Skip to main content
OnCommand Insight

Managing security on the Insight server

Contributors netapp-alavoie
PDFs

The securityadmin tool allows you to manage security options on the Insight server. Security management includes changing passwords, generating new keys, saving and restoring security configurations you create, or restoring configurations to the default settings.

About this task

You use the securityadmin tool to manage security:

  • Windows - C:\Program Files\SANscreen\securityadmin\bin\securityadmin.bat

  • Linux - /bin/oci-securityadmin.sh

Steps

  1. Perform a remote login to the Insight server.

  2. Start the security admin tool in interactive mode:

    • Windows - C:\Program Files\SANscreen\securityadmin\bin\securityadmin.bat -i

    • Linux - /bin/oci-securityadmin.sh -i

      The system requests login credentials.

  3. Enter the user name and password for an account with “Admin” credentials.

  4. Select Server.

    The following server configuration options are available:

    • Backup

      Creates a backup zip file of the vault containing all passwords and keys and places the file in a location specified by the user, or in the following default locations:

      • Windows - C:\Program Files\SANscreen\backup\vault

      • Linux - /var/log/netapp/oci/backup/vault

    • Restore

      Restores the zip backup of the vault that was created. Once restored, all passwords and keys are reverted to values existing at the time of the backup creation.

      Note

      Restore can be used to synchronize passwords and keys on multiple servers, for example: - Change the server encryption key on one server - Create a backup of the vault - Restore the vault backup to the second server

    • Change Encryption Key

      Change the server encryption key that is used to encrypt or decrypt proxy user passwords, SMTP user passwords, LDAP user passwords, and so on.

      Note

      When you change encryption keys, you should backup your new security configuration so that you can restore it after an upgrade or installation.

    • Update Password

      Change password for the internal accounts that are used by Insight. The following options are displayed:

      • _internal

      • acquisition

      • cognos_admin

      • dwh_internal

      • hosts

      • inventory

      • root

Note

Some accounts need to be synchronized when passwords are changed. For example, if you change the password for the 'acquisition' user on the server, you need to change the password for the 'acquisition' user on the LAU, RAU, and DWH to match. Also, when you change passwords, you should backup your new security configuration so that you can restore it after an upgrade or installation.

  • Reset to Defaults

    Resets keys and passwords to default values. Default values are those provided during installation.

  • Exit

    Exit the securityadmin tool.

    1. Chose the option you want to change and follow the prompts.