friedkiwi/ibm-information-center
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
14ed2849c6
ibm-information-center/dist/eclipse/plugins/i5OS.ic.cl_5.4.0.1/crtnwscfg.htm

1147 lines
36 KiB
HTML
Raw Blame History

<!doctype html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head><META http-equiv="Content-Type" content="text/html; charset=utf-8">
<title>Create NWS Configuration (CRTNWSCFG)</title>
<link rel="stylesheet" type="text/css" href="../rzahg/ic.css">
</head>
<body bgcolor="white">
<script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
<a name="CRTNWSCFG.Top_Of_Page"></a>
<h2>Create NWS Configuration (CRTNWSCFG)</h2>
<table width="100%">
<tr>
<td valign="top" align="left"><b>Where allowed to run: </b>All environments (*ALL)<br>
<b>Threadsafe: </b>No
</td>
<td valign="top" align="right">
<a href="#CRTNWSCFG.PARAMETERS.TABLE">Parameters</a><br>
<a href="#CRTNWSCFG.COMMAND.EXAMPLES">Examples</a><br>
<a href="#CRTNWSCFG.ERROR.MESSAGES">Error messages</a></td>
</tr>
</table>
<div> <a name="CRTNWSCFG"></a>
<p>The Create NWS Configuration (CRTNWSCFG) command creates a network server configuration and an associated validation list. The network server configuration defines connection security or remote system attributes.
</p>
<p><b>Restrictions:</b>
</p>
<ul>
<li>This command is shipped with public exclude (*EXCLUDE) authority. When this command is shipped, authority is issued only to the security officer. The security officer can grant the use of this command to other users.
</li>
<li>You must have input/output system configuration (*IOSYSCFG) special authority to use this command.
</li>
<li>To specify a non-default value for the IPSECRULE, CHAPAUT, or SPCERTID parameters, you must have security administrator (*SECADM) special authority.
</li>
</ul>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<hr size="2" width="100%">
<div>
<h3><a name="CRTNWSCFG.PARAMETERS.TABLE">Parameters</a></h3>
<table border="1" cellpadding="4" cellspacing="0">
<!-- col1="10" col2="15" col3="30" col4="10" -->
<tr>
<th bgcolor="aqua" valign="bottom" align="left">Keyword</th>
<th bgcolor="aqua" valign="bottom" align="left">Description</th>
<th bgcolor="aqua" valign="bottom" align="left">Choices</th>
<th bgcolor="aqua" valign="bottom" align="left">Notes</th>
</tr>
<tr>
<td valign="top"><a href="#CRTNWSCFG.NWSCFG"><b>NWSCFG</b></a></td>
<td valign="top">Network server configuration</td>
<td valign="top"><i>Communications name</i></td>
<td valign="top">Required, Positional 1</td>
</tr>
<tr>
<td valign="top"><a href="#CRTNWSCFG.TYPE"><b>TYPE</b></a></td>
<td valign="top">Configuration type</td>
<td valign="top">*CNNSEC, *RMTSYS, *SRVPRC</td>
<td valign="top">Required, Positional 2</td>
</tr>
<tr>
<td valign="top"><a href="#CRTNWSCFG.IPSECRULE"><b>IPSECRULE</b></a></td>
<td valign="top">IP security rules</td>
<td valign="top">Single values: <b><u>*NONE</u></b><br>Other values (up to 16 repetitions): <i>Character value</i>, *GEN, *REGEN</td>
<td valign="top">Optional</td>
</tr>
<tr>
<td valign="top"><a href="#CRTNWSCFG.INZSP"><b>INZSP</b></a></td>
<td valign="top">Initialize service processor</td>
<td valign="top"><b><u>*MANUAL</u></b>, *AUTO, *NONE</td>
<td valign="top">Optional</td>
</tr>
<tr>
<td valign="top"><a href="#CRTNWSCFG.ENBUNICAST"><b>ENBUNICAST</b></a></td>
<td valign="top">Enable unicast</td>
<td valign="top"><b><u>*NO</u></b>, *YES</td>
<td valign="top">Optional</td>
</tr>
<tr>
<td valign="top"><a href="#CRTNWSCFG.SPNAME"><b>SPNAME</b></a></td>
<td valign="top">Service processor name</td>
<td valign="top"><i>Character value</i>, <b><u>*SPINTNETA</u></b></td>
<td valign="top">Optional</td>
</tr>
<tr>
<td valign="top"><a href="#CRTNWSCFG.SPINTNETA"><b>SPINTNETA</b></a></td>
<td valign="top">SP internet address</td>
<td valign="top"><i>Character value</i></td>
<td valign="top">Optional</td>
</tr>
<tr>
<td valign="top" rowspan="3"><a href="#CRTNWSCFG.SPCERTID"><b>SPCERTID</b></a></td>
<td valign="top">SP certificate identifier</td>
<td valign="top">Single values: <b><u>*NONE</u></b><br>Other values: <i>Element list</i></td>
