friedkiwi/ibm-information-center
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
master
ibm-information-center/dist/eclipse/plugins/i5OS.ic.rzamz_5.4.0.1/rzamzpropagatesystemsettings.htm

104 lines
8.4 KiB
HTML
Raw Permalink Blame History

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html lang="en-us" xml:lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="security" content="public" />
<meta name="Robots" content="index,follow" />
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
<meta name="DC.Type" content="task" />
<meta name="DC.Title" content="Propagate system settings from the model system (iSeries A) to iSeries B and iSeries C" />
<meta name="abstract" content="Put your short description here; used for first paragraph and abstract." />
<meta name="description" content="Put your short description here; used for first paragraph and abstract." />
<meta name="DC.Relation" scheme="URI" content="rzamzsynchconfig.htm" />
<meta name="DC.Relation" scheme="URI" content="rzamzcreateasystemgroup.htm" />
<meta name="DC.Relation" scheme="URI" content="rzamzcompletetheconfigurationsfornetwork.htm" />
<meta name="copyright" content="(C) Copyright IBM Corporation 2000, 2006" />
<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 2000, 2006" />
<meta name="DC.Format" content="XHTML" />
<meta name="DC.Identifier" content="rzamzpropagatesystemsettings" />
<meta name="DC.Language" content="en-us" />
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights -->
<!-- Use, duplication or disclosure restricted by -->
<!-- GSA ADP Schedule Contract with IBM Corp. -->
<link rel="stylesheet" type="text/css" href="./ibmdita.css" />
<link rel="stylesheet" type="text/css" href="./ic.css" />
<title>Propagate system settings from the model system (iSeries A)
to iSeries B
and iSeries C</title>
</head>
<body id="rzamzpropagatesystemsettings"><a name="rzamzpropagatesystemsettings"><!-- --></a>
<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
<h1 class="topictitle1">Propagate system settings from the model system (iSeries A)
to iSeries B
and iSeries C</h1>
<div><p>Put your short description here; used for first paragraph and abstract.</p>
<div class="section"><p>The Synchronize Functions wizard in<span class="keyword">iSeries™ Navigator</span> allows
you to propagate system settings to multiple endpoint systems within the same
system group. Complete these tasks to propagate the network authentication
service and EIM configurations to target systems:</p>
</div>
<ol><li class="stepexpand"><span>In <span class="keyword">iSeries Navigator</span>, expand <span class="menucascade"><span class="uicontrol">Management Central (iSeriesMC1)</span> &gt; <span class="uicontrol">System Groups</span></span>.</span></li>
<li class="stepexpand"><span>Right-click <span class="uicontrol">MyCo system group</span> and select <span class="menucascade"><span class="uicontrol">System Values</span> &gt; <span class="uicontrol">Synchronize Functions...</span></span>, and click <span class="uicontrol">Next</span>. This will open the <span class="uicontrol">Synchronize
Functions Wizard</span>.</span></li>
<li class="stepexpand"><span>On the <span class="uicontrol">Welcome</span> page, review the information
about the Synchronize Functions wizard. The <span class="uicontrol">Welcome</span> page
lists the functions that you can choose to synchronize later in the wizard. </span> <div class="note"><span class="notetitle">Note:</span> When you propagate network configuration service and EIM configurations
among servers, sensitive information like passwords are sent across the network.
You should use SSL to protect this information, especially if it is being
sent outside your Local Area Network (LAN). See <a href="../rzain/rzainmc.htm">Scenario: Secure all connections to your Management Central
server with SSL</a> for details.</div>
</li>
<li class="stepexpand"><span>On the <span class="uicontrol">Model System</span> page, select <span class="uicontrol">iSeries
A</span> as the model system, and click <span class="uicontrol">Next</span>.
This model system will be used as a base for synchronizing the network authentication
service and EIM configurations to other systems.</span></li>
<li class="stepexpand"><span>On the <span class="uicontrol">Target Systems and Groups</span> page, select <span class="uicontrol">MyCo
system group</span>. Click <strong>Next</strong>.</span></li>
<li class="stepexpand"><span>On the <span class="uicontrol">What to Update </span> page, select <span class="uicontrol">Network
Authentication Service (Kerberos)</span> and <span class="uicontrol">Enterprise Identity
Mapping</span>. Click <span class="uicontrol">Verify configuration</span>. After
the configuration has been verified, click <span class="uicontrol">Next</span>.</span> <div class="note"><span class="notetitle">Note:</span> If the verification of EIM does not complete successfully, there
may be a problem with the EIM configuration on the model system. If the network
authentication service configuration fails, there may be a problem with the
network authentication service configuration on the model system. <p>To recover
from these errors, you need to check the EIM and network authentication service
configurations on the model system, fix the configurations, and then return
to the beginning of this scenario. Refer to <a href="rzamzenablesso.htm">Scenario: Create a single signon test environment</a> to
ensure that all of the single signon configuration tasks on the model system
are completed and verified.</p>
</div>
</li>
<li class="stepexpand"><span>On the <span class="uicontrol">Network Authentication Service</span> page,
select <span class="uicontrol">i5/OS Kerberos Authentication</span>, enter <samp class="codeph">iseriesa123</samp> in
the <span class="uicontrol">Password</span> and <span class="uicontrol">Confirm password</span> fields,
and click <span class="uicontrol">Next</span>.</span> <div class="note"><span class="notetitle">Note:</span> This password is used
for the keytab entry on each target system. If your security policy requires
a different password on each system, then you can skip this step. Instead,
after you complete this wizard, you can <a href="../rzakh/rzakhkkeytab.htm">manually</a> add the keytab entries to individual systems
and enter a different password for each system.</div>
</li>
<li class="stepexpand"><span>On the <span class="uicontrol">Enterprise Identity Mapping</span> page,
select the user that the operating system uses when performing EIM operations:</span> <ul><li><span class="uicontrol">User Type</span>: <tt>Distinguished name and password</tt></li>
<li><span class="uicontrol">Distinguished name</span>: <tt>cn=administrator</tt></li>
<li><span class="uicontrol">Password</span>: <tt>mycopwd</tt></li>
</ul>
</li>
<li class="stepexpand"><span>On the <span class="uicontrol">Summary</span> page, verify that the appropriate
settings are listed on this page. Click <strong>Finish</strong>.</span></li>
<li class="stepexpand"><span>In <span class="keyword">iSeries Navigator</span>,
expand <span class="menucascade"><span class="uicontrol">Management Central (iSeriesMC1)</span> &gt; <span class="uicontrol">Task Activity</span> &gt; <span class="uicontrol">System Values</span></span>.</span></li>
<li class="stepexpand"><span>Verify that the task has completed successfully.</span></li>
</ol>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="rzamzsynchconfig.htm" title="This scenario demonstrates how to use the Synchronize Functions wizard in iSeries™ Navigator to propagate a single signon configuration across multiple systems in a mixed OS/400® release environment. Administrators can save time by configuring single signon once and propagating that configuration to all of their systems, instead of configuring each system individually.">Scenario: Propagate network authentication service and EIM across multiple systems</a></div>
<div class="previouslink"><strong>Previous topic:</strong> <a href="rzamzcreateasystemgroup.htm">Create a system group</a></div>
<div class="nextlink"><strong>Next topic:</strong> <a href="rzamzcompletetheconfigurationsfornetwork.htm">Complete the configurations for network authentication service and EIM on iSeries B and iSeries C</a></div>
</div>
</div>
</body>
</html>
Reference in New Issue View Git Blame Copy Permalink