The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.
This chapter includes the following sections:
Cisco UCS Central supports global remote access policies defining the interfaces monitoring policy, displaying SSH configuration status, and providing policy settings for HTTP, Telnet, web session limits and CIM XML.
Configuring HTTP
Before configuring an HTTP remote access policy under a domain group, this policy must first be created. Policies under the Domain Groups root were already created by the system and ready to configure.
Optionally, configure the following remote access policies:
An HTTP remote access policy is deleted from a domain group under the domain group root. HTTP remote access policies under the domain groups root cannot be deleted.
Step 1 | On the menu bar, click Operations Management. |
Step 2 | In the Navigation pane, expand . |
Step 3 | Expand the node for a domain group containing the policy to delete. |
Step 4 | In the Navigation pane, click Operational Policies. |
Step 5 | In the Work pane, click Remote Access. |
Step 6 | In the Work pane, click the HTTP tab. |
Step 7 |
In the Actions area, click Delete. A policy that is deleted will inherit its settings from its domain group's parent until it is reconfigured. |
Step 8 | If Cisco UCS Central GUI displays a confirmation dialog box, click Yes. |
Step 9 | Click Save. |
Configuring Telnet
Before configuring a Telnet remote access policy under a domain group, this policy must first be created. Policies under the Domain Groups root were already created by the system and ready to configure.
Step 1 | On the menu bar, click Operations Management. | ||||||||||
Step 2 | In the Navigation pane, expand . | ||||||||||
Step 3 | Under the Domain Groups root node, do one of the following choices: | ||||||||||
Step 4 | In the Navigation pane, click Operational Policies. | ||||||||||
Step 5 | In the Work pane, click Remote Access. | ||||||||||
Step 6 | In the Work pane, click the Telnet tab. | ||||||||||
Step 7 |
In the Actions area, click Create and complete all applicable fields. For Operational Policies under the Domain Group root node, it is not necessary to click Create to complete all applicable fields.
|
||||||||||
Step 8 | Click Save. |
Optionally, configure the following remote access policies:
A Telnet remote access policy is deleted from a domain group under the domain group root. Telnet remote access policies under the domain groups root cannot be deleted.
Step 1 | On the menu bar, click Operations Management. |
Step 2 | In the Navigation pane, expand . |
Step 3 | Expand the node for a domain group containing the policy to delete. |
Step 4 | In the Navigation pane, click Operational Policies. |
Step 5 | In the Work pane, click Remote Access. |
Step 6 | In the Work pane, click the Telnet tab. |
Step 7 |
In the Actions area, click Delete. A policy that is deleted will inherit its settings from its domain group's parent until it is reconfigured. |
Step 8 | If Cisco UCS Central GUI displays a confirmation dialog box, click Yes. |
Step 9 | Click Save. |
Configuring Web Session Limits
Before configuring a web session limits remote access policy under a domain group, this policy must first be created. Policies under the Domain Groups root were already created by the system and ready to configure.
Step 1 | On the menu bar, click Operations Management. | ||||||||||||
Step 2 | In the Navigation pane, expand . | ||||||||||||
Step 3 | Under the Domain Groups root node, do one of the following choices: | ||||||||||||
Step 4 | In the Navigation pane, click Operational Policies. | ||||||||||||
Step 5 | In the Work pane, click Remote Access. | ||||||||||||
Step 6 | In the Work pane, click the Web Session Limits tab. | ||||||||||||
Step 7 |
In the Actions area, click Create and complete all applicable fields. For Operational Policies under the Domain Group root node, it is not necessary to click Create to complete all applicable fields.
|
||||||||||||
Step 8 | Click Save. |
Optionally, configure the following remote access policies:
A web session limits remote access policy is deleted from a domain group under the domain group root. Web session limits remote access policies under the domain groups root cannot be deleted.
Step 1 | On the menu bar, click Operations Management. |
Step 2 | In the Navigation pane, expand . |
Step 3 | Expand the node for a domain group containing the policy to delete. |
Step 4 | In the Navigation pane, click Operational Policies. |
Step 5 | In the Work pane, click Remote Access. |
Step 6 | In the Work pane, click the Web Session Limits tab. |
Step 7 |
In the Actions area, click Delete. A policy that is deleted will inherit its settings from its domain group's parent until it is reconfigured. |
Step 8 | If Cisco UCS Central GUI displays a confirmation dialog box, click Yes. |
Step 9 | Click Save. |
Configuring CIM XML
Before configuring a CIM XML remote access policy under a domain group, this policy must first be created. Policies under the Domain Groups root were already created by the system and ready to configure.
Step 1 | On the menu bar, click Operations Management. | ||||||||||
Step 2 | In the Navigation pane, expand . | ||||||||||
Step 3 | Under the Domain Groups root node, do one of the following choices: | ||||||||||
Step 4 | In the Navigation pane, click Operational Policies. | ||||||||||
Step 5 | In the Work pane, click Remote Access. | ||||||||||
Step 6 | In the Work pane, click the CIM XML tab. | ||||||||||
Step 7 |
In the Actions area, click Create and complete all applicable fields. For Operational Policies under the Domain Group root node, it is not necessary to click Create to complete all applicable fields.
|
||||||||||
Step 8 | Click Save. |
Optionally, configure the following remote access policies:
A CIM XML remote access policy is deleted from a domain group under the domain group root. CIM XML remote access policies under the domain groups root cannot be deleted.