<td valign="top" rowspan="3">Optional</td>
</tr>
<tr>
<td valign="top">Element 1: Component</td>
<td valign="top">
*COMMONNAME, *EMAIL, *ORGUNIT</td>
</tr>
<tr>
<td valign="top">Element 2: Compare value</td>
<td valign="top">
<i>Character value</i></td>
</tr>
<tr>
<td valign="top" rowspan="3"><a href="#CRTNWSCFG.EID"><b>EID</b></a></td>
<td valign="top">Enclosure identifier</td>
<td valign="top">Single values: *AUTO<br>Other values: <i>Element list</i></td>
<td valign="top" rowspan="3">Optional</td>
</tr>
<tr>
<td valign="top">Element 1: Serial number</td>
<td valign="top">
<i>Character value</i></td>
</tr>
<tr>
<td valign="top">Element 2: Manufacturer type and model</td>
<td valign="top">
<i>Character value</i></td>
</tr>
<tr>
<td valign="top"><a href="#CRTNWSCFG.SPNWSCFG"><b>SPNWSCFG</b></a></td>
<td valign="top">SP configuration name</td>
<td valign="top"><i>Communications name</i></td>
<td valign="top">Optional</td>
</tr>
<tr>
<td valign="top" rowspan="3"><a href="#CRTNWSCFG.RMTSYSID"><b>RMTSYSID</b></a></td>
<td valign="top">Remote system identifier</td>
<td valign="top">Single values: <b><u>*SPNWSCFG</u></b><br>Other values: <i>Element list</i></td>
<td valign="top" rowspan="3">Optional</td>
</tr>
<tr>
<td valign="top">Element 1: Serial number</td>
<td valign="top">
<i>Character value</i></td>
</tr>
<tr>
<td valign="top">Element 2: Manufacturer type and model</td>
<td valign="top">
<i>Character value</i></td>
</tr>
<tr>
<td valign="top"><a href="#CRTNWSCFG.DELIVERY"><b>DELIVERY</b></a></td>
<td valign="top">Delivery method</td>
<td valign="top"><i>Character value</i>, <b><u>*DYNAMIC</u></b>, *MANUAL</td>
<td valign="top">Optional</td>
</tr>
<tr>
<td valign="top" rowspan="3"><a href="#CRTNWSCFG.CHAPAUT"><b>CHAPAUT</b></a></td>
<td valign="top">CHAP authentication</td>
<td valign="top">Single values: *NONE<br>Other values: <i>Element list</i></td>
<td valign="top" rowspan="3">Optional</td>
</tr>
<tr>
<td valign="top">Element 1: CHAP name</td>
<td valign="top">
<i>Character value</i>, <b><u>*NWSCFG</u></b></td>
</tr>
<tr>
<td valign="top">Element 2: CHAP secret</td>
<td valign="top">
<i>Character value</i>, <b><u>*GEN</u></b></td>
</tr>
<tr>
<td valign="top" rowspan="4"><a href="#CRTNWSCFG.BOOTDEVID"><b>BOOTDEVID</b></a></td>
<td valign="top">Boot device ID</td>
<td valign="top">Single values: <b><u>*SINGLE</u></b><br>Other values: <i>Element list</i></td>
<td valign="top" rowspan="4">Optional</td>
</tr>
<tr>
<td valign="top">Element 1: Bus</td>
<td valign="top">
0-255</td>
</tr>
<tr>
<td valign="top">Element 2: Device</td>
<td valign="top">
0-31</td>
</tr>
<tr>
<td valign="top">Element 3: Function</td>
<td valign="top">
0-7</td>
</tr>
<tr>
<td valign="top" rowspan="3"><a href="#CRTNWSCFG.DYNBOOTOPT"><b>DYNBOOTOPT</b></a></td>
<td valign="top">Dynamic boot options</td>
<td valign="top"><i>Element list</i></td>
<td valign="top" rowspan="3">Optional</td>
</tr>
<tr>
<td valign="top">Element 1: Vendor ID</td>
<td valign="top">
<i>Character value</i>, <b><u>*DFT</u></b></td>
</tr>
<tr>
<td valign="top">Element 2: Alternate client ID</td>
<td valign="top">
<i>Character value</i>, <b><u>*ADPT</u></b></td>
</tr>
<tr>
<td valign="top" rowspan="12"><a href="#CRTNWSCFG.RMTIFC"><b>RMTIFC</b></a></td>
<td valign="top">Remote interfaces</td>
<td valign="top">Values (up to 4 repetitions): <i>Element list</i></td>
<td valign="top" rowspan="12">Optional</td>
</tr>
<tr>
<td valign="top">Element 1: SCSI interface</td>
<td valign="top">
<i>Element list</i></td>
</tr>
<tr>
<td valign="top" style="padding-left:10pt">Element 1: Adapter address</td>
<td valign="top">
<i>Hexadecimal value</i>, *NONE</td>
</tr>
<tr>
<td valign="top" style="padding-left:10pt">Element 2: Internet address</td>
<td valign="top">
<i>Character value</i></td>
</tr>
<tr>
<td valign="top" style="padding-left:10pt">Element 3: Subnet mask</td>
<td valign="top">
<i>Character value</i></td>
</tr>
<tr>
<td valign="top" style="padding-left:10pt">Element 4: Gateway address</td>
<td valign="top">
<i>Character value</i></td>
</tr>
<tr>
<td valign="top" style="padding-left:10pt">Element 5: iSCSI qualified name</td>
