3.2 Managing Hosts

A host is created for each machine you want to manage with Privileged User Manager. You need to create the host before you can register the agents that you install on the machines. If you have created a text file that lists the domains that you have created and the hosts that you want in each domain, you can cut and paste from the text file to add the hosts to the domains.

3.2.1 Adding a Host

  1. Click Hosts on the home page of the console.

  2. Select the domain for the new host.

  3. Click Add Hosts from the task pane.

  4. In the text box, specify the agent names for the hosts.

    You can type the names one at a time, using one name per line, or you can paste a list of names. When you add a host to the Framework Manager, the name does not need to relate to the existing DNS name used to locate the host on your network.

  5. Click Next.

    A list of agents names is displayed.

  6. Click Finish.

    The status of the host is unregistered until the agent is installed and registered on the host machine. For instructions on this process, see Installing and Registering a Framework Agent .

3.2.2 Viewing Host Details

  1. Click Hosts on the home page of the console.

  2. In the navigation pane, select the domain containing the hosts whose details you want to view.

  3. Click the arrow next to the domain icon to display the hosts on the left side of the navigation pane.

  4. Click the host icon to display the host details and status.

    Field

    Description

    Agent name

    The agent name configured for this host.

    Host name

    The name of the host. This is either a resolvable DNS name or the IP address.

    Host port

    The port the host is using for Privileged User Manager communication.

    Platform

    The operating system on the host.

    Processor

    The type of processor on the host.

    OS Version

    The version of the kernel running on the host.

    Agent version

    The version of the agent software that the host is running.

    System time

    The current date and time that the host is configured for, displayed in UTC.

    Use this time to verify that the agent’s time is synchronized with the other hosts.

    Service uptime

    The number of days, hours, minutes, and seconds the agent has been running since the last start up.

    Active sessions

    The number of connections currently open between the agent and any other agent, including itself.

    Active tasks

    The number of internal tasks that the agent is running at any one time.

    Installation path

    The directory location of the installed agent software.

    Disk space

    The total amount of available disk space, the amount of free disk space, and the percentage of disk space in use.

    Memory (approx)

    The amount of memory (heap) currently being used by the agent to store its data.

    This is the virtual data segment size minus the thread stack and the statically initialized data (because this is a constant value) as returned by the sbrk system call.

    Registration

    The licensing state of the software, either licensed or unlicensed.

    Status

    The status of the host: online, offline, unregistered.

  5. Click the arrow next to the host icon to display the Packages icon.

  6. Click Packages to view details of the packages installed on this host.

3.2.3 Modifying a Host

  1. Click Hosts on the home page of the console.

  2. In the navigation pane, select the host you want to modify.

  3. In the task pane, click Modify Host.

  4. Modify the general details:

    Agent name: Specify a display name for this agent.

    The agent name does not need to relate to the existing DNS name used to locate the host on your network.

    Description: Add a description. This description is displayed next to the agent name in the hierarchical view.

    Host name: Specify the DNS name used to locate the host on your network or the IP address of the host.

    Port: Displays the port that was specified when the agent was registered.

  5. Modify the encryption options. When these settings are modified for an individual host, the host settings overwrite the settings specified for the domain.

    Key configuration: Select this option to enable configuration of the encryption key.

    Host Key rollover (days): Specify how many days the host key can be used before generating a new key.

    DB Key rollover (days): Specify how many days the database key can be used before generating a new key.

    Encrypt: Select the databases you want to encrypt.

    Use care in selecting the databases you enable for encryption. Encrypting the data can affect performance. Novell recommends the following:

    • auth.db because it contain usernames

    • registry.db because it contains the hostnames.

    • cmdctrl.db because it contains command control rules with usernames and hostnames.

    For a brief description of databases, see Section 3.2.7, Privileged User Manager Databases.

    The encryption of auditing data should be enabled from the Reporting console. See Section 6.1, Audit Settings.

  6. Click Finish.

3.2.4 Moving a Host

You can move hosts among the domains.

  1. Click Hosts on the home page of the console.

    The navigation pane displays the current hierarchy for your Framework.

  2. In the navigation pane, select the domain containing the hosts you want to move. The hosts in that domain are displayed on the right side of the navigation pane.

  3. Select the hosts you want to move.

    To select multiple hosts, press the Ctrl key and select the hosts one at a time, or press the Shift key to select a consecutive list of hosts. To select all hosts in a domain, use Ctrl+A.

