Contents

Dell PowerProtect 18.1 Data Protection Getting Started Guide PDF

1 of 46
1 of 46

Summary of Content for Dell PowerProtect 18.1 Data Protection Getting Started Guide PDF

Dell EMC IDPA System Manager Version 18.1

Getting Started Guide 302-004-614

REV 03

Copyright 2017-2018 Dell Inc. or its subsidiaries. All rights reserved.

Published December 2018

Dell believes the information in this publication is accurate as of its publication date. The information is subject to change without notice.

THE INFORMATION IN THIS PUBLICATION IS PROVIDED AS-IS. DELL MAKES NO REPRESENTATIONS OR WARRANTIES OF ANY KIND

WITH RESPECT TO THE INFORMATION IN THIS PUBLICATION, AND SPECIFICALLY DISCLAIMS IMPLIED WARRANTIES OF

MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. USE, COPYING, AND DISTRIBUTION OF ANY DELL SOFTWARE DESCRIBED

IN THIS PUBLICATION REQUIRES AN APPLICABLE SOFTWARE LICENSE.

Dell Technologies, Dell, EMC, Dell EMC and other trademarks are trademarks of Dell Inc. or its subsidiaries. Other trademarks may be the property

of their respective owners. Published in the USA.

Dell EMC Hopkinton, Massachusetts 01748-9103 1-508-435-1000 In North America 1-866-464-7381 www.DellEMC.com

2 IDPA System Manager 18.1 Getting Started Guide

5

IDPA System Manager Overview 9 Product overview........................................................................................10 Environment and system requirements ...................................................... 10 Monitoring systems .................................................................................... 11 Managing Avamar systems ......................................................................... 11 Search and recover capabilities...................................................................12 Report capabilities...................................................................................... 12

Deployment and Configuration 13 Check the network setup with each system................................................ 14 Deploy the OVA...........................................................................................15 Deploy IDPA System Manager on a standalone server or virtual machine .... 17 Verify the deployment.................................................................................18 Configuring LDAP ...................................................................................... 19

Configure LDAP or AD user access................................................ 19 Add LDAP or AD to IDPA System Manager during deployment......20 Add LDAP to IDPA System Manager after deployment..................20 Add a secure LDAP (LDAPS) certificate........................................26 Checking the LDAP connection status ..........................................27

Configuring Network Time Protocol........................................................... 28 Configuring Network Time Protocol during IDPA System Manager OVA deployment............................................................................28 Configuring Network Time Protocol after IDPA System Manager deployment....................................................................................29

Access control............................................................................................29 Default accounts........................................................................... 29

Certificate management.............................................................................30 Generate a self-sign certificate.................................................................. 30 Generate a Certificate Signing Request...................................................... 31

Getting Started with Administration 33 Log in to IDPA System Manager................................................................. 34 User interface.............................................................................................34

Header...........................................................................................34 User menu..................................................................................... 34 Left menu...................................................................................... 35 Pages............................................................................................ 36 Master and Detail panes................................................................ 36 Choose another Dashboard menu.................................................. 37 Filtering......................................................................................... 37 Sort information that is displayed in tables.................................... 38 Dialog boxes.................................................................................. 38 Notification bar..............................................................................38

Preface

Chapter 1

Chapter 2

Chapter 3

CONTENTS

IDPA System Manager 18.1 Getting Started Guide 3

Overflow button............................................................................ 39 Dashboards overview................................................................................. 39 Health overview..........................................................................................39 Activities overview..................................................................................... 39 System Management overview...................................................................40 Search and recover overview..................................................................... 40 Reports overview....................................................................................... 40

Adding Systems to IDPA System Manager 43 Add an Avamar system............................................................................... 44 Add a Data Domain System........................................................................ 44 Add a Data Protection Advisor system....................................................... 45 Add a Search system..................................................................................46

Chapter 4

CONTENTS

4 IDPA System Manager 18.1 Getting Started Guide

Preface

As part of an effort to improve product lines, periodic revisions of software and hardware are released. Therefore, all versions of the software or hardware currently in use might not support some functions that are described in this document. The product release notes provide the most up-to-date information on product features.

If a product does not function correctly or does not function as described in this document, contact a technical support professional.

Purpose This document includes information about how to deploy IDPA System Manager, and then get started with IDPA System Manager administration.

Audience This document is intended for administrators of IDPA System Manager.

Revision history The following table presents the revision history of this document.

Table 1 Revision history

Revision Date Description

03 December 18, 2018 The following updates are included in this revision:

l Updated and expanded the LDAP and LDAPS configuration instructions, including adding examples, under "Configuring LDAP"

l Updated the "Adding Systems to IDPA System Manager" chapter to add information about adding systems that use non-standard ports.

l Updated the "Add an Avamar system" section to add instructions to override the Avamar Administrator link with a link to the the AUI.

02 August 10, 2018 The following updates are included in this revision:

l Updated step four in "Add LDAP to IDPA System Manager after deployment"

l Updated step two in "Add a secure LDAP (LDAPS) certificate"

01 June 22, 2018 Initial release of the IDPA System Manager 18.1 Getting Started Guide.

Related Documentation For information about IDPA System Manager compatibility, refer to the IDPA System Manager Release Notes.

The IDPA System Manager documentation set includes the following publications:

l IDPA System Manager Getting Started Guide

l IDPA System Manager Security Configuration Guide

IDPA System Manager 18.1 Getting Started Guide 5

l IDPA System Manager Release Notes

l IDPA System Manager Administration Guide

The documentation for the following products includes more information:

l Avamar

l Data Domain

l Search

l Data Protection Advisor

Special notice conventions that are used in this document The following conventions are used for special notices:

NOTICE

Identifies content that warns of potential business or data loss.

Note

Contains information that is incidental, but not essential, to the topic.

Typographical conventions The following type style conventions are used in this document:

Table 2 Style conventions

Bold Used for interface elements that a user specifically selects or clicks, for example, names of buttons, fields, tab names, and menu paths. Also used for the name of a dialog box, page, pane, screen area with title, table label, and window.

Italic Used for full titles of publications that are referenced in text.

Monospace Used for:

l System code

l System output, such as an error message or script

l Pathnames, file names, file name extensions, prompts, and syntax

l Commands and options

Monospace italic Used for variables.

Monospace bold Used for user input.

[ ] Square brackets enclose optional values.

| Vertical line indicates alternate selections. The vertical line means or for the alternate selections.

{ } Braces enclose content that the user must specify, such as x, y, or z.

... Ellipses indicate non-essential information that is omitted from the example.

You can use the following resources to find more information about this product, obtain support, and provide feedback.

Preface

6 IDPA System Manager 18.1 Getting Started Guide

Where to find product documentation

l https://support.emc.com

l https://community.emc.com

Where to get support The Support website at https://support.emc.com provides access to licensing information, product documentation, advisories, and downloads, as well as how-to and troubleshooting information. This information may enable you to resolve a product issue before you contact Support.

To access a product specific Support page:

1. Go to https://support.emc.com/products.

2. In the Find a Product by Name box, type a product name, and then select the product from the list that appears.

3. Click .

4. (Optional) To add the product to My Saved Products, in the product specific page, click Add to My Saved Products.

