Oracle® Enterprise Manager Management Connector for Ops Center Installation and Configuration Guide Release 10.2.0.5.0 Part Number E17066-01 |
|
|
PDF · Mobi · ePub |
The Management Connector for Ops Center enables you to view event information in the Enterprise Manager console from the lowest hardware levels all the way up to your critical business services. With the connector, Ops Center notifications are displayed as Oracle Enterprise Manager Grid Control alerts. The retrieved alerts are stored in the Enterprise Manager repository and displayed through the Enterprise Manager console. Beginning with Enterprise Manager 10g Release 5, you can retrieve Ops Center notifications and display them in Enterprise Manager as alerts in real time through Web services. In this release the data flow is one way, from Ops Center to the Oracle Enterprise Manager Grid Control.Using a polling mechanism, the Ops Center Connector retrieves data through Web Services on HTTPS protocols. The polling interval is user-definable, but cannot be shorter than five (5) minutes. If an interval shorter than five minutes is defined, it defaults to five minutes.The default target_type defined in Enterprise Manager is oc_managed_host. The retrieved alerts are stored in the default target instance generic_oc_managed_host. You can install and configure additional target instances based on your requirements.
Follow these steps to download the Oracle Enterprise Manager Grid Control Connector For Ops Center software:
Download the Ops_Center_Connector_Bundle_1.0.zip connector bundle.
Unzip the file:
$ unzip Ops_Center_Connector_Bundle_1.0.zip Archive: Ops_Center_Connector_Bundle_1.0.zip inflating: OpsCenterConnector_1.0.jar inflating: README.txt inflating: SUNWxvmoc-notification-ws.pkg inflating: sun-xvmoc-notification-ws-2.5.0-0001.noarch.rpm
You must perform the following steps to configure the Ops Center Enterprise Controller:
Install and enable the Ops Center notification web service
Create an Ops Center user for the Connector
Create a Notification Profile for the Ops Center User
Capture the Web Service certificate file
Note:
Enterprise Manager Grid Control patch 9153712 is required for routing Ops Center Alerts to Grid Control Hosts.To install and enable the Ops Center notification web service, follow these steps:
Copy the appropriate native package for your Enterprise Controller operating system.
While the Enterprise Controller is running, add the package:
Linux
# rpm -i sun-xvmoc-notification-ws-2.5.0-0001.noarch.rpm
Solaris
# pkgadd -d ./SUNWxvmoc-notification-ws.pkg SUNWxvmoc-notification-ws
After the package is installed on the Enterprise Controller, create an Ops Center user and assign a user role, and then create a notification profile for the connector.
Note:
The Ops Center user for the connector must be a UNIX® user on the Enterprise Controller.Roles enable the Enterprise Controller Admin user to control access and authorization to use the different functions of Ops Center. Roles can be granted for the Enterprise Controller, All Assets, or specific user-created groups. The All Assets role enables the user to perform any action and receive notifications on any asset or group.
Log into Ops Center as an Enterprise Controller admin user.
Click Administration in the Navigation panel, then click the Users tab.
On the Users page, click the Add User icon.
Enter a user name, then click Add User. The new user is created. New user information, such as the password, is pulled from the local authentication subsystem.
Click Administration in the Navigation panel, then click the Roles tab.
Select the user from the drop-down menu.
(Optional) To receive connectivity and security alerts, grant the Admin role to the Enterprise Controller.
In the center panel, highlight Enterprise Controller, then click the Edit Roles icon.
Select the check box for the Admin role, then click Update Role Capabilities.
In the center panel, highlight All Assets, then click the Edit Roles icon.
Select the check box for the Admin role, then click Update Role Capabilities.
The following graphic shows a connector user with the Ops Center Admin role for the Enterprise Controller and All Assets.
See Roles and Authorizations in the Oracle Enterprise Manager Ops Center documentation for more information about Ops Center roles and authorization levels.
Notification Profiles determine how notifications are sent to the designated user, the assets for which the user will receive notification, and the severity level.
You can choose from the following notification levels:
None – No notifications are sent
Low and Higher – Low, medium, and high severity notifications are sent
Medium and Higher – Medium and high severity notifications are sent
High – High severity notifications are sent
Low and Medium notifications are displayed as Warning alerts, and High severity notifications are displayed as Critical alerts in Oracle Enterprise Manager. For the Ops Center Connector user to receive all alerts, create a Notification Profile that designates the Low and Higher notification level and subscribes to all notifications.
See Configuring a Notification Profile in the Oracle Enterprise Manager Ops Center documentation for more information.
Log into Ops Center as the Ops Center Enterprise Controller admin user.
Click Administration in the Navigation panel, then click the Enterprise Controller.
Click the Users tab in the center panel and select the user that you created in Create an Ops Center User For the Connector
Click the Configure Notification Profile icon.
Select Subscribe to All Notifications.
From the Application drop-down list, select the Low and higher option for messages to be received through the BUI.
Click Update Notification Profile.
Stop and restart the Enterprise Controller.
# satadm stop -w # satadm start -w
If you have one or more remote Proxy Controllers, stop and restart each Proxy Controller.
# proxyadm stop -w # proxyadm start -w
An HTTPS protocol is required to establish a connection between Ops Center and Enterprise Manager. You can export the certificate through the command line, export and save the certificate to a file, or export the certificate from a browser. The method described below is to export the certificate from a browser. By using the browser, you are testing that the webservice is available and that the Ops Center user that you created earlier has access. This procedure describes how to export the Web Services certificate file. The contents of this file will be used in a later procedure to update the Oracle Enterprise Manager certificate file.
Launch a browser and navigate to the following URL for your Ops Center instance, replacing <hostname> with the host name of the Enterprise Controller:
https://<EnterpriseController>:443/soap/NotificationBridge?WSDL
Accept the Web Service certificate.
To export the certificate, click View, click Details, and then click Export. Depending on your browser, this might be done from the security icon in the lower right corner of your browser or from the encryption settings in your browser's Advanced Preferences.
Select X.509 (PEM) certificate and name the file certdb.txt.
Open the certdb.txt file in a text editor, such as Notepad, and copy the contents. You will update this certdb.txt file after you register the connector and templates.
Instead of exporting the certificate from a browser, you can use the keytool cert export tool to export the certificate from the command line. The following is an example of how to export the cacao_agent certificate to a file in a text format. In this example, the certificate file is /var/tmp/cacao_adm.cert.
The keystore password is stored in the /var/tmp/cacao_adm.cert file.
The keytool is located in the following directory:
Linux OS – /usr/java/jdk1.6.0_14/bin/keytool
Solaris OS – /usr/jdk/jdk1.6.0_14/bin/keytool
As root, run the following command on the Enterprise Controller:
Linux OS
The password for the following command is the contents of the /etc/opt/sun/cacao2/instances/default/security/password file.
# keytool -export -rfc -keystore /opt/sun/cacao2/instances/default/security/jsse/keystore -file /var/tmp/cacao_adm.cert -alias cacao_agent
Solaris OS
The password for the following command is the contents of the /etc/cacao/instances/default/security/password file.
# keytool -export -rfc -keystore /etc/cacao/instances/default/security/jsse/keystore -file /var/tmp/cacao_adm.cert -alias cacao_agent
Enter the keystore password.