCO OpenServer managed nodes AR 143 SCO UnixWare managed nodes AR 146 SINIX managed n...

Страница 541: ...9 AR 98 opcactm process AR 352 opcapi h AR 488 opccfgout AR 280 opcconsi process AR 358 opcctla process AR 358 opcctlm process AR 352 opcdbinit troubleshooting AR 390 opcdbmsgmv AR 265 opcdispm process AR 352 opcdistm process AR 352 AR 357 opceca process AR 357 opcecm process AR 353 opcforwm process AR 353 opcgrp AR 447 opchbp AR 55 AR 69 AR 98 opcinfo file activating tracing AR 376 DLLs on OS 2 m...

Страница 542: ...Attributes CG 67 Pending Messages Browser CG 74 Report Output CG 224 View Message Browser CG 59 operator initiated actions restarting CG 78 opmon command CG 191 OPTION N AR 294 Options window CG 215 OR operator CG 203 Oracle database ITO tables AR 498 ITO tablespace AR 499 troubleshooting AR 388 OS 2 applications AR 233 OS 2 managed node requirements AR 38 OS 2 managed nodes AR 89 control agent AR...

Страница 543: ...63 AR 438 passwords in ITO AR 363 AR 438 port number AR 366 AR 440 security AR 362 AR 433 processes configuration AR 206 Pyramid sysadm utility AR 45 Pyramid DataCenter OSx managed nodes AR 92 ITO default operator AR 140 NFS cluster clients AR 140 requirements AR 39 Q queue files secure location of AR 452 R re configuring ITO modifying hostname information and re configuring ITO AR 427 modifying I...

Страница 544: ...G 112 MPE iX passwords AR 451 names AR 438 network CG 96 password aging AR 449 privacy AR 433 program AR 448 queue files AR 452 restrictions CG 97 system CG 96 UNIX passwords AR 451 Sequent managed node requirements AR 40 server message stream API AR 324 Server process opcactm AR 352 opcctlm AR 352 opcdispm AR 352 opcdistm AR 352 AR 357 opcecm AR 353 opcforwm AR 353 opcmsgm AR 353 opcmsgr AR 354 o...

Страница 545: ...ne or NFS cluster server AIX AR 118 standalone systems SGI IRIX AR 151 Solaris AR 157 standard installation process for Windows NT agent AR 99 start ITO AR 195 starting ITO s operator interface AR 195 status propagation CG 50 CG 70 AR 192 SunOS managed nodes troubleshooting AR 410 suppress conditions CG 186 CG 196 suppress duplicate message defaults CG 183 suppress unmatched conditions CG 186 CG 1...

Страница 546: ...hreshold monitor template variables AR 295 threshold monitors advanced monitoring CG 191 continuous CG 172 defaults CG 175 defining CG 173 integrating CG 172 maximum type CG 169 minimum type CG 169 placing in directories CG 172 setting up CG 165 CG 175 templates CG 165 CG 175 with reset level CG 170 without reset level CG 171 time templates CG 254 CG 255 defining AR 282 keywords AR 284 variables A...

Страница 547: ...78 versions OS on ITO managed nodes AR 31 View Message Browser window CG 54 CG 59 viewing environments CG 31 virtual terminal CG 85 configuration AR 208 W Windows NT adapted system resources AR 161 Performance Monitor monitoring values in AR 254 Windows NT Applications AR 209 Cancel Reboot AR 209 Diagnostics AR 209 Installed Software AR 212 ITO Install Log AR 212 Job Status AR 213 LM Sessions AR 2...

Страница 548: ...er abbreviation indicating the manual that contains the reference For example the index entry security CG 94 AR 397 AR 416 shows that information about security can be found on page 94 in the Concepts Guide and also on pages 397 and 416 in the Administrator s Reference AR Administrator s Reference Guide CG Concepts Guide ...

Отзывы:

Нет отзывов

Похожие инструкции для -UX B6941-90001

Бренд: PS Audio Страницы: 6

Бренд: Avaya Страницы: 216

Wireless PCI Adapter Driver

Бренд: 2Wire Страницы: 4

H3C IMC STANDARD PLATFORM -

Бренд: 3Com Страницы: 68

Бренд: MGI Страницы: 19

Aurora Edit Security

Бренд: GRASS VALLEY Страницы: 5

003A1-121111-1001 - AutoSketch v.9.0

Бренд: Autodesk Страницы: 130

Бренд: Yamaha Страницы: 33

FLASH 8-USING FLASH

Бренд: MACROMEDIA Страницы: 678

Бренд: M-Audio Страницы: 23

Бренд: Epson Страницы: 157

Бренд: Brocade Communications Systems Страницы: 60

Бренд: Brocade Communications Systems Страницы: 90

COLDFUSION 5-CFML

Бренд: MACROMEDIA Страницы: 36

Бренд: Western Digital Страницы: 85

SENTINEL 6.1 SP1 HOTFIX 1 - READ ME 7-8-2009

Бренд: Novell Страницы: 8

SENTINEL 6.1 SP1 HOTFIX 2 - READ ME 9-2009

Бренд: Novell Страницы: 11

Бренд: Novell Страницы: 13

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды