Security Options

The Storage Automated Diagnostic Environment package can be installed with security enabled by executing ras_install and answering 'Yes' to the security question. This means that SSL (Secure Socket Layer) is used for transmission of information between the master agent and the browser and between the master agent and the slave agents. The Storage Automated Diagnostic Environment package includes a default certificate that expires in 2008 (located in the /opt/SUNWstade/System/certificate.pem directory). It uses the highest grade encryption (RC4 with 128-bit secret key) . When secure mode is used, the URL used to access the master agent is https://<hostname>:7443>. The non-secure URL is http://<hostname>:7654. Site-specific certificates can be created with the open SSL utility (part of the public domain OpenSSL product).

For additional security, the Storage Automated Diagnostic Environment software supports multiple logins. These logins can be added using the 'root' login, along with specific capabilities (user, admin, script, diag, or expert). This enables different users to login with their own login and password, and have a restricted set of functions available in the GUI.

Related Topics