Knowledgebase The Knowledgebase contains applicable solutions that you can search for by solution number, for example, 123456, or by keyword.

To search the Knowledgebase:

1. Go to https://support.emc.com.

2. Click Advanced Search. The screen refreshes and filter options appear.

3. In the Search Support or Find Service Request by Number box, type a solution number or keywords.

4. (Optional) To limit the search to specific products, type a product name in the Scope by product box, and then select the product from the list that appears.

5. In the Scope by resource list box, select Knowledgebase. The Knowledgebase Advanced Search panel appears.

6. (Optional) Specify other filters or advanced options.

7. Click .

Live chat To participate in a live interactive chat with a support agent:

1. Go to https://support.emc.com.

2. Click Chat with Support.

Service requests To obtain in-depth help from Support, submit a service request. To submit a service request:

1. Go to https://support.emc.com.

2. Click Create a Service Request.

Preface

IDPA System Manager 18.1 Getting Started Guide 7

Note

To create a service request, you must have a valid support agreement. Contact a sales representative for details about obtaining a valid support agreement or with questions about an account.

To review an open service request:

1. Go to https://support.emc.com.

2. Click Manage service requests.

Online communities Go to the Community Network at https://community.emc.com for peer contacts, conversations, and content on product support and solutions. Interactively engage online with customers, partners, and certified professionals for all products.

How to provide feedback Feedback helps to improve the accuracy, organization, and overall quality of publications. You can send feedback to DPAD.Doc.Feedback@emc.com.

Preface

8 IDPA System Manager 18.1 Getting Started Guide

CHAPTER 1

IDPA System Manager Overview

Learn about IDPA System Manager.

Topics include:

l Product overview............................................................................................... 10 l Environment and system requirements ..............................................................10 l Monitoring systems ............................................................................................ 11 l Managing Avamar systems ................................................................................. 11 l Search and recover capabilities.......................................................................... 12 l Report capabilities.............................................................................................. 12

IDPA System Manager Overview 9

Product overview IDPA System Manager provides a solution for data protection administrators who are challenged by having to manage independent and disconnected applications that are used to configure and manage one or more data protection and storage devices.

Working with multiple applications in this manner causes daily operational monitoring and management to be a complex, time consuming effort. IDPA System Manager enables administrators to efficiently and effectively monitor and manage the software products within the Data Protection Suite family from a single user interface, simplifying the entire data protection experience.

IDPA System Manager includes the following features:

l Ability to launch the following software from a central location:

n Avamar

n Data Domain

n Search

n Data Protection Advisor

l Comprehensive dashboards that include the following system information:

n The following information for Avamar and Data Domain systems:

Backup and replication activities

Health

Alerts

n Capacity information for Avamar and Data Domain systems.

l Ability to monitor multiple systems capabilities including system health and activities.

l Ability to manage Avamar systems.

l Complex search and recover operations through integration with Search.

l Reporting capabilities through integration with Data Protection Advisor.

Environment and system requirements The following list includes information about environment and system requirements:

l To deploy the IDPA System Manager OVA, you must use VMware vCenter with VMware ESX 5.5 or later. The IDPA System Manager OVA does not deploy directly to the ESXi server.

l The IDPA System Manager host must have 2 CPUs, 6 GB of RAM, and 550 GB of disk space available.

l The FQDN, IP, Netmask, Gateway, DNS, and time zone must be configured. The FQDN must resolve to the IP address.

l The environment must use static network settings.

l IDPA System Manager requires a minimum browser window size of 1366x768.

l Ensure that the DNS is set up correctly. The correct DNS setup ensures that systems can resolve the IDPA System Manager hostname and FQDN name.

l IDPA System Manager is compatible with VMware vSphere Fault Tolerance (FT), VMware vSphere High Availability (HA), and VMware vSphere vMotion.

IDPA System Manager Overview

10 IDPA System Manager 18.1 Getting Started Guide

The following table includes information about the minimum versions of products that are supported with IDPA System Manager:

Table 3 Compatibility

Product Supported versions

Avamar 7.4.1-58_HF299182_48 hotfix

7.5.0-183_HF284113_2 hotfix

7.5.1-101_HF298709_27 hotfix

Data Domain 6.0

6.1

6.1.1

Data Protection Advisor 6.4

6.5

Search 1.1 SP3

18.0

Mozilla Firefox Latest version

Google Chrome Latest version

Monitoring systems IDPA System Manager includes system monitoring features at the activity, system, and alert level.

The systems monitoring features include:

l ActivitiesDisplays backup and replication (clone) activity information for Avamar systems.

l AlertsDisplays alerts information originating from Avamar and Data Domain systems.

l CapacityDisplays capacity information at a system level for Avamar and Data Domain systems.

If a Data Domain system is configured in a monitored Avamar system, the Data Domain system is automatically added as a monitored system.

Managing Avamar systems For Avamar systems, IDPA System Manager includes policy management and client management capabilities.

IDPA System Manager includes the following Policy Management capabilities:

l View, add, edit, and delete policies, retentions, schedules, and datasets.

l Add clients and proxies to policies.

l Perform a backup of a policy.

l Rerun a backup or replication activity.

IDPA System Manager Overview

Monitoring systems 11

IDPA System Manager includes the capability for you to view existing clients that are associated with an Avamar system.

Search and recover capabilities IDPA System Manager integrates with Search to provide you with the ability to perform complex search and recover operations.

IDPA System Manager launches Search in a new browser tab.

After launching Search, you can perform the following tasks:

l Perform a targeted full content index (FCI) search.

l Search for files by name, location, size, owner, file type, and date.

l Perform advanced search queries including symbols, wildcards, filters, and operators.

l From the Search Results page:

n View a preview of the content.

n Download content.

n Recover content.

n Review the size of files or directories.

For comprehensive information about Search, refer to the Search documentation set.

Note

To take full advantage of IDPA System Manager capabilities, it is recommended that all systems that are configured in Search also be configured in IDPA System Manager.

Report capabilities IDPA System Manager provides the capability for you to run 11 of the most used Data Protection Advisor reports for Avamar and Data Domain systems.

IDPA System Manager reporting features require you to have Data Protection Advisor in the environment. For more information about Data Protection Advisor, refer to the Data Protection Advisor documentation set.

You can run, and then view these reports directly in the IDPA System Manager user interface. You can also specify the reporting period for these reports within the IDPA System Manager interface.

Note

To take full advantage of IDPA System Manager capabilities, it is recommended that all systems that are configured in Data Protection Advisor also be configured in IDPA System Manager.

IDPA System Manager Overview

12 IDPA System Manager 18.1 Getting Started Guide

CHAPTER 2

Deployment and Configuration

Learn about how to deploy and configure IDPA System Manager.

Topics include:

l Check the network setup with each system....................................................... 14 l Deploy the OVA.................................................................................................. 15 l Deploy IDPA System Manager on a standalone server or virtual machine .......... 17 l Verify the deployment........................................................................................ 18 l Configuring LDAP .............................................................................................. 19 l Configuring Network Time Protocol...................................................................28 l Access control................................................................................................... 29 l Certificate management.....................................................................................30 l Generate a self-sign certificate..........................................................................30 l Generate a Certificate Signing Request..............................................................31

Deployment and Configuration 13

Check the network setup with each system Before deploying the IDPA System Manager OVA, ensure that the network setup with each Avamar, Data Domain, and Data Protection Advisor system is correct.