<td valign="top">
<i>Character value</i>, <b><u>*GEN</u></b></td>
</tr>
<tr>
<td valign="top">Element 2: LAN interface</td>
<td valign="top">
<i>Element list</i></td>
</tr>
<tr>
<td valign="top" style="padding-left:10pt">Element 1: Adapter address</td>
<td valign="top">
<i>Hexadecimal value</i>, *NONE</td>
</tr>
<tr>
<td valign="top" style="padding-left:10pt">Element 2: Internet address</td>
<td valign="top">
<i>Character value</i></td>
</tr>
<tr>
<td valign="top" style="padding-left:10pt">Element 3: Subnet mask</td>
<td valign="top">
<i>Character value</i></td>
</tr>
<tr>
<td valign="top" style="padding-left:10pt">Element 4: Gateway address</td>
<td valign="top">
<i>Character value</i></td>
</tr>
<tr>
<td valign="top"><a href="#CRTNWSCFG.TEXT"><b>TEXT</b></a></td>
<td valign="top">Text 'description'</td>
<td valign="top"><i>Character value</i>, <b><u>*BLANK</u></b></td>
<td valign="top">Optional</td>
</tr>
<tr>
<td valign="top"><a href="#CRTNWSCFG.AUT"><b>AUT</b></a></td>
<td valign="top">Authority</td>
<td valign="top"><i>Name</i>, <b><u>*CHANGE</u></b>, *ALL, *USE, *EXCLUDE, *LIBCRTAUT</td>
<td valign="top">Optional</td>
</tr>
</table>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
</div>
<div> <a name="CRTNWSCFG.NWSCFG"></a>
<h3>Network server configuration (NWSCFG)</h3>
<p>Specifies the name of the network server configuration.
</p>
<p>This is a required parameter.
</p>
<dl>
<dt><b><i>name</i></b></dt>
<dd>Specify the name of the network server configuration to be created.
</dd>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTNWSCFG.TYPE"></a>
<h3>Configuration type (TYPE)</h3>
<p>Specifies the type of network server configuration to be created.
</p>
<p>This is a required parameter.
</p>
<dl>
<dt><b>*CNNSEC</b></dt>
<dd>Connection security defines the IP Security (IPSec) rule attributes.
</dd>
<dt><b>*RMTSYS</b></dt>
<dd>Remote system defines the hardware and configuration attributes required to boot the server.
</dd>
<dt><b>*SRVPRC</b></dt>
<dd>Service processor defines the attributes used to locate and manage the server.
</dd>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTNWSCFG.IPSECRULE"></a>
<h3>IP security rules (IPSECRULE)</h3>
<p>Specifies the configuration IP Security (IPSec) rules used between the hosting and remote system.
</p>
<p>This parameter is only valid when TYPE(*CNNSEC) is specified.
</p>
<p><b>Single values</b>
</p>
<dl>
<dt><b><u>*NONE</u></b></dt>
<dd>IP Security (IPSec) protocol security settings are not configured.
</dd>
</dl>
<p><b>Other values (up to 16 repetitions)</b>
</p>
<dl>
<dt><b>*GEN</b></dt>
<dd>Generate a random pre-shared key.
</dd>
</dl>
<dl>
<dt><b>*REGEN</b></dt>
<dd>Automatically generate a random pre-shared key every time the system is varied on.
</dd>
</dl>
<dl>
<dt><b><i>character-string</i></b></dt>
<dd>Specify the pre-shared key.
</dd>
</dl>
<dl>
<dt><b></b></dt>
<dd>A pre-shared key is a nontrivial string up to 32 characters long.
</dd>
</dl>
<p>Valid characters are upper case A through Z, lower case a through z, numbers 0 through 9, and the following special characters:
</p>
<ul>
<li>Plus sign
</li>
<li>Equal sign
</li>
<li>Percent
</li>
<li>Ampersand
</li>
<li>Left parenthesis
</li>
<li>Right parenthesis
</li>
<li>Comma
</li>
<li>Underline
</li>
<li>Minus sign
</li>
<li>Period
</li>
<li>Colon
</li>
<li>Semicolon
</li>
</ul>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTNWSCFG.INZSP"></a>
<h3>Initialize service processor (INZSP)</h3>
<p>Specifies how the remote system's service processor is secured.
</p>
<p>This parameter is only valid when TYPE(*SRVPRC) is specified.
</p>
<dl>
<dt><b><u>*MANUAL</u></b></dt>
<dd>
<p>To use this option, it is required that the remote system's service processor is pre-configured with a user name, password and certificate. Certificate management will be required. This method is appropriate when connecting to the service processor via public networks to protect the password.
</p>
</dd>
</dl>
<dl>
<dt><b>*AUTO</b></dt>
<dd>
<p>Parameters are automatically configured on the remote system's service processor.
