AvailabilityGuard™ uses read-only NaviSECCLI commands to collect configuration data from EMC VNX storage arrays. These commands run on one or more UNIX/Linux servers in the IT environment. Collectively, these servers can query all VNX storage arrays in the scope. These servers are also known as NaviCLI proxies.
AvailabilityGuard™ runs read-only commands on the NaviCLI proxy over a secure shell (SSH) session. The connection from the proxy to the VNX storage array requires authorization details (user/password/scope) for the storage array.
AvailabilityGuard™ uses the following NavisecCLI command syntax:
- port: The port used for VNX access. The default is 443.
- User: The user name to be used for VNX authorization.
- Password: The password to be used for VNX
- Scope: The scope to be used for VNX authorization, represented as a numeric value (0: Global, 1: Local, and 2: LDAP).
- array IP/name: The array DNS name or IP address of one of the VNX storage processors (SPs).
To scan an EMC VNX storage system, you should make the following preparations:
- Obtain the NaviCLI proxy host name or IP address.
- Obtain an OS user account for the NaviCLI proxy.
- Obtain the VNX name or IP address.
- Obtain a VNX user account.
- Verify that IP connectivity through SSH (default is port 22) is available between the AvailabilityGuard™ collector server and each NaviCLI proxy.
- Verify that IP connectivity is available between the NaviCLI proxy and each VNX storage array that it scans.
- Windows servers can also be used as NaviCLI proxies. When using Windows NaviCLI proxies, AvailabilityGuard opens a WMI or WRM connection to the proxy and runs NaviCLI commands to collect data. Refer to Windows Scan Requirements for additional detail.
- In order to scan a VNX storage array, two different user accounts are required; one account for the Operating System on which NaviCLI is installed and a second account for the VNX storage array.
- It is also possible to configure that NaviCLI proxy such that it has declared automatic (read-only) authorization for the array. In this mode the user, password and scope are not required.
- You can use sudo (or similar) software to achieve already declared authorization
for the array.
- Avoid using the '<' and '>' characters in the password.
- For AIX, the path to the naviseccli executable is /usr/lpp/NAVICLI.