Procedure

1. Ensure that the time on the system is set correctly.

For successful activation certificates, the time that appears on the system must be in sync with IDPA System Manager.

It is recommended that IDPA System Manager and all the systems that IDPA System Manager monitors be configured with a Network Time Protocol (NTP) server. This configuration helps keep the system times in sync. Configuring Network Time Protocol on page 28 provides more information about configuring an NTP server.

2. Find out the IDPA System Manager DNS hostname and domain name.

3. Check if the system is on the same domain as IDPA System Manager.

If the system is on the same domain, ensure that the DNS entry and search domain values are set.

If the system is on a different domain, add the IDPA System Manager DNS entry through the yast2 command, or by editing the /etc/resolv.conf file on the system.

4. To check whether the system can resolve the IDPA System Manager hostname and IP address, use the nslookup command.

Type the following command:

nslookup

Type the following command:

nslookup

5. Check whether the hostname resolves correctly.

If the hostname resolves correctly, the network setup is correctly configured. Otherwise, check all previously entered values.

6. Verify that the IDPA System Manager entry in the /etc/hosts file includes the short name, for example:

10.x.x.x dpc.domain.local dpc

Deployment and Configuration

14 IDPA System Manager 18.1 Getting Started Guide

Deploy the OVA Deploy the IDPA System Manager OVA using a VMware vSphere client. Refer to the VMware documentation for specific information regarding how to deploy an OVF template.

Before you begin

Ensure that the following system requirements are met:

l The DNS is set up correctly. The correct DNS set up ensures that systems monitored by IDPA System Manager can resolve the IDPA System Manager hostname and Fully Qualified Domain Name (FQDN).

l VMware vCenter with VMware ESX 5.5 or later is deployed. To deploy the IDPA System Manager OVA, you must use vCenter. The IDPA System Manager OVA does not deploy directly to the ESXi server.

l 2 CPUs and 6 GB of RAM.

l 550 GB of disk space available.

l The FQDN, IP, Netmask, Gateway, DNS, and time zone are configured. The FQDN must resolve to the IP address.

l The environment is using static network settings.

Procedure

1. Log in to vCenter using the vSphere client.

2. Specify an ESXi server on which to deploy the OVF.

3. Begin deploying an OVF template.

4. Type the file or URL location.

5. Verify the OVF template details match the version of IDPA System Manager that is to be deployed.

6. Accept the end user license agreement.

7. Specify the name and location of the IDPA System Manager virtual machine.

8. Select the virtual disk format.

When selecting the virtual disk format, the Thick Provision Lazy Zeroed option is recommended.

9. Specify network properties:

a. For the Network IP address, specify the IPv4 address or IPv6 address for the virtual appliance.

Note

For IPv6 addresses, to resolve the hostname of the appliance to the IP address, use the nslookup command. Specify the IPv6 address in the format that appears in the nslookup output.

b. For the Default Gateway, specify the default gateway IPv4 address or IPv6 address that you want the virtual appliance to use.

c. For the Network Netmask/Prefix, when you use IPv4 addressing, specify the netmask of the virtual appliance. When you use IPv6 addressing specify the prefix length.

Deployment and Configuration

Deploy the OVA 15

10. Specify DNS Settings:

a. For the DNS, specify up to three domain name servers for this virtual appliance.

Separate domain names with commas.

b. For the FQDN [e.g. hostname.domain], specify the FQDN for the virtual appliance.

Note

Ensure that you correctly configure hostname resolution for the name of the appliance. Forward and reverse lookups must succeed.

11. (Optional) In the NTP Server field, specify up to three Network Time Protocol (NTP) servers.

Separate server names with commas.

12. Specify Operation System User Passwords:

a. Under Configure OS root password, specify the password for the Linux OS root account.

The operating system root account is for OVA deployment only.

b. Under Configure OS admin password, specify the password for the Linux OS admin.

The operating system admin account is the default user for IDPA System Manager operating system administration.

The OS root and OS admin password length must be between 8 and 256 characters.

13. In Lockbox Settings, under Configure lockbox password, specify a Master password for the IDPA System Manager lockbox.

The lockbox password length must be between 8 and 256 characters.

IDPA System Manager uses a lockbox to encrypt and store the credentials of the systems it monitors. This password is used along with certain System Stable Values (SSVs) to create an encryption key.

14. Under Location Settings, select the timezone of the IDPA System Manager virtual machine.

15. (Optional) Configure LDAP.

Add LDAP or AD to IDPA System Manager during deployment on page 20 provides the steps to configure LDAP while deploying the OVA.

16. Validate the information that you specified, and then complete the deployment of the IDPA System Manager OVF.

Deployment and Configuration

16 IDPA System Manager 18.1 Getting Started Guide

Deploy IDPA System Manager on a standalone server or virtual machine

IDPA System Manager can be installed on a server or virtual machine using a self- extracting .jar file.

Before you begin

Ensure that the following minimum system requirements are met:

l Standalone server deployments require 1.5GHz processor.

l Virtual machine deployments require 2 CPUs with 1 core each.

l 6GB of RAM.

l 250 GB of disk space available.

l The environment is running SuSE Linux Enterprise Server 12 SP2. It is recommended that you disable AppArmor. If you must enable AppArmor, then the AppArmor profiles should not block the applications used by IDPA System Manager.

l Java Platform Standard Edition Development Kit (JDK) version 8u160 or greater is installed (packages java-1_8_0-openjdk, java-1_8_0-openjdk-headless, and javapackages-tools).

Note

Java may require additional packages to be installed.

l The Linux socat package is installed.

l The DNS is set up correctly. The correct DNS set up ensures that systems monitored by IDPA System Manager can resolve the IDPA System Manager hostname and Fully Qualified Domain Name (FQDN).

l The FQDN, IP, Netmask, Gateway, DNS, and time zone are configured.

l The environment is using static network settings.

Note

If you are installing IDPA System Manager on a Hyper-V virtual machine, you must use a Generation-1 Hyper-V virtual machine.

Prior to installing IDPA System Manager, ensure that an administrative user exists on the host named 'admin' and is added to a group named 'admin' .

Procedure

1. Download and save the IDPA System Manager .jar file.

Make note of the file name and directory where it is saved.

2. Launch a terminal window.

3. Log in as the root user.

4. Change the directory to the location where the .jar file is saved

Deployment and Configuration

Deploy IDPA System Manager on a standalone server or virtual machine 17

5. Start the installation by typing the following command:

java -jar .jar

Verify the deployment When the deployment is complete, to verify that IDPA System Manager was deployed successfully, perform the following steps.

Before you begin

Ensure that the virtual machine where the OVA file was deployed is powered on.

Note

IDPA System Manager is supported with Mozilla Firefox and Google Chrome.

Procedure

1. Open a browser, and then type the following in the Address field:

https://

The IDPA System Manager Login page appears.