</p>
<p>*AUTO provides security without requiring pre-configuration of the remote system's service processor. The remote system's service processor will have certificates automatically regenerated when the certificates are near expiration. This option is appropriate if the interconnecting network is physically secure or is protected by a firewall.
</p>
<p>
<b>Note: </b>An administrator will need to regenerate the certificate using the Initialize NWS Configuration (INZNWSCFG) command when the service processor certificate has expired, or if a new certificate and password are desired at any time before the certificate expires.
</p>
</dd>
<dt><b>*NONE</b></dt>
<dd>
<p>Provides no security.
</p>
<p>Use this only if the interconnecting network is physically secure.
</p>
<p>
<b>Note: </b>Some service processors do not support secure connections. Use *NONE for these service processors. Additional information can be found at Integrated xSeries solutions at http://www.ibm.com/servers/eserver/iseries/integratedxseries.
</p>
</dd>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTNWSCFG.ENBUNICAST"></a>
<h3>Enable unicast (ENBUNICAST)</h3>
<p>Specifies whether unicast packet distribution is to be used. Unicast is a transmission method where packets are sent directly to the specified <b>Service processor name (SPNAME)</b> or <b>SP internet address (SPINTNETA)</b> parameter.
</p>
<p>The system identification for the Enclosure identifier (EID) parameter is automatically retrieved if *AUTO is specified and the system hardware supports it.
</p>
<p>This parameter is only valid when TYPE(*SRVPRC) is specified.
</p>
<dl>
<dt><b><u>*NO</u></b></dt>
<dd>Disable unicast
</dd>
<dt><b>*YES</b></dt>
<dd>Enable unicast.
</dd>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTNWSCFG.SPNAME"></a>
<h3>Service processor name (SPNAME)</h3>
<p>Specifies the remote system's service processor host name.
</p>
<p>This parameter is only valid when TYPE(*SRVPRC) is specified.
</p>
<p>
<b>Note: </b>This parameter is required when ENBUNICAST(*YES) is specified.
</p>
<dl>
<dt><b><u>*SPINTNETA</u></b></dt>
<dd>
<p>The remote system is identified by the value specified for the <b>SP internet address (SPINTNETA)</b> parameter.
</p>
</dd>
</dl>
<dl>
<dt><b><i>host-name</i></b></dt>
<dd>Specify the remote system's service processor host name.
</dd>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTNWSCFG.SPINTNETA"></a>
<h3>SP internet address (SPINTNETA)</h3>
<p>Specifies the remote system's service processor internet address.
</p>
<p>This parameter is only valid when TYPE(*SRVPRC) is specified.
</p>
<p><b>Notes:</b>
</p>
<ol>
<li>This parameter is ignored when ENBUNICAST(*NO) is specified.
</li>
<li>This parameter is required when SPNAME(*SPINTNETA) is specified.
</li>
</ol>
<dl>
<dt><b><i>internet-address</i></b></dt>
<dd>Specify the internet address of the service processor.
<p>The value is entered in the decimal form <u> nnn.nnn.nnn.nnn</u> , where <u> nnn</u> is a decimal number ranging from 0 through 255.
</p>
</dd>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTNWSCFG.SPCERTID"></a>
<h3>SP certificate identifier (SPCERTID)</h3>
<p>The SP certificate identifier specifies one of three possible fields that identifies the service processor's certificate.
</p>
<p>This parameter is specified to provide additional validation that the certificate is from the service processor. The contents of the selected field must exactly match the value of the field that was entered when the certificate was generated or requested from a certificate authority.
</p>
<p>This parameter is only valid when TYPE(*SRVPRC) is specified.
</p>
<p>This parameter is required when INZSP(*MANUAL) is specified and cannot have the value *NONE.
</p>
<p><b>Single values</b>
</p>
<dl>
<dt><b><u>*NONE</u></b></dt>
<dd>Service processor certificate is not configured.
</dd>
</dl>
<p><b>Element 1: Component</b>
</p>
<dl>
<dt><b>*COMMONNAME</b></dt>
<dd>Selects the certificate's common name specified when the certificate was generated or requested from a certificate authority. On the remote supervisor adapter II this correlates to the "ASM Domain Name" field used to generate a self-signed certificate or generate a certificate signing request.
</dd>
</dl>
<dl>
<dt><b>*EMAIL</b></dt>
<dd>Selects the certificate's e-mail address specified when the certificate was generated or requested from a certificate authority. On the remote supervisor adapter II this correlates to the "Email Address" field used to generate a self-signed certificate or generate a certificate signing request.
</dd>
</dl>
<dl>
<dt><b>*ORGUNIT</b></dt>
<dd>Selects the certificate's organizational unit specified when the certificate was generated or requested from a certificate authority. On the remote supervisor adapter II this correlates to the "Organizational Unit" field used to generate a self-signed certificate or generate a certificate signing request.
</dd>
</dl>
<p><b>Element 2: Compare value</b>
</p>
<dl>
<dt><b><i>character-string</i></b></dt>
<dd>Specify the certificates component compare value. Enter no more than 255 characters of text, enclosed in apostrophes.
