FS6200 Server System Implementation Guide - Public Support ...

More documents

Recommendations

Info

Setting Up and Operating the JProcessor Specialty Engine 192.168.222.20 192.168.222.50-192.168.222.59 • Local Application Installation This option is supported by one service: Windows Installer. Windows Installer enables you to install supported applications on the JProcessor environment. This service also enables you to remove or modify applications. Note: Do not use Windows Installer to install unsupported applications on the JProcessor environment. Doing so can jeopardize the stability and security of the system. Applying JProcessor Security Policy Settings for Firewall Rules In addition to the default core networking rules and the predefined firewall rules that are associated with a previously discussed feature or option, Unisys created additional firewall rules that support specific JProcessor functions as listed in the following table. These rules all have JProcessor as the prefix in their names. Table 6–1. Unisys-Defined JProcessor Firewall Rules Firewall Rule Name Description JProcessor MCPConnect1 (TCP-In) This rule opens all TCP ports for the internal intra-platform connection between the MCP and JProcessor 1 using IP addresses 192.168.16.141 and 192.168.16.142. JProcessor MCPConnect2 (TCP-In) This rule opens all TCP ports for the internal intra-platform connection between the MCP and JProcessor 2 using IP addresses 192.168.16.145 and 192.168.16.146. JProcessor MCPConnect3 (TCP-In) This rule opens all TCP ports for the internal intra-platform connection between the MCP and JProcessor 3 using IP addresses 192.168.16.149 and 192.168.16.150. JProcessor MCPConnect4 (TCP-In) This rule opens all TCP ports for the internal intra-platform connection between the MCP and JProcessor 4 using IP addresses 192.168.16.153 and 192.168.16.154. Note: If the IP addresses in the above firewall rules do not match your internal intraplatform configuration, follow the instructions in the topic “Changing IP Address Scope for JProcessor MCPConnect Firewall Rules” to modify them. 6–4 8222 3694–000
Applying JProcessor Security Policy Settings for Network Authentication The following policy settings have been defined for JProcessor environment to communicate with other computers: • LAN Manager Authentication Level is set to “Send LM and NTLM — use NTLMv2 session security if negotiated.” Notes: Setting Up and Operating the JProcessor Specialty Engine - To access this setting, use the Local Security Policy option available in Administrative Tools in Control Panel. - The MCP Environment is preconfigured with NTLMv2 authentication enabled. If you decide to disable NTLMv2 authentication in the MCP Environment, consult the topic “Client Access Services Authentication Changes” in the Migration <strong>Guide</strong> for Local Security Policy changes that are required in the JProcessor Operating Environment to restore the ability to authenticate using MCP Client Access Services. • SMB Packet Signing is disabled due to potential performance degradation. Note: Access this setting from Local Policies, and under Security Options, access Microsoft Network <strong>Server</strong>: Digitally sign communications (always). Applying JProcessor Security Policy Settings for Audits Auditing is the process that tracks user activities and records selected types of events in the Security Event Log. An audit policy defines the type of event information that should be collected. The JProcessor Security Policy Audit settings are listed in Table 6-2. Table 6–2. Audit Policy Settings Event Name Security Log Records account logon events Success, Failure account management Success directory service access Success logon events Success, Failure object access Not audited policy change Success privilege use Not audited process tracking Success system events Success, Failure 8222 3694–000 6–5
Page 1 and 2:
ClearPathFS6200Server SystemImpleme
Page 3 and 4:
Contents Section 1. Introduction Ab
Page 5 and 6:
MCP Firmware Environment Policy Uti
Page 7 and 8:
Updating Specialty Engines . . . .
Page 9 and 10:
Figures 2-1. FS6200 Server Hardware