2. In the Username field, type:

administrator@dpc.local

3. In the Password field, type:

secret

4. Click LOG IN.

The first time you log in you are required to change the password. The password requirements are as follows:

l A minimum of 9 characters.

l A maximum of 15 characters.

l At least 1 lowercase character.

l At least 1 uppercase character.

l At least 1 number.

l At least 1 of the following special characters: ! @ # $ % ^ & * ( ) - _

l The password cannot include any white space.

The IDPA System Manager Security Configuration Guide provides the steps to reset the administrator@dpc.local password.

Deployment and Configuration

18 IDPA System Manager 18.1 Getting Started Guide

Configuring LDAP IDPA System Manager supports LDAP authentication. Learn about LDAP requirements and configuration procedures in this section.

Note

OpenLDAP and Active Directory (AD) are supported.

You can configure LDAP during or after deploying IDPA System Manager.

Note

The Troubleshooting chapter in the IDPA System Manager Administration Guide provides detailed troubleshooting information on diagnosing and resolving common LDAP configuration issues.

Configure LDAP or AD user access Before you configure Lightweight Directory Access Protocol (LDAP) or Windows Active Directory (AD), configure the users who will access IDPA System Manager.

Perform this procedure on the server that hosts Lightweight Directory Access Protocol (LDAP) or Windows Active Directory (AD).

Procedure

1. Create an administrative user group that will contain the users who can access IDPA System Manager.

The following list describes the default containers, according to the configuration type:

l For Lightweight Directory Access Protocol (LDAP), the default user group is the OU=People folder.

l For Windows Active Directory (AD), the default user group is the OU=Users folder.

Note

If the administrative user group is located in a different folder, you must specify the OU folder value in the LDAP properties file with the elg.ldap.group.search.base key. Create an LDAP properties file on page 23 provides information.

2. For AD accounts only, set the user group scope setting to Global.

Note

Users who are part of this group are granted administrative privileges to IDPA System Manager and the system management applications for any systems added to IDPA System Manager, including Single-Sign On access.

3. Add any users that require access to IDPA System Manager to the user group.

Deployment and Configuration

Configuring LDAP 19

Add LDAP or AD to IDPA System Manager during deployment You can optionally configure Lightweight Directory Access Protocol (LDAP) or Windows Active Directory (AD) during deployment.

Procedure

1. Create an administrative user group depending on your configuration type:

l For LDAP, create an administrative user group in the OU=People folder.

l For AD, create an administrative user group in the OU=Users folder.

If the administrative user group is located in a different folder, then it can be set after deployment by setting the OU folder value for the elg.ldap.group.search.base key. Add LDAP to IDPA System Manager after deployment on page 20 provides more information.

2. Set the administrative user group scope setting to Global.

3. Add any users that require access to IDPA System Manager to the LDAP or AD administrative user group.

4. While deploying the IDPA System Manager OVA, under Configure LDAP (Optional), specify the following settings:

l LDAP server URL: Type the FQDN or IP address of the server where LDAP is hosted.

l Configure for secure LDAP (ldaps): From the list, select either LDAP or LDAPS depending on the LDAP security type.

l Port number of the LDAP: Type the LDAP server port number.

l Admin user Distinguished Name (DN): Type the administrative username in the distinguished name format.

l Admin Password: Type the password for the administrative user.

l Search Admin group name: Type the administrative user group name.

l Base Distinguished Name (DN)Type the domain base distinguished name.

l LDAP Type: Select the type of LDAP:

n Windows Active Directory (AD)

n Lightweight Directory Access Protocol (LDAP) server

5. Click Next and proceed with deploying the OVA.

Results

The administrator password is stored in the IDPA System Manager lockbox and removed from the LDAP properties file.

Add LDAP to IDPA System Manager after deployment You can optionally configure LDAP after deployment.

Procedure

1. To access the IDPA System Manager system, type the following command:

ssh -l

Deployment and Configuration

20 IDPA System Manager 18.1 Getting Started Guide

2. To switch to the root user, type the following command:

su -

3. To stop the IDPA System Manager services, type the following command:

/usr/local/dpc/bin/dpc stop

4. Edit the following file to specify the values that are specific to the environment:

/var/lib/dpc/elg/ldap.properties If the file does not exist, create it with the template file format specified below.

Note

The LDAP properties file must match the exact file name of ldap.properties and be located in the /var/lib/dpc/elg/ directory.

Note

To easily create an LDAP properties file, it is recommended that you copy the LDAP properties template file /usr/local/dpc/lib/elg/conf/ ldap.properties.example into /var/lib/dpc/elg/ ldap.properties.

For example, consider the following ldap.properties file template.

# # Copyright (c) 2017 - 2018 Dell EMC. # All rights reserved. # This software contains the intellectual property of Dell EMC or is licensed to # Dell EMC from third parties. Use of this software and the intellectual property # contained therein is expressly limited to the terms and conditions of the License # Agreement under which it is provided by or on behalf of Dell EMC. # #

#------------------------------------------------------------- ---------------- # LDAP Authentication Configuration #------------------------------------------------------------- ----------------

# Accepted values are LDAP or AD # Default empty # Required elg.ldap.type=

# LDAP server URL in the form of ldap://hostname:port # For example ldap://localhost:389/ or ldaps://localhost:636/ # Default: empty # Required elg.ldap.server.urls=

# LDAP base DN

Deployment and Configuration

Add LDAP to IDPA System Manager after deployment 21

# For example dc=dpc,dc=local # Default: empty # Required elg.ldap.base.dn=

# Admin user Base DN. user credential must be specified for LDAP binding. # Should be in base dn format, for example uid=Manager,ou=people,dc=dpc,dc=local # Default: empty # Required elg.ldap.admin.dn=

# Admin user password. user credential must be specified for LDAP binding. # Required elg.ldap.admin.password=

# Group name # Provide the group name to authorized the user to use DPC. Defaults to dp_admin # Default: dp_admin # Required elg.ldap.group.search.name=

# Group Search filter as defined in RFC 2254. # Group name to search in, relative to the base dn of the LDAP server. # Defines the part of the directory tree under which group searches should be performed. # LDAP Default: ou=group # AD Default: cn=Users # Optional ## elg.ldap.group.search.base= #

5. Save, and then close the file.

6. To assign administrator ownership on the ldap.properties file, type the following command:

chown admin:admin /var/lib/dpc/elg/ldap.properties

7. To restart IDPA System Manager and activate the change, type the following command:

/usr/local/dpc/bin/dpc start

8. Once IDPA System Manager is started, type the following command to confirm that all of the services are active:

/usr/local/dpc/bin/dpc status

9. Log in to the IDPA System Manager user interface with the username and password for the LDAP user account.

For example: https://DPC_fqdn

where DPC_fqdn is the IDPA System Manager fully qualified domain name.

Deployment and Configuration

22 IDPA System Manager 18.1 Getting Started Guide

Results

The administrator password is stored in the IDPA System Manager lockbox and removed from the LDAP properties file.

Prepare to add LDAP or AD to the IDPA System Manager system Before you add LDAP or AD, you must access the IDPA System Manager system and stop the services.

