To enable the PowerSC agent, complete the following steps:
Procedure
- Ensure that the incoming of IP addresses is allowed in Firewall Settings for the
port 11125. In the HMC, open the firewall port 11125.
- Get the endpointTrustore.jks file from the
powersc-uiServer. You can find the file in the PowerSC server in the following
location:
/etc/security/powersc/uiServer/endpointTrustore.jks
Use the getfile command to deploy it in the correct location in the HMC:
getfile -t powersctrust -l s -f /etc/security/powersc/uiServer/endpointTruststore.jks
-h <powerSc_server> -u <user>
- Start the powersc-uiAgent service with the
chhmc command.
chhmc -s enable -c
powerscuiagent
- Log in to PowerSC server either from the GUI or ssh to complete the Generate
Keystore operation. Click the Keystore Requests tab.
- From the UI Endpoint Admin page, click
.
- Alternatively, you can use the following command to generate keystore:
/opt/powersc/uiServer/bin/generate_endpoint_keystore_uiServer.sh <endpoint
FQDN>
- Check whether the agent is enabled by running the following
command:
lshmc -r
ssh=enable,sshprotocol=2,sshusedns=enable,remotewebui=enable,xntp=disable,xntpstatus=,xntpserver=,syslogserver=,syslogtcpserver=,syslogtlsserver=,altdiskboot=disable,ldap=disable,kerberos=disable,kerberos_default_realm=,kerberos_realm_kdc=,kerberos_clockskew=,kerberos_ticket_lifetime=,kpasswd_admin=,trace=,kerberos_keyfile_present=,security=legacy,sol=disabled,powerscuiagent=enabled
- Go to the powersc-uiServer system and select Endpoint
admin under the settings icon. The HMC will show up under the
Endpoints tab of the Endpoint admin page.