In a distributed OMi environment with a reverse proxy or a load balancer, the OMi data processing server and the BSM Connector server may not be able to communicate with each other in order to request and install a certificate. To provide the agent with a certificate, you must issue the certificate manually on the OMi certificate server and then import it manually on the BSM Connector system. In addition, you must manually set the MANAGER_ID configuration variable. The MANAGER_ID defines who is allowed to access the agent from outside.
On the BSM Connector system, use ovcoreid
to show the core ID of the system:
ovcoreid
On the OMi certificate server (usually the data processing server), use ovcert
to export the trusted certificate, type:
ovcert -exporttrusted -file omi.cer
On the OMi certificate server (usually the data processing server), use ovcm
to generate a certificate, type:
ovcm -issue -file cert.cer -name <FQDN of BSM Connector> -coreid <OvCoreId of BSM Connector> -pass <password>
Securely transfer the generated files to the BSM Connector system.
Use ovcert
to import the certificates from the generated files, type:
ovcert -importtrusted -file omi.cer
ovcert -importcert -file cert.cer
The command prompts you for the password that you specified when you generated the certificates. Type the password and press Enter.
On any of the gateway server systems, use ovcoreid
to show the core ID of the system:
ovcoreid -ovrg server
On the BSM Connector system, set the manager and certificate server manually, type:
ovconfchg -ns sec.cm.client -set CERTIFICATE_SERVER <FQDN of reverse proxy or load balancer>
ovconfchg -ns sec.core.auth -set MANAGER <FQDN of reverse proxy or load balancer>
ovconfchg -ns sec.core.auth -set MANAGER_ID <OvCoreId of any gateway server>
Run oainstall
to complete the HP Operations Agent setup, type:
Windows 32-bit: cscript "%OvInstallDir%\bin\OpC\install\oainstall.vbs" -a -c
Windows 64-bit: cscript "%OvInstallDir%\bin\win64\OpC\install\oainstall.vbs" -a -c
Linux: /opt/OV/bin/OpC/install/oainstall.sh -a -c
Review the agent installation log file:
Windows: %OvDataDir%log\oainstall.log
Linux: /var/opt/OV/log/oainstall.log
If the log file contains errors relating to the OvControl service failing to start or restart, complete the following steps:
Manually reinstall ovcd as a Windows service, type:
ovcd -install
Rerun oainstall
.
Securely delete any copies of the files that contain the certificates. Depending on how you generate and transfer the files, you may, for example, have copies in the following locations:
on the OMi data processing server
on the BSM Connector system
on a USB flash drive, CD, or other portable media
Add the BSM Connector system to the Connected server list in OMi. For details, see How to Configure BSM Connector to Communicate with OMi.