Procedure

1. Login to the IDPA System Manager system using SSH.

2. To switch to the root user, type the following command:

su -

3. To stop the IDPA System Manager services, type the following command:

/usr/local/dpc/bin/dpc stop

After you finish

Create or edit the ldap.properties file in the /var/lib/dpc/elg/ folder to specify the values that are specific to the environment.

Create an LDAP properties file Learn how to create an LDAP properties file.

The LDAP properties file must match the exact file name of ldap.properties and be located in the /var/lib/dpc/elg/ directory.

Note

To quickly create an LDAP properties file, it is recommended that you copy the LDAP properties template file located at /usr/local/dpc/lib/elg/conf/ ldap.properties.example into /var/lib/dpc/elg/ldap.properties.

The following table describes the attributes that you can specify in the LDAP properties file.

Table 4 LDAP properties file attributes

Attribute Description Examples

elg.ldap.type Required. Specifies the type of LDAP environment. Specify either LDAP or AD.

elg.ldap.type=LDAP

elg.ldap.type=AD

Deployment and Configuration

Add LDAP to IDPA System Manager after deployment 23

Table 4 LDAP properties file attributes (continued)

Attribute Description Examples

elg.ldap.server.urls Required. Specifies the URL of the server where LDAP is hosted. Type the URL in the following format:

{ldap | ldaps}:// :

elg.ldap.server.urls=ldap:// ldap.dpc.local:389/

elg.ldap.server.urls=ldaps:// ldap.dpc.local:636/

elg.ldap.base.dn Required. Specifies the domain base distinguished name of the LDAP server.

elg.ldap.base.dn=dc=dpc,dc=local

elg.ldap.admin.dn Required. Specifies the administrative username in the base distinguished name format.

For example, consider the following entry for LDAP:

uid=admin,ou=people,dc=dpc,dc=local

For example, consider the following entry for Active Directory:

cn=Administrator,dc=abc,dc=xyz,dc=co m

elg.ldap.admin.password Required. Specifies the password for the administrative user.

After you save the file and restart the IDPA System Manager services, the password is stored in the lockbox and removed from the ldap.properties file.

elg.ldap.admin.password=changeme1

elg.ldap.group.search.name Required. Specifies the user group name that contains the users who require access to IDPA System Manager.

If you do not specify this attribute, the default value of dp_admin is used.

For example, if the distinguished name of the group is cn=backupadmins, ou=groups, dc=dpc, dc=local, specify the group name

with the following entry:

elg.ldap.group.search.name=backupadm ins

elg.ldap.group.search.base Required only when the administrative user group is located in a non-default location. Specifies the administrator user group on the LDAP server.

The following list describes the default user groups:

For example:

If the group distinguished name of the user group is cn=backupadmins,ou=admins,ou=protection,d

Deployment and Configuration

24 IDPA System Manager 18.1 Getting Started Guide

Table 4 LDAP properties file attributes (continued)

Attribute Description Examples

l For Lightweight Directory Access Protocol (LDAP), the default user group is the OU=People folder.

l For Windows Active Directory (AD), the default user group is the OU=Users folder.

c=dpc,dc=local, then specify the following entry:

elg.ldap.group.search.base=ou=admins ,ou=protection

Examples of the LDAP properties file

Consider the following examples of the LDAP property file.

Example 1 Example LDAP properties file

elg.ldap.type=LDAP elg.ldap.server.urls=ldaps://dpc.local.domain.com:636/ elg.ldap.base.dn=dc=local,dc=domain,dc=com elg.ldap.admin.dn=uid=Admin,ou=People,dc=local,dc=domain,dc=com elg.ldap.admin.password=PgK17y5* elg.ldap.group.search.name=dp_admin

Example 2 Example LDAP properties file for active directory

elg.ldap.type=AD elg.ldap.server.urls=ldap://dpc.corp.domain.com:389/ elg.ldap.base.dn=dc=corp,dc=domain,dc=com elg.ldap.admin.dn=cn=Administrator,cn=Users,dc=sddc,dc=local elg.ldap.admin.password=4tHgI8fL elg.ldap.group.search.name=dp_admin

Finish adding LDAP or AD and log in to the IDPA System Manager user interface After you add the ldap.properties file, perform the following steps to complete the LDAP configuration.

Procedure

1. To assign administrator ownership on the ldap.properties file, type the following command:

chown admin:admin /var/lib/dpc/elg/ldap.properties

2. To set the protection of the ldap.properties file, type the following command:

chmod 644 /var/lib/dpc/elg/ldap.properties

Deployment and Configuration

Add LDAP to IDPA System Manager after deployment 25

3. To restart IDPA System Manager and activate the change, type the following command:

/usr/local/dpc/bin/dpc start

4. Once IDPA System Manager is started, type the following command to confirm that all of the services are active:

/usr/local/dpc/bin/dpc status

5. Launch a web browser and navigate to the IDPA System Manager address using the fully qualified domain name.

For example:

https://dpc.local.com

6. Log in to the IDPA System Manager user interface with the credentials for the LDAP user account.

Add a secure LDAP (LDAPS) certificate Secure LDAP (LDAPs) uses TLS, and therefore requires certificate-based authentication.

IDPA System Manager automatically uses the certificate authorities available within the standard Java keystore.

If the LDAP server that authenticates IDPA System Manager credentials uses a non- standard certificate authority, you must add the root certificate of the authority that signed the LDAP server certificate to the IDPA System Manager keystore.

Procedure

1. To retrieve the certificate details from the LDAP server, perform one of the following actions according to the environment:

l If the LDAPS protocol is configured on the LDAP server to use port 636, run the following command:

/usr/local/dpc/bin/dpc trust-ldaps

l If the LDAPS protocol is configured on the LDAP server with a different port, perform the following steps:

a. Open the /usr/local/dpc/bin/dpc script with a text editor.

b. Locate the following line:

LDAPS_SERVER=$1:636

c. Change the port value from 636 to the LDAPS protocol TCP port number:

LDAPS_SERVER=$1:

Deployment and Configuration

26 IDPA System Manager 18.1 Getting Started Guide

d. Save and close the /usr/local/dpc/bin/dpc script.

e. Run the following command:

/usr/local/dpc/bin/dpc trust-ldaps IP>

The certificate details are listed. The operation prompts you to continue with adding the certificate to the keystore.

2. To add the LDAP server's certificate to the IDPA System Manager Java keystore, type y in response to the prompt.

3. After the certificate is added to the keystore, restart the IDPA System Manager services using the following commands:

/usr/local/dpc/bin/dpc stop /usr/local/dpc/bin/dpc start

Checking the LDAP connection status Check the /var/log/dpc/elg/elg.log log file for messages about the LDAP connection status.

Messages that appear during LDAP connection failure If the following message appears, the LDAP client did not make a successful connection to the LDAP server:

2018-04-03 11:00:26,929 INFO localhost-startStop-1 c.e.c.c.SecurityConfig LDAP or AD Directory Service providers are not available

There are multiple issues that can prevent the LDAP client from connecting to the LDAP server. Look for error messages in the log file that provide more information.

The following table describes various error messages that appear during LDAP connection failures and their causes.

Table 5 LDAP communication messages

Message Cause

INFO localhost-startStop-1 c.e.c.c.SecurityConfig LDAP or AD Directory Service providers are not available

No LDAP or AD setting are provided or they are provided with incorrect information.