  4. Drag the hosts to the new domain.

3.2.5 Deleting a Host

IMPORTANT:This action cannot be undone.

  1. Click Hosts on the home page of the console.

  2. In the navigation pane, select the domain containing the hosts you want to delete. The hosts in that domain are displayed on the right side of the navigation pane.

  3. Select the hosts you want to delete.

    To select multiple hosts, press the Ctrl key and select the hosts one at a time, or press the Shift key to select a consecutive list of hosts. To select all hosts in a domain, use Ctrl+A.

  4. In the task pane, click Delete Host.

    The selected hosts are listed.

  5. Click Finish.

3.2.6 Finding a Host

  1. Click Hosts on the home page of the console.

  2. Click Hosts or a domain name.

  3. In the task pane, click Find Host.

  4. In the Agent name field, specify the name of the host you are looking for.

    You can use the wildcard characters * and ?. For example, entering h* finds all hosts with agent names beginning with h. This field is case sensitive.

  5. Click Find.

  6. To go to a host’s details, double-click its agent name.

  7. To return the Hosts page, click Close.

3.2.7 Privileged User Manager Databases

The following databases are created on the Framework Manager console machine.

Location of the database files for SLES compatible PUM is /var/opt/novell/npum/service/local/. Location of the database files for other UNIX platforms is /opt/novell/npum/service/local/, which is shown in the table below.

Database and Standard Location

Description

admin.db

/opt/novell/npum/service/local/admin/

Not used.

admin.ldb

/opt/novell/npum/service/local/admin/

Not used.

audit.db

/opt/novell/npum/service/local/audit/

Contains all configured report definitions and the settings for roll over.

audit.ldb

/opt/novell/npum/service/local/audit/

Contains role history and the metadata for audit logs.

auth.db

/opt/novell/npum/service/local/auth/

Contains fully replicated authorization data including user details and settings for access to the Framework Manager console.

auth.ldb

/opt/novell/npum/service/local/auth/

Not used.

cmdctrl.db

/opt/novell/npum/service/local/cmdctrl/

Contains rules and configuration for Command Control.

cmdctrl.ldb

/opt/novell/npum/service/local/cmdctrl/

Not used.

cmdctrl.db

/opt/novell/npum/service/local/audit/

Contains the current audit log.

cmdctrl<timestamp>.ldb

/opt/novell/npum/service/local/audit/

Contains the archived audit log.

distrib.db

/opt/novell/npum/service/local/distrib/

Not used.

distrib.ldb

/opt/novell/npum/service/local/distrib/

Not used.

msgagnt.db

/opt/novell/npum/service/local/msgagnt/

Contains SMTP configuration information.

msgagnt.ldb

/opt/novell/npum/service/local/msgagnt/

Not used.

pkgman.db

/opt/novell/npum/service/local/pkgman/

Contains the metadata for the packages stored locally on the package manager for deployment to the Framework. It also contains replicated settings for the location to download packages from.

pkgman.ldb

/opt/novell/npum/service/local/pkgman/

Contains local data, such as the location of the local package repository.

regclnt.db

/opt/novell/npum/service/local/registry/

Not used.

regclnt.ldb

/opt/novell/npum/service/local/registry/

Local cache of the registry.db.

registry.db

/opt/novell/npum/service/local/registry/

Contains public keys, hostnames, and access ports.

registry.ldb

/opt/novell/npum/service/local/registry/

Contains data used to manage registry agent caches.

rexec.db

/opt/novell/npum/service/local/rexec/

Not used.

rexec.ldb

/opt/novell/npum/service/local/rexec/

Not used.

secaudit.db

/opt/novell/npum/service/local/secaudit/

Contains rule configuration and audit data.

secaudit.ldb

/opt/novell/npum/service/local/secaudit/

Not used.

strfwd.db

/opt/novell/npum/service/local/strfwd/

Not used.

strfwd.ldb

/opt/novell/npum/service/local/strfwd/

Contains messages intended for and received from other hosts connected to the Framework until they are acknowledged or processed by the appropriate local module.

syslogemit.db

/opt/novell/npum/service/local/syslogemit/

Contains configuration information.

syslogemit.ldb

/opt/novell/npum/service/local/syslogemit/

Not used.