Step 1 | On the menu bar, click Operations Management. |
Step 2 | In the Navigation pane, expand . |
Step 3 | Expand the node for a domain group containing the policy to delete. |
Step 4 | In the Navigation pane, click Operational Policies. |
Step 5 | In the Work pane, click Remote Access. |
Step 6 | In the Work pane, click the CIM XML tab. |
Step 7 |
In the Actions area, click Delete. A policy that is deleted will inherit its settings from its domain group's parent until it is reconfigured. |
Step 8 | If Cisco UCS Central GUI displays a confirmation dialog box, click Yes. |
Step 9 | Click Save. |
Configuring Interfaces Monitoring
Before configuring an interfaces monitoring remote access policy under a domain group, this policy must first be created. Policies under the Domain Groups root were already created by the system and ready to configure.
Step 1 | On the menu bar, click Operations Management. | ||||||||||||||||
Step 2 | In the Navigation pane, expand . | ||||||||||||||||
Step 3 | Under the Domain Groups root node, do one of the following choices: | ||||||||||||||||
Step 4 | In the Navigation pane, click Operational Policies. | ||||||||||||||||
Step 5 | In the Work pane, click Remote Access. | ||||||||||||||||
Step 6 | In the Work pane, click the Interfaces Monitoring tab. | ||||||||||||||||
Step 7 |
In the Actions area, click Create and complete all applicable fields. For Operational Policies under the Domain Group root node, it is not necessary to click Create to complete all applicable fields.
|
||||||||||||||||
Step 8 | Click Save. |
Optionally, configure the following remote access policies:
A interfaces monitoring remote access policy is deleted from a domain group under the domain group root. Interfaces monitoring remote access policies under the domain groups root cannot be deleted.
Step 1 | On the menu bar, click Operations Management. |
Step 2 | In the Navigation pane, expand . |
Step 3 | Expand the node for a domain group containing the policy to delete. |
Step 4 | In the Navigation pane, click Operational Policies. |
Step 5 | In the Work pane, click Remote Access. |
Step 6 | In the Work pane, click the Interfaces Monitoring tab. |
Step 7 |
In the Actions area, click Delete. A policy that is deleted will inherit its settings from its domain group's parent until it is reconfigured. |
Step 8 | If Cisco UCS Central GUI displays a confirmation dialog box, click Yes. |
Step 9 | Click Save. |
Cisco UCS Central supports global SNMP policies enabling or disabling, defining SNMP traps and SNMP users (with regular and privacy passwords, authentication types of md5 or sha, and option for AES-128). Registered Cisco UCS domains choosing to define security policies globally within that client's policy resolution control will defer all security policies to its registration with Cisco UCS Central.
Before configuring a SNMP policy under a domain group, this policy must first be created. Policies under the Domain Groups root were already created by the system and ready to configure.
Step 1 | On the menu bar, click Operations Management. |
Step 2 | In the Navigation pane, expand . |
Step 3 | Under the Domain Groups root node, do one of the following choices: |
Step 4 | In the Navigation pane, click Operational Policies. |
Step 5 | In the Work pane, click SNMP. |
Step 6 |
In the Actions area, click Create and complete all applicable fields. For Operational Policies under the Domain Group root node, it is not necessary to click Create to complete all applicable fields. |
Step 7 | Click Save. |
A SNMP policy is deleted from a domain group under the domain group root. SNMP policies under the domain groups root cannot be deleted.
Deleting an SNMP policy will remove all SNMP trap and SNMP User settings within that policy.
Step 1 | On the menu bar, click Operations Management. |
Step 2 | In the Navigation pane, expand . |
Step 3 | Under the Domain Groups root node, do one of the following choices: |
Step 4 | In the Navigation pane, click Operational Policies. |
Step 5 | In the Work pane, click SNMP. |
Step 6 |
In the Actions area, click Delete. A policy that is deleted will inherit its settings from its domain group's parent until it is reconfigured. |
Step 7 | Click Save. |
Step 1 | On the menu bar, click Operations Management. |
Step 2 | In the Navigation pane, expand . |
Step 3 | In the Navigation pane, click Operational Policies. |
Step 4 | In the Work pane, click SNMP. |
Step 5 |
In the SNMP Traps area, click Create SNMP Trap and complete all applicable fields.
|
Step 6 | Click Save. |
Step 1 | On the menu bar, click Operations Management. |
Step 2 | In the Navigation pane, expand . |
Step 3 | In the Navigation pane, click Operational Policies. |
Step 4 | In the Work pane, click SNMP. |
Step 5 |
In the SNMP Traps area, select the SNMP trap to delete and click Delete. You can also right-click the SNMP trap to access that option. |
Step 6 | Click Save. |
Step 1 | On the menu bar, click Operations Management. |
Step 2 | In the Navigation pane, expand . |
Step 3 | In the Navigation pane, click Operational Policies. |
Step 4 | In the Work pane, click SNMP. |
Step 5 |
In the SNMP Users area, click Create SNMP User and complete all applicable fields.
|
Step 6 | Click Save. |
Step 1 | On the menu bar, click Operations Management. |
Step 2 | In the Navigation pane, expand . |
Step 3 | In the Navigation pane, click Operational Policies. |
Step 4 | In the Work pane, click SNMP. |
Step 5 |
In the SNMP Users area, select the SNMP user to delete and click Delete. You can also right-click the SNMP user to access that option. |
Step 6 | Click Save. |