</dd>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTNWSCFG.EID"></a>
<h3>Enclosure identifier (EID)</h3>
<p>Specifies the identifying serial number, type and model of the enclosure containing the service processor.
</p>
<p>When specified, they are used to locate the system on the network.
</p>
<p>Look for these values on the label of the system.
</p>
<p>This parameter is only valid when TYPE(*SRVPRC) is specified.
</p>
<p><b>Single values</b>
</p>
<dl>
<dt><b>*AUTO</b></dt>
<dd>Automatically retrieve the identifier when ENBUNICAST(*YES) is specified.
</dd>
</dl>
<p><b>Element 1: Serial number</b>
</p>
<dl>
<dt><b><i>character-string</i></b></dt>
<dd>Specify the machine serial number.
</dd>
</dl>
<p><b>Element 2: Manufacturer type and model</b>
</p>
<dl>
<dt><b><i>character-string</i></b></dt>
<dd>Specify the machine type and model.
</dd>
</dl>
<p>The value is entered in the form <u> ttttmmm</u> where <u> tttt</u> is the machine type and <u> mmm</u> is the machine model number.
</p>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTNWSCFG.SPNWSCFG"></a>
<h3>SP configuration name (SPNWSCFG)</h3>
<p>Specifies the name of the service processor network server configuration to be used to manage the remote server.
</p>
<p>This parameter is only valid when TYPE(*RMTSYS) is specified.
</p>
<dl>
<dt><b><i>name</i></b></dt>
<dd>Specifies the name of the service processor network server configuration.
</dd>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTNWSCFG.RMTSYSID"></a>
<h3>Remote system identifier (RMTSYSID)</h3>
<p>Specifies the identifying serial number, type and model of the remote system. When specified, they are used to locate the remote system on the network.
</p>
<p>Look for these values on the label of the system.
</p>
<p>
<b>Note: </b>The machine type and model may be omitted if the system's serial number is unique on the network.
</p>
<p>This parameter is only valid when TYPE(*RMTSYS) is specified.
</p>
<p><b>Single values</b>
</p>
<dl>
<dt><b>*SPNWSCFG</b></dt>
<dd>Use the serial number and type/model specified in the Enclosure identifier (EID) parameter of the service processor (*SRVPRC) network server configuration.
</dd>
</dl>
<p><b>Element 1: Serial number</b>
</p>
<dl>
<dt><b><i>character-string</i></b></dt>
<dd>Specify the machine serial number.
</dd>
</dl>
<p><b>Element 2: Manufacturer type and model</b>
</p>
<dl>
<dt><b><i>character-string</i></b></dt>
<dd>Specify the machine type and model.
</dd>
</dl>
<p>The value is entered in the form <u> ttttmmm</u> where <u> tttt</u> is the machine type and <u> mmm</u> is the machine model number.
</p>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTNWSCFG.DELIVERY"></a>
<h3>Delivery method (DELIVERY)</h3>
<p>Specifies how the parameters necessary to configure the remote system are delivered.
</p>
<p>This parameter is only valid when TYPE(*RMTSYS) is specified.
</p>
<dl>
<dt><b><u>*DYNAMIC</u></b></dt>
<dd>Parameters are dynamically delivered to the remote system using Dynamic Host Configuration Protocol (DHCP).
</dd>
</dl>
<dl>
<dt><b>*MANUAL</b></dt>
<dd>Parameters are manually configured on the remote system using the BIOS utilities (System BIOS or Adapter BIOS - CTRL-Q).
</dd>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTNWSCFG.CHAPAUT"></a>
<h3>CHAP authentication (CHAPAUT)</h3>
<p>Specifies the Challenge Handshake Authentication Protocol (CHAP) for the host system iSCSI target to authenticate the remote system initiator node.
</p>
<p>This parameter is only valid when TYPE(*RMTSYS) is specified.
</p>
<p><b>Single values</b>
</p>
<dl>
<dt><b>*NONE</b></dt>
<dd>CHAP authentication is not enabled.
</dd>
</dl>
<p><b>Element 1: CHAP name</b>
</p>
<dl>
<dt><b><u>*NWSCFG</u></b></dt>
<dd>The system will automatically generate a name for CHAP using the Network server configuration name.
</dd>
</dl>
<dl>
<dt><b><i>character-string</i></b></dt>
<dd>Specify the name you want to use for the Challenge Handshake Authentication Protocol.
</dd>
</dl>
<p>Valid characters are upper case A through Z, lower case a through z, numbers 0 through 9, and the following special characters:
</p>
<ul>
<li>Plus sign
</li>
<li>Equal sign
</li>
<li>Percent
</li>
<li>Ampersand
</li>
<li>Left parenthesis
</li>
<li>Right parenthesis
</li>
<li>Comma
</li>
<li>Underline
</li>
<li>Minus sign
</li>
<li>Period
</li>
<li>Colon
</li>
<li>Semicolon
</li>
</ul>
<p><b>Element 2: CHAP secret</b>
</p>
<dl>
<dt><b><u>*GEN</u></b></dt>
<dd>The system will automatically generate a random CHAP secret.