.ADLdapAuthenticationProvider Ignoring AD authentication. Verification of ldap settings failed. Failed to connect

Invalid AD configuration information.

.LdapAuthenticationProvider Ignoring LDAP authentication. Verification of ldap settings failed. Failed to connect

Invalid LDAP configuration information.

Deployment and Configuration

Checking the LDAP connection status 27

Table 5 LDAP communication messages (continued)

Message Cause

PKIX path building failed: java.security.cert.CertPathBuilderExce ption: Could not build a validated path

Validation of the LDAP server certificate could not be completed. One possible solution for this issue is to add the LDAP server certificate to the IDPA System Manager Java keystore.

Add a secure LDAP (LDAPS) certificate on page 26 provides instructions.

Messages that appear during LDAP connection success Messages similar to the following appear when the LDAP client successfully connects to the LDAP server:

c.e.c.s.a.l.LDAPSecureStorage LDAP admin credentials are secured c.e.c.s.a.l.ExternalAuthenticationProvider Type: LDAP c.e.c.s.a.l.ExternalAuthenticationProvider Base DN: dc=mydomain,dc=com c.e.c.s.a.l.ExternalAuthenticationProvider Admin user DN: cn=Administrator,dc=my-domain,dc=com c.e.c.s.a.l.ExternalAuthenticationProvider User Base: ou=people c.e.c.s.a.l.ExternalAuthenticationProvider User Search DN: (|(uid={0}) (cn={0})) c.e.c.s.a.l.ExternalAuthenticationProvider User Pattern DN: [] c.e.c.s.a.l.ExternalAuthenticationProvider Group Name: dp_admin c.e.c.s.a.l.ExternalAuthenticationProvider Group Search Base: ou=group c.e.c.s.a.l.ExternalAuthenticationProvider Group Search Filter: (&(member={0})(cn=dp_admin)) o.s.s.l.DefaultSpringSecurityContextSource URL 'ldap:// 12.3.104.150:546/dc=my-domain,dc=com', root DN is 'dc=mydomain,dc=com' 12.3.104.150:546/dc=my-domain,dc=com', root DN is 'dc=mydomain,dc=com'

Configuring Network Time Protocol IDPA System Manager utilizes a Network Time Protocol (NTP) server to update system time.

To ensure that IDPA System Manager can use single sign-on (SSO) to launch system management applications, you must configure IDPA System Manager and all monitored systems with the same NTP server and disable VMware time sync.

Configuring Network Time Protocol during IDPA System Manager OVA deployment

To configure Network Time Protocol during IDPA System Manager OVA deployment, use the NTP Server field to specify up to three Network Time Protocol (NTP) servers. Separate server names with commas.

If an NTP server is configured during deployment, VMware time sync is disabled by default.

Deployment and Configuration

28 IDPA System Manager 18.1 Getting Started Guide

Configuring Network Time Protocol after IDPA System Manager deployment If an NTP server was not configured during IDPA System Manager deployment, you must configure an NTP server after deployment

Procedure

1. Add the NTP server to the /etc/ntp.conf file.

2. Disable VMware time sync using the following command:

/usr/bin/vmware-toolbox-cmd timesync disable

3. Validate VMware time sync is disabled using the following command:

/usr/bin/vmware-toolbox-cmd timesync status

Access control Access control settings provide protection of resources against unauthorized access.

IDPA System Manager provides a single, default administrative account.

The username of this internal account is:

administrator@dpc.local The administrator@dpc.local account has all rights within the IDPA System Manager application.

On initial log in to IDPA System Manager, the user is prompted to change the password.

When LDAP is connected to IDPA System Manager, additional accounts can be enabled as IDPA System Manager administrators by adding them to the IDPA System Manager administrative group provided in the ldap.properties file.

Each of these administrator accounts added through LDAP will have full authorization and access to all IDPA System Manager functions. IDPA System Manager also supports custom dashboard settings for each administrator account.

Default accounts The following table includes the IDPA System Manager default accounts and passwords.

Table 6 Default accounts and passwords

User account Password Description

web and browser admin The admin password is set when IDPA System Manager is deployed. The default account is administrator@dpc.loca

The default user for IDPA System Manager web application administration.

Deployment and Configuration

Configuring Network Time Protocol after IDPA System Manager deployment 29

Table 6 Default accounts and passwords (continued)

User account Password Description

l and the default password is

secret.

Linux OS admin The admin password is set when IDPA System Manager is deployed. This user account is for an OVA deployment only.

The default user for IDPA System Manager OS-level administration. Only admin can log in using secure shell. After three failed login tries, the admin account is locked out for a period of five minutes.

Linux OS root The OS root password is set when IDPA System Manager is deployed.

Root operation system account. This account is for an OVA deployment only.

Note

Only the admin account can log in using a secure shell (ssh).

Certificate management Consider the following when managing certificates:

l Certificates are used for secure http access (https).

l By default, IDPA System Manager generates a default SSL self-signed certificate in the following location:

/var/lib/dpc/webcerts l The self-signed certificate is sufficient to establish an encrypted channel between

web browsers and the server.

l The self-signed certificate cannot be used for authentication.

l Consider company policies when creating certificates.

l You can create a self-signed certificate.

l You can create a certificate that is signed by a trusted certificate authority (CA) vendor.

Generate a self-sign certificate To enable a secure browser connection, create a private key and a self-sign certificate.

Procedure

1. To connect to the IDPA System Manager server as an admin user, run the following command:

ssh admin@SERVER

Deployment and Configuration

30 IDPA System Manager 18.1 Getting Started Guide

2. To change to the root user, run the following command:

su -

3. To change the directory to /var/lib/dpc/webcerts, run the following command:

cd /var/lib/dpc/webcerts

4. To generate a new certificate, run the following command:

openssl req -newkey rsa:2048 -sha256 -x509 -keyout private- key.pem -out cert.pem -nodes -days 3650

5. Set the owner and group of the new certificate files to the following:

chown admin *.pem

6. Restart NGINX.

systemctl restart nginx

7. To verify the new self-sign certificate, browse IDPA System Manager.

Generate a Certificate Signing Request To enable a secure browser connection, generate a Certificate Signing Request (CSR).

Procedure

1. To connect to the IDPA System Manager server as an admin user, type the following command:

ssh admin@SERVER

2. To change to the root user, type the following command:

su -

3. To change the directory to /var/lib/dpc/webcerts, type the following command:

cd /var/lib/dpc/webcerts

Deployment and Configuration

Generate a Certificate Signing Request 31

4. To generate a new certificate using the private key at the self-sign step, type the following command:

openssl req -newkey rsa:2048 -sha256 -key private-key.pem - out cert.csr

5. Send the cert.csr to a certificate authority (CA) vendor.

6. Replace the current cert.pem file to the certificate received from the CA vendor.

7. Restart NGINX.

systemctl restart nginx

8. To verify the new certificate, browse IDPA System Manager.

Deployment and Configuration

32 IDPA System Manager 18.1 Getting Started Guide

CHAPTER 3

Getting Started with Administration

Learn about how to get started with administering IDPA System Manager.

Note

For comprehensive information about IDPA System Manager administration, refer to the IDPA System Manager Administration Guide.

