• No results found

Section 5 Configuring the Partition for Enterprise Output Manager (EOM)

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Section 5 Configuring the Partition for Enterprise Output Manager (EOM)"

Copied!
6
0
0

Loading.... (view fulltext now)

Download now ( 6 Page )

Full text

(1)

Section 5

Configuring the Partition for Enterprise

Output Manager (EOM)

The Enterprise Output Manager (EOM) partition runs on an enterprise partition platform (EPP) and is intended for running the product.

This section describes how to configure the partition for EOM to maximize security and simplify maintenance before installing and configuring EOM on the partition. The EOM partition cannot be used for any other purpose.

5.1. EOM Partition Configuration

The EOM partition has specific platform configurations. EOM Partition Supported Configurations describes these configurations.

Table 5–1. EOM Partition Supported Configurations

Configuration Attribute Configuration Value

Maximum EOM partitions per system 2 Maximum EOM partitions per EPP 1

Partition Chassis A

Processor cores 4 cores (Socket 1, cores 0 – 3)

(3.2 GHz cores)

Boot LUN size 90 GB

Memory 6 GB

NIC Ports Slot 4 Port C (Cust-LAN for EOM)

Hyper-threading (HT) Enabled

(2)

Verifying the State of the Enterprise Output Manager Partition

5.2. Verifying the State of the Enterprise Output

Manager Partition

To use the Secure Partitioning console to verify that the EOM guest environment is in a running state, do the following:

Note: If your system is configured for multiple EOM partitions, perform this procedure once for each partition.

1. From the ClearPath server's ClearPath management computer, start a web browser session and enter the IP address of the Secure Partitioning console: 172.29.m.253

where m is the EPP platform number.

A page appears that shows a certificate error.

2. Click Continue to this website (not recommended).

3. Log in, using the user account Administrator and password Administer4Me. Notes:

The username and password are case-sensitive.

If the Operations Server Administrator username and password was changed during initial installation, use the updated username and password instead of Administrator and Administer4Me.

The Platform Summary page appears, showing the guest environments and their current states.

4. Verify that the state of the EOM guest environment is Running.

If it is not running and it is in a Stopped state, select Run from the Commands list and click Submit.

The environment state changes to Running.

(3)

Accessing the Enterprise Output Manager Partition Desktop

5.3. Accessing the Enterprise Output Manager

Partition Desktop

To access the partition desktop

1. From the ClearPath server's ClearPath management computer, start a web

browser session and enter the IP address of the Secure Partitioning console in the form of 172.29.m.253 (where m is the EPP platform number).

A screen appears that shows a certificate error.

2. Click Continue to this website (not recommended).

3. Log in, using the user account Administrator and password Administer4Me. Notes:

The username and password are case-sensitive.

If the Operations Server Administrator username and password was changed during initial installation, use the updated username and password instead of Administrator and Administer4Me.

The Platform Summary page appears, showing the guest environments and their current states.

4. Locate and click the name for the Enterprise Output Manager partition. The partition page appears.

5. In the upper right-hand corner, locate and click the icon for the partition desktop. 6. If necessary, log in using the user account Administrator and password

Administer4Me with the same conditions that are noted in step 3.

5.4. Security Settings for Enterprise Output

Manager Partition

 Remote Desktop Connection

Unisys recommends that the Windows Remote Desktop Connection be disabled during the installation and configuration process. It is also recommended to only enable remote desktop connections over the Forward! Management LAN (FM LAN); see Enabling Remote Desktop Connection for Enterprise Output Manager Partition for more information on enabling Remote Desktop Connection over the FM LAN.

 Anti-virus

Install and configure anti-virus software on the partition according to your site security policy.

 Windows update policy

(4)

Setting Up Network IP Addresses for Enterprise Output Manager Partition

 Windows Firewall

Windows firewall is enabled by default and configured by Unisys:

Ping is disabled: Incoming ICMP echo requests are blocked, and any attempts to ping the partition will fail.

Inbound connections: All inbound connections are blocked except those allowed by Windows firewall default settings.

Outbound connections: All outbound connections are allowed.

Remote Desktop Connection: Remote Desktop Protocol (RDP) is disabled on the public LAN physical port.

5.5. Setting Up Network IP Addresses for

Enterprise Output Manager Partition

On the Enterprise Output Manager partition, the following network connections need to be configured:

 Cust-LAN

The customer’s public LAN connection. Configure this connection to comply with your site network requirements.

 FM-LAN

The Forward! Management LAN (FM LAN) provides connectivity to the Operations Server. Configure the connection, if not already configured, as follows:

172.29.m.n where:

m is the EPP platform number.

n is the partition image number.