</dd>
</dl>
<dl>
<dt><b><i>character-string</i></b></dt>
<dd>Specify the secret you want to use for the Challenge Handshake Authentication Protocol.
</dd>
</dl>
<p>Valid characters are upper case A through Z, lower case a through z, numbers 0 through 9, and the following special characters:
</p>
<ul>
<li>Plus sign
</li>
<li>Equal sign
</li>
<li>Percent
</li>
<li>Ampersand
</li>
<li>Left parenthesis
</li>
<li>Right parenthesis
</li>
<li>Comma
</li>
<li>Underline
</li>
<li>Minus sign
</li>
<li>Period
</li>
<li>Colon
</li>
<li>Semicolon
</li>
</ul>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTNWSCFG.BOOTDEVID"></a>
<h3>Boot device ID (BOOTDEVID)</h3>
<p>Specifies the PCI Function Address (Bus/Device/Function) of the iSCSI adapter in the remote system that will be used to boot from.
</p>
<p>
<b>Note: </b>Remote systems with more than one iSCSI adapter installed in the server are required to specify which adapter will be used to boot from.
</p>
<p>This parameter is only valid when TYPE(*RMTSYS) is specified.
</p>
<p><b>Single values</b>
</p>
<dl>
<dt><b><u>*SINGLE</u></b></dt>
<dd>The single iSCSI adapter is used on the remote system
</dd>
</dl>
<p><b>Element 1: Bus</b>
</p>
<dl>
<dt><b><i>number</i></b></dt>
<dd>Specify the bus number of the remote system's iSCSI adapter that will be used to boot.
</dd>
</dl>
<dl>
<dt><b></b></dt>
<dd>Valid values range from 0 through 255.
</dd>
</dl>
<p><b>Element 2: Device</b>
</p>
<dl>
<dt><b><i>number</i></b></dt>
<dd>Specify the device number of the remote system's iSCSI adapter that will be used to boot.
</dd>
</dl>
<dl>
<dt><b></b></dt>
<dd>Valid values range from 0 through 31.
</dd>
</dl>
<p><b>Element 3: Function</b>
</p>
<dl>
<dt><b><i>number</i></b></dt>
<dd>Specify the function number of the remote system's iSCSI adapter that will be used to boot.
</dd>
</dl>
<dl>
<dt><b></b></dt>
<dd>Valid values range from 0 through 7.
</dd>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTNWSCFG.DYNBOOTOPT"></a>
<h3>Dynamic boot options (DYNBOOTOPT)</h3>
<p>Specifies the internal Dynamic Host Configuration Protocol (DHCP) Server configuration.
</p>
<p>
<b>Note: </b>This is an advanced configuration function.
</p>
<p>This parameter is used to configure the internal DHCP Server that is part of the iSCSI Target Host Bus Adapter firmware. It is used to provide IP address and diskless boot parameters for the remote iSCSI Initiator.
</p>
<p>This parameter is only valid when TYPE(*RMTSYS) is specified.
</p>
<p>This parameter is only valid when DELIVERY(*DYNAMIC) is specified.
</p>
<p><b>Element 1: Vendor ID</b>
</p>
<p>The client and server are pre-configured to a default vendor ID. Network administrators can configure clients to define their own identifying values to convey hardware, operating system or other identifying information. DHCP option 60 described in the IETF RFC 2132 is used for this function.
</p>
<dl>
<dt><b><u>*DFT</u></b></dt>
<dd>The default vendor ID will be used.
</dd>
</dl>
<dl>
<dt><b><i>character-string</i></b></dt>
<dd>Vendor ID of the remote system's iSCSI adapter that will be used.
</dd>
</dl>
<p><b>Element 2: Alternate client ID</b>
</p>
<p>Used by clients to specify their unique identifier to the server. Each client's identifier must be unique among all other client identifiers used on the effective DHCP network to which the client is attached (that is, the client's local subnet and any remote subnets reachable using DHCP relay). Vendors and system administrators are responsible for choosing client identifiers that meet this requirement for uniqueness. DHCP option 61 described in the IETF RFC 2132 is used for this function.
</p>
<dl>
<dt><b><u>*ADPT</u></b></dt>
<dd>The default Client ID consists of the adapter address for the remote system's iSCSI adapter. This value will be used to identify the remote system.
</dd>
</dl>
<dl>
<dt><b><i>character-string</i></b></dt>
<dd>Specify the Client ID of the remote system's iSCSI adapter that will be used to boot.
</dd>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTNWSCFG.RMTIFC"></a>
<h3>Remote interfaces (RMTIFC)</h3>
<p>Specifies the remote system's interfaces. This information is used to identify and configure the remote system's interfaces. Each adapter has two functions to support a SCSI and a LAN interface.
</p>
<p>This parameter is only valid when TYPE(*RMTSYS) is specified.
</p>
<p>
<b>Note: </b>A minimum of one SCSI interface and one LAN interface is required though they may reside on different adapters in the remote system.
</p>
<p><b>You can specify up to 4 repetitions for this parameter.</b>
</p>
<dl>
<dt><b>Element 1: SCSI interface</b></dt>
<dd>
<p>Specifies the remote system's SCSI interfaces.