Topics include:

l Log in to IDPA System Manager.........................................................................34 l User interface.................................................................................................... 34 l Dashboards overview......................................................................................... 39 l Health overview................................................................................................. 39 l Activities overview............................................................................................. 39 l System Management overview.......................................................................... 40 l Search and recover overview.............................................................................40 l Reports overview............................................................................................... 40

Getting Started with Administration 33

Log in to IDPA System Manager To use the IDPA System Manager monitoring and management features, log in to the user interface.

Procedure

1. In a browser address bar, type https://, and then the FQDN or IP address of the IDPA System Manager server.

2. In the Username field, type a valid username. The default web browser account is:

administrator@dpc.local

3. In the Password field, type the password for the user. The web browser account password is:

secret

4. Click LOG IN.

If this is the first time you are logging in to IDPA System Manager, you are prompted to change the password.

User interface The IDPA System Manager user interface includes the following components.

Header The header includes the following components:

l System Filter buttonThis button provides you with the ability to filter the information that appears on a page by one or more systems or groups. The System Filter button appears only on the Health information pages and the Activities > Systems page.

l User menuThis menu provides the ability to change the password or log out of IDPA System Manager.

l About buttonThis button provides the ability to view IDPA System Manager version information.

Figure 1 Header

User menu The User menu provides the capability for you to perform user tasks.

To perform the following user tasks, use the User menu:

l Change a password.

Getting Started with Administration

34 IDPA System Manager 18.1 Getting Started Guide

Note

If an external LDAP or AD user is logged in to the IDPA System Manager environment, change password is not supported.

l Log out of the user interface.

Figure 2 User menu

Left menu The Left menu provides the capability for you to browse the user interface.

From the Left menu, you can access the following IDPA System Manager features:

l Dashboards

l Health

n Systems

n Alerts

n Capacity

l Activities

n Systems

n Audit

l System Management

l Search and Recovery

Note

The Search and Recovery link is disabled when a Search system is not successfully configured in IDPA System Manager.

l Reports

Note

The Reports link is disabled when an Data Protection Advisor system is not successfully configured in IDPA System Manager.

Getting Started with Administration

Left menu 35

Figure 3 Left menu

Pages IDPA System Manager presents information in dashboards and detail pages.

Dashboard pages provide at a glance insight into operational behavior.

Detail pages display focused information and provide the capability for you to perform IDPA System Manager tasks.

Master and Detail panes Most IDPA System Manager pages are composed of a Master and Detail pane.

The Master pane appears on the left side of a page and displays information in a table format. The Detail pane appears on the right side of a page and displays additional information for a selected row in a table. The Detail pane may also include buttons that you can use to perform tasks that are specific to the selected row in the table.

Getting Started with Administration

36 IDPA System Manager 18.1 Getting Started Guide

Choose another Dashboard menu The Choose another Dashboard menu provides the capability for you to select a different dashboard to view.

Note

The Choose another Dashboard menu name is always the name of the dashboard that is selected.

Figure 4 Choose another Dashboard menu

Filtering IDPA System Manager includes filtering capabilities. Filtering allows you to customize the information that appears.

The following filter types are available for you to use:

l Column filtersAppear in table headers.

l Domain FilterAppears in the Policies, Retentions, Schedules, and Datasets pages.

l System FilterAppears in the user interface header.

l Widget filtersAppear in widgets.

Column filters

Column filters can be used to filter the information that appears in tables.

Domain Filter

The Domain Filter can be used to select the domains that you want to view in the Policies, Retentions, Schedules, and Datasets pages.

System Filter

The System Filter can be used to filter by one or more groups and systems.

The System Filter appears in widgets and in the header on the following pages:

l Health > Systems

l Health > Alerts

l Health > Capacity

l Activities > Systems

To filter certain items with the System Filter, move one or more groups or systems to the Filtered By pane.

When the System Filter is enabled, the icon appears blue and enclosed in a circle.

Getting Started with Administration

Choose another Dashboard menu 37

Widget filters

Widget filters can be used to filter the information that appears in a widget.

All widgets include a System Filter.

Some widgets provide the ability for you to filter by reporting period. You can specify one of the following options:

l Last Hour

l Last 24 hours

l Last 7 days

l All Available

When you use a dashboard widget to access a page, the information that is displayed is automatically filtered based on the widget settings. In contrast, when you use the Left menu to access a page, the information that is displayed is unfiltered or is filtered based on a previously set System Filter.

Any system filters that are applied to a page, are listed in the filtered by section that appears at the top of a page.

Monitoring data is stored for 90 days. The All Available option is limited to data stored within the last 90 days.

Sort information that is displayed in tables Information that is displayed in tables can be sorted in ascending or descending order.

To sort information, click a column heading.

After you click the column heading, an arrow appears. An up-arrow indicates that the column data is sorted in ascending order. A down-arrow indicates that the column data is sorted in descending order.

Dialog boxes Dialog boxes can appear with information about a specific task. Dialog boxes can also appear for questions that require a decision.

Notification bar To inform you of completed events or to alert you of issues that may require attention, notifications may appear in a bar across the top of the IDPA System Manager interface.

Figure 5 Example notification

Getting Started with Administration

38 IDPA System Manager 18.1 Getting Started Guide

Overflow button Overflow buttons can appear within the user interface. When you click an Overflow button, a menu of available operations appears.

Figure 6 Overflow button

Dashboards overview IDPA System Manager dashboards provide at a glance insight into operational behavior.

Dashboard widgets include key performance indicators that display the following types of system information:

l Backup Activities

l Replication Activities

l Capacity

l Health

l Alerts

From dashboard widgets, you can drill down in to specific areas of interest.

Dashboard widgets include a System Filter that provides the capability for you to filter by one or more systems or groups. Some widgets allow you to change the reporting period.

There are two default dashboards:

l Exception Dashboard

l Detailed Dashboard

You can add, edit, and delete dashboards as required.

A maximum of 20 dashboards are supported.

Health overview IDPA System Manager health includes information about system status, alerts, and capacity for systems that are configured in IDPA System Manager.

This information is used to determine the health state of the system.

Capacity information appears for Avamar and Data Domain systems only.

Activities overview IDPA System Manager Activities include system activity and audit information.

System activity includes information about backup and replication activities for Avamar systems connected to IDPA System Manager.

Getting Started with Administration

Overflow button 39

Audit information includes actions and tasks that IDPA System Manager users have performed. The audit information can also be used to track the status of long running tasks.

System Management overview System Management provides the capability for you to add, edit, remove, and manage systems in IDPA System Manager.

The following list includes the system management capabilities that are available in IDPA System Manager:

l Add, edit, and delete Avamar, Data Domain, Data Protection Advisor, and Search systems.

l Organize systems in to groups, including the ability to add, edit, and delete groups.

l View system information.

l Launch the native management application for the system.

l For Avamar systems:

n View, add, edit, and delete policies, retentions, schedules, and datasets.

n Add clients and proxies to policies.

n Perform a backup of a policy.

n View existing clients that are associated with an Avamar system.

n View client backups.

l When an Avamar system is not reporting, you can reactivate messaging.