5.6. Setting Time for the Enterprise Output

Manager Partition

Enterprise Output Manager on the partition communicates with the OS 2200 partition. To ensure consistency with the OS 2200 system, Unisys recommends synchronizing the time on the partition with a time source. The time source used can be any available time source on your LAN. (Service representatives should check with the customer if they would like to use a time source to synchronize the clock in this partition.)

(5)

Enabling Remote Desktop Connection for Enterprise Output Manager Partition

5.7. Enabling Remote Desktop Connection for

Enterprise Output Manager Partition

Enabling Remote Desktop Connection may simplify maintenance of the Enterprise Output Manager partition. Unisys recommends only enabling remote desktop connections over the FM LAN.

1. On the partition desktop, access the properties dialog box for Windows Firewall. From the Start menu, click All Programs, click Administrative Tools, click Windows Firewall to open the Windows Firewall configuration window, and then click Properties in the right-hand pane.

2. On the Private Profile tab, under State, click Customize for Protected network connections.

3. Verify that all connections are not selected except for private network connections. Ensure that Cust-LAN is not selected.

4. Click OK to close the Protected Network Connections for the Private Profile dialog box.

5. On the Public Profile tab, under State, click Customize for Protected network connections.

6. Verify that all connections (IP-LAN and Cust-LAN) are selected except the FM-LAN. Ensure that the FM-LAN connection is not selected.

7. Click OK to close the Protected Network Connections for the Public Profile dialog box.

8. Click OK to close the Windows Firewall properties dialog box.

9. In the Windows Firewall configuration window, select Inbound Rules in the left-hand pane.

10. Locate Remote Desktop (TCP-In), right-click and select Properties. Note: This rule should be enabled with a green check mark.

11. On the Advanced tab, under Profiles, verify that only Private is checked.

12. Click OK to save your settings and close the Remote Desktop (TCP-In) Properties dialog box.

The firewall changes take effect immediately.

13. Test the configuration by initiating incoming remote desktop connections on both the private (LAN) and public (Cust-LAN and IP-LAN) connections. Only the FM-LAN connection should succeed.

5.8. Copying Files to the Enterprise Output

Manager Partition

(6)

Copying Files to the Enterprise Output Manager Partition

Use the Enterprise Output Manager Software and Documentation CD-ROM (for your edition) and perform the following steps:

1. Log on to the ClearPath server’s Operations Server. 2. Insert the CD into the DVD drive of the Operations Server.

3. Copy the contents of the CD to a temporary directory on the Operations Server. Be sure to note down the location of the temporary directory.

4. Access the desktop of the partition. (See Accessing the Enterprise Output Manager Partition Desktop for more information.)

5. Launch Windows Explorer.

6. Right-click Computer, select Map network drive. 7. Map a drive to 172.29.x.251.

where:

x is 254 for Operations Server 1.

x is 253 for Operations Server 2.

8. Using Windows Explorer, select the drive you just mapped to, and then navigate to the temporary directory on the Operations Server where you copied files to. 9. Copy the contents from the temporary directory on the Operations Server to a

References

Download now ( PDF - 6 Page - 170.11 KB )

Related documents

Blue Ridge Community College Information Technology Remote Access Policy

This access will require that the requestor install Cisco Systems VPN (Virtual Private Network) Client in addition to enabling and configuring Microsoft Remote Desktop Connection

Rotary Kilns Transport Phenomena and Transport Processes

This professional reference book will be the first comprehensive book in many years that treats all engineering aspects of rotary kilns, including a thorough grounding in the

How To Work At Compass Group

Compass Group USA was named to the 2015 Forbes America’s Best Employers list as the highest ranked foodservice and support services company. Compass Group is among the top 20

PRODUCTIVITY NETWORK, INC. Information Technology. VPN Overview

A VPN can connect individual telecommuters to the office network, creating a separate, secure tunnel for each connection or connect remote office networks together as a

Installing and Configuring Remote Desktop Connection Client for Mac

Choose ’Reconnect automatically if disconnected’ if you’d like Remote Desktop Connection to attempt to reconnect if the connection is interrupted before you log off or you close

Component Details Notes Tested. The virtualization host is a windows 2008 R2 Hyper-V server. Yes

Remote Desktop Virtualization Host Remote Desktop Web Access Remote Desktop Connection Broker Remote Desktop Session Host RemoteApp Remote Desktop Services V V V V Virtual

Cyberoam IPSec VPN Client Configuration Guide Version 4

If at the remote end, Cyberoam is used then specify same address as specified in the connection parameters as Local LAN Address. Refer to VPN Management, Defining

Using Remote Desktop Software with the LAN-Cell

You must assign the target PC a fixed IP address so that the LAN-Cell will know where to send remote desktop traffic on its private LAN subnet.. You can either manually assign a