</p>
<dl>
<dt><b>Element 1: Adapter address</b></dt>
<dd>
<dl>
<dt><b>*NONE</b></dt>
<dd>No SCSI interface is configured for this adapter.
</dd>
</dl>
<dl>
<dt><b><i>adapter-address</i></b></dt>
<dd>Specify the 12-character hexadecimal adapter address for the remote system's iSCSI interface.
</dd>
</dl>
</dd>
</dl>
<dl>
<dt><b>Element 2: Internet address</b></dt>
<dd>
<dl>
<dt><b><i>internet-address</i></b></dt>
<dd>Specify the internet address for the remote system's SCSI interface.
</dd>
</dl>
<p>The value is entered in the decimal form <u> nnn.nnn.nnn.nnn</u> , where <u> nnn</u> is a decimal number ranging from 0 through 255.
</p>
</dd>
</dl>
<dl>
<dt><b>Element 3: Subnet mask</b></dt>
<dd>
<dl>
<dt><b><i>subnet-mask</i></b></dt>
<dd>Specify the subnet mask for the remote system's SCSI interface.
</dd>
</dl>
<p>The value is entered in the decimal form <u> nnn.nnn.nnn.nnn</u> , where <u> nnn</u> is a decimal number ranging from 0 through 255.
</p>
</dd>
</dl>
<dl>
<dt><b>Element 4: Gateway address</b></dt>
<dd>
<dl>
<dt><b><i>gateway-address</i></b></dt>
<dd>Specify the gateway address for the remote system's SCSI interface.
</dd>
</dl>
<p>The value is entered in the decimal form <u> nnn.nnn.nnn.nnn</u> , where <u> nnn</u> is a decimal number ranging from 0 through 255.
</p>
</dd>
</dl>
<dl>
<dt><b>Element 5: iSCSI qualified name</b></dt>
<dd>
<dl>
<dt><b><u>*GEN</u></b></dt>
<dd>The system will automatically generate the iSCSI qualified name.
</dd>
</dl>
<dl>
<dt><b><i>name</i></b></dt>
<dd>Specify the iSCSI qualified name for the remote system's SCSI interface.
</dd>
</dl>
<p>The following characters are allowed in iSCSI qualified names:
</p>
<ul>
<li>Alphabetical characters A through Z converted to lower case (refer to RFC 3722)
</li>
<li>Alphabetical characters a through z
</li>
<li>Digits 0 through 9
</li>
<li>Period (.)
</li>
<li>Dash (-)
</li>
<li>colon (:)
</li>
</ul>
</dd>
</dl>
</dd>
<dt><b>Element 2: LAN interface</b></dt>
<dd>
<p>Specifies the remote system's LAN interfaces.
</p>
<dl>
<dt><b>Element 1: Adapter address</b></dt>
<dd>
<dl>
<dt><b>*NONE</b></dt>
<dd>No LAN interface is configured for this adapter.
</dd>
</dl>
<dl>
<dt><b><i>adapter-address</i></b></dt>
<dd>Specify the 12-character hexadecimal adapter address for the remote system's LAN or TCP Offload Engine (TOE) interface.
</dd>
</dl>
</dd>
</dl>
<dl>
<dt><b>Element 2: Internet address</b></dt>
<dd>
<dl>
<dt><b><i>internet-address</i></b></dt>
<dd>Specify the internet address for the remote system's LAN interface.
</dd>
</dl>
<p>The value is entered in the decimal form <u> nnn.nnn.nnn.nnn</u> , where <u> nnn</u> is a decimal number ranging from 0 through 255.
</p>
</dd>
</dl>
<dl>
<dt><b>Element 3: Subnet mask</b></dt>
<dd>
<dl>
<dt><b><i>subnet-mask</i></b></dt>
<dd>Specify the subnet mask for the remote system's LAN interface.
</dd>
</dl>
<p>The value is entered in the decimal form <u> nnn.nnn.nnn.nnn</u> , where <u> nnn</u> is a decimal number ranging from 0 through 255.
</p>
</dd>
</dl>
<dl>
<dt><b>Element 4: Gateway address</b></dt>
<dd>
<dl>
<dt><b><i>gateway-address</i></b></dt>
<dd>Specify the gateway address for the remote system's LAN interface.
</dd>
</dl>
<p>The value is entered in the decimal form <u> nnn.nnn.nnn.nnn</u> , where <u> nnn</u> is a decimal number ranging from 0 through 255.
</p>
</dd>
</dl>
</dd>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTNWSCFG.TEXT"></a>
<h3>Text 'description' (TEXT)</h3>
<p>Specifies text that briefly describes the network server configuration.
</p>
<dl>
<dt><b><u>*BLANK</u></b></dt>
<dd>Text is not specified.
</dd>
</dl>
<dl>
<dt><b><i>character-value</i></b></dt>
<dd>Specify no more than 50 characters of text, enclosed in apostrophes.
</dd>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<div> <a name="CRTNWSCFG.AUT"></a>
<h3>Authority (AUT)</h3>
<p>Specifies the authority you are giving to users who do not have specific authority for the object, who are not on an authorization list, and whose group profile or supplemental group profiles do not have specific authority for the object.