Search and recover overview IDPA System Manager integrates with Search to provide you with the ability to perform complex search and recover operations.

IDPA System Manager launches Search in a new browser window.

For information about how to use Search, refer to the Search documentation set.

Note

To take full advantage of IDPA System Manager capabilities, it is recommended that all systems that are configured in Search also be configured in IDPA System Manager.

Reports overview IDPA System Manager provides the capability for you to run 11 of the most used Data Protection Advisor reports for Avamar and Data Domain systems.

IDPA System Manager reporting features require you to have Data Protection Advisor system configured with IDPA System Manager.

For more information about Data Protection Advisor, refer to the Data Protection Advisor documentation set.

You can run, and then view these reports directly in the IDPA System Manager user interface. You can also specify the reporting period for these reports within the IDPA System Manager interface.

Getting Started with Administration

40 IDPA System Manager 18.1 Getting Started Guide

Note

To take full advantage of IDPA System Manager capabilities, it is recommended that all systems that are configured in Data Protection Advisor also be configured in IDPA System Manager.

Getting Started with Administration

Reports overview 41

Getting Started with Administration

42 IDPA System Manager 18.1 Getting Started Guide

CHAPTER 4

Adding Systems to IDPA System Manager

Learn about how to add data protection systems to IDPA System Manager.

Note

For information about editing systems and troubleshooting, refer to the IDPA System Manager Administration Guide.

Topics include:

l Add an Avamar system.......................................................................................44 l Add a Data Domain System................................................................................ 44 l Add a Data Protection Advisor system............................................................... 45 l Add a Search system......................................................................................... 46

Adding Systems to IDPA System Manager 43

Add an Avamar system To use IDPA System Manager to monitor and manage Avamar systems, add one or more Avamar systems.

Procedure

1. In the Left menu, select System Management.

2. Click .

The Add System dialog box appears.

3. In the Type list box, select Avamar.

4. Specify the following connection information:

l NameYou can specify any name that helps identify the system.

l HostnameSpecify the fully qualified domain name (FQDN) of the Avamar system.

l Avamar UsernameThe username is MCUser.

l Avamar PasswordThe password is the MCUser password.

l OS Root passwordThe password is the OS root password.

5. (Optional) To specify optional fields, click Show optional fields, and then specify the following information, as required:

l PortSpecify the Avamar MCS port. The default value is 9443. To specify the default value, leave this field blank.

Note

When you add a system to IDPA System Manager that uses a non-standard port, you must modify the IDPA System Manager firewall to allow communication with that port. The IDPA System Manager Security Configuration Guide provides instructions.

l Override MCGUI URLSpecify an alternate URL destination for the AVAMAR ADMINISTRATOR button. To override the AVAMAR ADMINISTRATOR link to direct to the AUI, type https:// /aui.

6. Click SAVE.

The System Management page refreshes and displays the new system.

Add a Data Domain System Procedure

1. In the Left menu, select System Management.

2. Click .

The Add System dialog box appears.

Adding Systems to IDPA System Manager

44 IDPA System Manager 18.1 Getting Started Guide

3. In the Type list box, select Data Domain.

4. Specify the following connection information:

l NameYou can specify any name that helps identify the system.

l HostnameSpecify the Fully Qualified Domain Name (FQDN) of the Data Domain system.

l UsernameSpecify the Data Domain administrator username.

l PasswordSpecify the Data Domain administrator password.

5. Click SAVE.

The System Management page refreshes and displays the new system.

Add a Data Protection Advisor system To use the IDPA System Manager reporting features, you must add a Data Protection Advisor system.

Procedure

1. In the Left menu, select System Management.

2. Click .

The Add System dialog box appears.

3. In the Type list box, select Data Protection Advisor.

4. Specify the following connection information:

l NameYou can specify any name that helps identify the system.

l HostnameSpecify the Fully Qualified Domain Name (FQDN) of the Data Protection Advisor system.

l UsernameThe username that is used to log in to the Data Protection Advisor user interface.

l PasswordThe password that is used to log in to the Data Protection Advisor user interface.

5. (Optional) To specify a non-default Data Protection Advisor port number, click Show optional fields, and then type the port number in the Port field.

Note

When you add a system to IDPA System Manager that uses a non-standard port, you must modify the IDPA System Manager firewall to allow communication with that port. The IDPA System Manager Security Configuration Guide provides instructions.

6. Click SAVE.

The System Management page refreshes and displays the new system.

Successfully adding a Data Protection Advisor system enables the Reports link in the Left menu. The Reports link can be used to launch Data Protection Advisor in a new browser tab.

Adding Systems to IDPA System Manager

Add a Data Protection Advisor system 45

Add a Search system To perform advanced search and recover operations, you must add a Search system.

Procedure

1. In the Left menu, select System Management.

2. Click .

The Add System dialog box appears.

3. In the Type list box, select Data Protection Search.

4. Specify the following connection information:

l NameSpecify any name that identifies the Search system.

l HostnameSpecify the fully qualified domain name (FQDN) of the Search system.

l UsernameThe username that is used to log in to the Search user interface.

l PasswordThe password that is used to log in to the Search user interface.

5. (Optional) To specify optional fields, click Show optional fields, and then specify the following information, as required:

l Admin Rest API PortSpecify the Search REST API port. The default value is 448.

l Search UI PortSpecify the Search UI port. The default value is 443.

Note

When you add a system to IDPA System Manager that uses a non-standard port, you must modify the IDPA System Manager firewall to allow communication with that port. The IDPA System Manager Security Configuration Guide provides instructions.

6. Click SAVE.

The System Management page refreshes and displays the new system.

Successfully adding a Search system enables the Search and Recovery link in the Left menu. The Search and Recovery link can be used to launch Search in a new browser tab.

Adding Systems to IDPA System Mana

Manualsnet FAQs

If you want to find out how the 18.1 Dell works, you can view and download the Dell PowerProtect 18.1 Data Protection Getting Started Guide on the Manualsnet website.

Yes, we have the Getting Started Guide for Dell 18.1 as well as other Dell manuals. All you need to do is to use our search bar and find the user manual that you are looking for.

The Getting Started Guide should include all the details that are needed to use a Dell 18.1. Full manuals and user guide PDFs can be downloaded from Manualsnet.com.

The best way to navigate the Dell PowerProtect 18.1 Data Protection Getting Started Guide is by checking the Table of Contents at the top of the page where available. This allows you to navigate a manual by jumping to the section you are looking for.

This Dell PowerProtect 18.1 Data Protection Getting Started Guide consists of sections like Table of Contents, to name a few. For easier navigation, use the Table of Contents in the upper left corner.

You can download Dell PowerProtect 18.1 Data Protection Getting Started Guide free of charge simply by clicking the “download” button in the upper right corner of any manuals page. This feature allows you to download any manual in a couple of seconds and is generally in PDF format. You can also save a manual for later by adding it to your saved documents in the user profile.

To be able to print Dell PowerProtect 18.1 Data Protection Getting Started Guide, simply download the document to your computer. Once downloaded, open the PDF file and print the Dell PowerProtect 18.1 Data Protection Getting Started Guide as you would any other document. This can usually be achieved by clicking on “File” and then “Print” from the menu bar.