Managing security on the Insight server
-
PDF of this doc site
- Configuration and administration
- Data Warehouse administration
Collection of separate PDF docs
Creating your file...
The securityadmin
tool allows you to manage security options on the Insight server. Security management includes changing passwords, generating new keys, saving and restoring security configurations you create, or restoring configurations to the default settings.
About this task
You use the securityadmin
tool to manage security:
-
Windows -
C:\Program Files\SANscreen\securityadmin\bin\securityadmin.bat
-
Linux -
/bin/oci-securityadmin.sh
Steps
-
Perform a remote login to the Insight server.
-
Start the security admin tool in interactive mode:
-
Windows -
C:\Program Files\SANscreen\securityadmin\bin\securityadmin.bat -i
-
Linux -
/bin/oci-securityadmin.sh -i
The system requests login credentials.
-
-
Enter the user name and password for an account with “Admin” credentials.
-
Select Server.
The following server configuration options are available:
-
Backup
Creates a backup zip file of the vault containing all passwords and keys and places the file in a location specified by the user, or in the following default locations:
-
Windows -
C:\Program Files\SANscreen\backup\vault
-
Linux -
/var/log/netapp/oci/backup/vault
-
-
Restore
Restores the zip backup of the vault that was created. Once restored, all passwords and keys are reverted to values existing at the time of the backup creation.
Restore can be used to synchronize passwords and keys on multiple servers, for example: - Change the server encryption key on one server - Create a backup of the vault - Restore the vault backup to the second server
-
Change Encryption Key
Change the server encryption key that is used to encrypt or decrypt proxy user passwords, SMTP user passwords, LDAP user passwords, and so on.
When you change encryption keys, you should backup your new security configuration so that you can restore it after an upgrade or installation.
-
Update Password
Change password for the internal accounts that are used by Insight. The following options are displayed:
-
_internal
-
acquisition
-
cognos_admin
-
dwh_internal
-
hosts
-
inventory
-
root
-
-
Some accounts need to be synchronized when passwords are changed. For example, if you change the password for the 'acquisition' user on the server, you need to change the password for the 'acquisition' user on the LAU, RAU, and DWH to match. Also, when you change passwords, you should backup your new security configuration so that you can restore it after an upgrade or installation. |
-
Reset to Defaults
Resets keys and passwords to default values. Default values are those provided during installation.
-
Exit
Exit the
securityadmin
tool.-
Chose the option you want to change and follow the prompts.
-