</p>
<dl>
<dt><b><u>*CHANGE</u></b></dt>
<dd>The user can perform all operations on the object except those limited to the owner or controlled by object existence (*OBJEXIST) and object management (*OBJMGT) authorities. The user can change and perform basic functions on the object. *CHANGE authority provides object operational (*OBJOPR) authority and all data authority. If the object is an authorization list, the user cannot add, change, or remove users.
</dd>
</dl>
<dl>
<dt><b>*ALL</b></dt>
<dd>The user can perform all operations except those limited to the owner or controlled by authorization list management (*AUTLMGT) authority. The user can control the object's existence, specify the security for the object, change the object, and perform basic functions on the object. The user also can change ownership of the object.
</dd>
</dl>
<dl>
<dt><b>*USE</b></dt>
<dd>The user can perform basic operations on the object, such as running a program or reading a file. The user cannot change the object. Use (*USE) authority provides object operational (*OBJOPR), read (*READ), and execute (*EXECUTE) authorities.
</dd>
</dl>
<dl>
<dt><b>*EXCLUDE</b></dt>
<dd>The user cannot access the object.
</dd>
</dl>
<dl>
<dt><b>*LIBCRTAUT</b></dt>
<dd>The system determines the authority for the object by using the value specified for the <b>Create authority (CRTAUT)</b> parameter on the Create Library (CRTLIB) command for the library containing the object to be created. If the value specified for the CRTAUT parameter is changed, the new value will not affect any existing objects.
</dd>
</dl>
<dl>
<dt><b><i>name</i></b></dt>
<dd>Specify the name of an authorization list to be used for authority to the object. Users included in the authorization list are granted authority to the object as specified in the list. The authorization list must exist when the object is created.
</dd>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<hr size="2" width="100%">
<div><h3><a name="CRTNWSCFG.COMMAND.EXAMPLES">Examples</a> </h3>
<p><b>Example 1: Security Connection Network Server Configuration</b>
</p>
<p>
<pre>
CRTNWSCFG NWSCFG(MYSEC)
TYPE(*CNNSEC)
IPSECRULE(*NONE)
TEXT('Connection security')
</pre>
</p>
<p>This command creates a Connection Security Configuration with no security rules.
</p>
<p><b>Example 2: Service Processor Network Server Configuration</b>
</p>
<p>
<pre>
CRTNWSCFG NWSCFG(CAT4SP)
TYPE(*SRVPRC)
INZSP(*MANUAL)
ENBUNICAST(*YES)
SPINTNETA('1.5.10.75')
SPCERTID(*ORGUNIT 'ACME Corp')
EID(RTYM14A 3305R8U)
TEXT('CAT4SP Service processor')
</pre>
</p>
<p>This command creates a service processor configuration. The service processor is contacted using IP Address 1.5.10.75. The remote system is identified by the serial number RTYMl4A. The service processor is manually secured using a certificate configured with the 'ACME Corp' organizational unit.
</p>
<p><b>Example 3: Remote System Network Server Configuration</b>
</p>
<p>
<pre>
CRTNWSCFG NWSCFG(CAT4SVR)
TYPE(*RMTSYS)
SPNWSCFG(CAT4SP)
RMTSYSID(*SPNWSCFG)
DELIVERY(*DYNAMIC)
RMTIFC(((111111111111 '1.5.10.10'
'255.255.255.0' '1.5.10.129' *GEN)
(1FFFFFFFFFFF '1.5.10.20'
'255.255.255.0' '1.5.10.129')))
TEXT('CAT4SVR Service processor')
</pre>
</p>
<p>This command creates a remote system configuration which uses the dynamic delivery method to configure the remote system. The system is identified using the CAT4SP service processor configuration specified by the SPNWSCFG parameter. The iSCSI remote interface for SCSI is configured using an IP address of 1.5.10.10 and a LAN address of 1.5.10.20. The iSCSI qualified name is automatically generated.
</p>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
<hr size="2" width="100%">
<div><h3><a name="CRTNWSCFG.ERROR.MESSAGES">Error messages</a> </h3>
<p><b><u>*ESCAPE Messages</u></b>
</p>
<dl>
<dt><b>CPF2182</b></dt>
<dd>Not authorized to library &amp;1.
</dd>
<dt><b>CPF90A8</b></dt>
<dd>*SECADM special authority required to do requested operation.
</dd>
<dt><b>CPF96C9</b></dt>
<dd>Network server configuration &amp;1 not created.
</dd>
<dt><b>CPF9870</b></dt>
<dd>Object &amp;2 type *&amp;5 already exists in library &amp;3.
</dd>
<dt><b>CPFA1B8</b></dt>
<dd>*IOSYSCFG authority required to use &amp;1.
</dd>
</dl>
</div>
<table width="100%">
<tr><td align="right"><a href="#CRTNWSCFG.Top_Of_Page">Top</a></td></tr>
</table>
</body>
</html>
Reference in New Issue View Git Blame Copy Permalink