Chapter 7. CIMOM installation and customization 317
HTTPS using Secure Socket Layer (SSL)
HTTPS is optional, but provides enhanced security by encrypting communications
between the CIM server and the CIM client.
Cisco MDS SAN-OS Release 2.0(1b) and later support SLP V2, CIM indications, the Server
profile and supports SMI-S 1.0(2).
The technical document describing how to set up the CISCO CIM server is Cisco MDS 9000
Family CIM Programming Reference and can be found at the following URL:
http://www.cisco.com/en/US/products/ps5989/products_programming_reference_guide_
chapter09186a0080211ac0.html
Be sure to run the correct level of SAN-OS to support the needed SMI Specifications version.
7.10.1 Enabling and configuring the CIM Agent
The CIM server can be configured through the CLI. Configuring the CIM server involves
enabling the CIM server. For added security, you can install an SSL certificate to encrypt the
login information and enable HTTPS before enabling the CIM server. The CIM server
requires HTTP or HTTPS or both to be enabled. By default, HTTP is enabled and secure
HTTPS is disabled. Using HTTPS encrypts all management traffic between the CIM client
and the CIM server and is the recommended configuration.
We describe the steps to configure the CIM server in an unsecure mode. The steps to
configure it in a secure mode are similar, but you first need a valid certificate. You can use
OpenSSL to create the private key and certificate needed by the CIM server.
To configure a CIM server using the HTTP protocol in Cisco MDS 9000 Family products,
follow these two steps from a telnet command line:
1. switch# config t
Enters configuration mode.
2. switch(config)# cimserver enable
Enables the CIM server using the default HTTP (non-secure) protocol.
7.10.2 Connecting the CIM Agent with TPC
You are now ready to add the CIMOM into the TPC GUI
1. Fill in the fields, as described by Figure 7-115 on page 318.
– Host: Cisco MDS 9000 switch IP address
– Port: either 5989 (secure) or 5988 (unsecure)
– Username: valid username
– Password: password of the previously defined username
– Interoperability namespace: For Cisco, it is root/cimv2
– Protocol: HTTPS (secure) or HTTP (unsecure)
– Display name: any name that can help you identify the CIM Agent.
Get IBM TotalStorage Productivity Center V3.1: The Next Generation now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