Page 11 and 12:
Tables 3-1. Physical Location of HB
Page 13 and 14:
Section 1 Introduction About This G
Page 15 and 16:
Section 2 System Overview This sect
Page 17 and 18:
• Two Processor Memory and Module
Page 19 and 20:
MCP Console s-Par Component Descrip
Page 21 and 22:
ePortal Specialty Engine The ePorta
Page 23 and 24:
Section 3 Customizing the Server Co
Page 25 and 26:
Determining Correspondence between
Page 27 and 28:
Table 3-1. Physical Location of HBA
Page 29 and 30:
• The MCP is running. • The pat
Page 31 and 32:
e. Log on to the environment. f. Cl
Page 33 and 34:
The default IP address for the intr
Page 35 and 36:
Table 3-6. Default Networking Value
Page 37 and 38:
Changing the Network Services EVLAN
Page 39 and 40:
IEEE 802.1Q VLANs allow a single ne
Page 41 and 42:
and BIP protocols. Communications b
Page 43 and 44:
4. To modify a network processor ob
Page 45 and 46:
You must replace or modify the prec
Page 47 and 48:
Table 3-8. MCP Networking Values fo
Page 49 and 50:
Page 51 and 52:
Page 53 and 54:
Using Sample BNA Initialization Fil
Page 55 and 56:
Some of the procedures in MCP Imple
Page 57 and 58:
Section 4 Operating the Server This
Page 59 and 60:
Powering Off the Platform Hardware
Page 61 and 62: Controlling the MCP Environment Acc
Page 63 and 64: • Domain Name System (DNS) Client
Page 65 and 66: Table 4-1. Unisys-Defined Firewall
Page 67 and 68: Table 4-2. Firewall Rules for JProc
Page 69 and 70: The utility scripts enable you to m
Page 71 and 72: Notes: Syntax Usage • Refer to th
Page 73 and 74: Sample Commands • ChangeRulesForM
Page 75 and 76: Note: The .\ notation before the sc
Page 77 and 78: Differences from Previous MCP Syste
Page 79 and 80: If you do not receive this response
Page 81 and 82: Networking Commands and Inquiries C
Page 83 and 84: • Total processor utilization rep
Page 85 and 86: I/O Time • ACQUIRE • FREE • O
Page 87 and 88: Operating the Server PING commands
Page 89 and 90: Section 5 Setting Up and Operating
Page 91 and 92: Ensuring That the Necessary Disk Sp
Page 93 and 94: ; , REMOTEADDRESS = 000000000000 ,
Page 95 and 96: This command is optional. By defaul
Page 97 and 98: 6. Perform the following actions to
Page 99 and 100: 1. From the Component View tab, exp
Page 101 and 102: Setting Up and Operating the ePorta
Page 103 and 104: Assigning ePortal Specialty Engine
Page 105 and 106: Setting Up and Operating the ePorta
Page 107 and 108: Restoring ePortal The following act
Page 109 and 110: Section 6 Setting Up and Operating
Page 111: • Microsoft Network Client This f
Page 115 and 116: Section 7 Backing Up MCP Firmware C
Page 117 and 118: Section 8 Updates This section disc
Page 119 and 120: Updating MCP Firmware MCP Firmware
Page 121 and 122: Job (USERCODE) EPORTALNOTE ACCEPT:
Page 123 and 124: 17. Go back into update settings (s
Page 125 and 126: Section 9 Troubleshooting and Recov
Page 127 and 128: Accessing the Unisys Product Suppor
Page 129 and 130: Taking a Platform Firmware Livedump
Page 131 and 132: Hardware Failure Symptoms Criticali
Page 133 and 134: Workaround Use the platform managem
Page 135 and 136: • If your TCP/IP or BNA connectio
Page 137 and 138: • Obtain a Network Services firmw
Page 139 and 140: The response to the NW NP command
Page 141 and 142: Restarting a JProcessor Specialty E
Page 143 and 144: Gathering Diagnostic Information Th
Page 145 and 146: 1. Create an unprivileged MCP userc
Page 147 and 148: The topic “I/O Configuration” i
Page 149 and 150: cd “C:\Program Files\Unisys\MCP F
Page 151 and 152: Restarting Platform Services Note:
Page 153 and 154: Appendix A Building Network Initial
Page 155 and 156: • NW TCPIP TCPIPIDENTITY NW TCPIP
Page 157 and 158: Building Network Initialization Fil
Page 159 and 160: Sample BNA Initialization File % On
Page 161 and 162: Index A accessing the Unisys Suppor
Page 163 and 164:
MCP PING commands through intraplat
Page 165 and 166:
MAICP4 dump data, 9-13 Maintenance
Page 167 and 168:
elocating the MCP APPLIANCES share,
Page 170:
© 2012 Unisys Corporation. All rig
show all

FS6200 Server System Implementation Guide - Public Support ...

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?