Set the required configuration parameters

Before starting the CIM server, you should set several configuration properties using the cimconfig command.

In particular, you need to determine how you are going to specify your client authentication. You can use any of the following methods:

• Use Secure Sockets Layer (SSL) certificate-based authentication
• Use Basic or Kerberos authentication.
• Use Basic or Kerberos for authentication while using SSL to encrypt CIM data between the client and the server.

Pegasus 2.5 supports SSL for the following connections:

• External connections over SSL-secured ports for CIM Client connections.
• For the connections with a CIM Export client.

To use SSL, ensure that the Enable HTTPS Connection (enableHttpsConnection) property is set to true (the default setting). This property allows to use HTTPS TCP/IP communication. An HTTPS connection has better security than HTTP. You can use SSL by itself or with Basic or Kerberos authentication.

Set the HTTP Authentication (httpAuthType) property to specify the type of authentication to use. This property can be set to two values: Basic, or Kerberos. Basic authentication does not protect passwords; therefore, it is recommended that you use basic authentication only with SSL.

Remember: Most CIM clients support Basic authentication but not Kerberos authentication. Ensure that you know which type of authentication the CIM clients in your environment support before you configure the CIM server.

You can use the cimconfig command to set the current configuration properties or the planned configuration properties of the CIM server. You can change the following properties in the current configuration properties:

• shutdownTimeout
• logLevel
• traceComponents
• traceFilePath
• traceLevel

These properties are dynamic—that is, when you change these properties, the changes take place immediately. You do not need to restart the CIM server to carry out the changes. You can update the current configuration properties only while the CIM server is running.

All of the properties can be changed in the planned configuration properties, whether the CIM server is running or stopped. If the planned configuration properties are changed, those changes will not take effect until the CIM server is restarted. When the CIM server is started, the planned configuration properties become the current configuration properties.

• Basic startup options for the cimconfig command
  You can change basic startup options for the CIMOM with the cimconfig command.
• Advanced startup options for the cimconfig command
  You can change the advanced startup options for the CIM server with the cimconfig command.