Documentation forAccess Rights Manager

Prepare EMC file servers

Collectors for EMC file servers

Collectors for EMC file servers are dedicated Windows servers with the collector service running.

We strongly recommend that you run the Collector and the EMC file server within the same network segment, otherwise performance and routing problems may occur. The Collector Service must be installed on the same Windows server where the EMC Common Event Enabler (CEE) is installed.

The FS Logga for EMC file servers does not require a filter driver installation like on Windows file servers.

 

Set EMC Celerra/VNX file servers findable

In Active Directory registered EMC file servers have a set operatingSystem attribute. This attribute is used by the collector to detect EMC file servers and mark it as EMC file server type in the FS Logga configuration.

By default, the operating systems of the EMC file servers are set to "EMC File Server" and "EMC Celerra File Server" in the collector configuration file. If your EMC file servers use different values for the operatingSystem property, you can adjust the search parameters.

 

Configuration file

pnCollector.config.xml

 

Computer

Collector server which is configured for the EMC file server.

 

Path

%ProgramData%\Protected Networks\8MAN\cfg

If the file does not exist, copy the "template" from the following path:

old: %ProgramFiles%\Protected Networks\8MAN\etc

new: %ProgramFiles%\solarwinds\ARM\etc

 

Code

<?xml version="1.0" encoding="utf-8"?>
<config>
  <tracer>
    <emc>
      <EmcOperatingSystems>EMC File Server,EMC Celerra File Server</EmcOperatingSystems>
    </emc>
  </tracer>
</config>

 

Possible Values

Add your operatingSystem values comma-separated.

If your EMC file servers have different values for the property “operatingSystem” then insert all these values separated by comma. If no or not all EMC file servers register the property “operatingSystem” in the Active Directory leave the entry empty in the collectors configuration file. With an empty entry you will get all non-NetApp or non-Windows computer accounts from Active Directory visible for the used account.

 

Common Event Enabler (CEE)

The Common Event Enabler (CEE) for Windows, is a necessary component provided by EMC to enable monitoring.

For ARM, the CEE from version 8.6.2 or higher is required. The VNX and Celerra product series are supported.

We recommend that you install both the CEE and the collector on the same Windows server.

The Common Event Enabler (CEE) must be published to EMC, enable EMC to forward the events. We recommend to install and start the CEE before configuring the EMC. This way you can check immediately if these components are connected.

 

Installation of the CEE

The collector installation needs another EMC specific framework installation. This framework called “CEE” covers the communication between EMC Data Mover and EMC CEE framework. The actual installation documents can be found in the EMC documentation center.

 

ARM specific changes for the CEE

For optimal performance, the collector and CEE should run on the same server.

The connection between collector and CEE framework client is controlled by Windows registry entries. To apply these changes you need administrator rights. In registry editor navigate to:

[HKEY_LOCAL_MACHINE\SOFTWARE\EMC\CEE\CEPP]

 

Create or change the following entries.

[HKEY_LOCAL_MACHINE\SOFTWARE\EMC\CEE\CEPP\Audit\Configuration] Enabled=(REG_DWORD) 0x00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\EMC\CEE\CEPP\Audit\Configuration] EndPoint=(REG_SZ) "SolarWindsARM"

The new values will be active after restarting the CEE service "emc cava".

 

Creating and editing cepp.conf file

Create a file named cepp.conf with following content:

cifsserver=

surveytime=10

ft level=0

msrpcuser=<the account the CEE service is running under>

pool name=pool1 \

servers=<IP address or hostname of the Windows server running the CEE service> \

postevents=* \

option=ignore \

reqtimeout=1000 \ retrytimeout=500

 

Copy this file to the root directory of the EMC Data Mover:

$ server_file <movername> -put cepp.conf cepp.conf

 

Administer rights of the account of CEE service

For verification of the account the CEE service is running under, on the EMC you have to administer the rights of this account accordingly.

The installation of the MMC snap-in is described in the EMC document "Installing Management Applications on VNX for File".

Procedure according to the document Using the Common Event Enabler on Windows (© 2020 Dell Inc, https://www.delltechnologies.com/en-us/collaterals/unauth/technical-guides-support-information/products/storage-3/docu48055.pdf, obtained on January 29, 2020):

  1. Click Start and select Settings > Control Panel > Administrative Tools > EMC VNX File CIFS Management. The EMC VNX File CIFS Management window appears.
  2. Perform one of the following:
    1. If a Data Mover is already selected (name appears after Data Mover Management), go to step 4.
    2. If a Data Mover is not selected:
      – Right-click Data Mover Management and select Connect to Data Mover.
      – In the Select Data Mover dialog box, select a Data Mover by using one of the following methods:
      1. In the Look in: list box, select the domain in which the Data Mover that you want to manage is located and select the Data Mover from the list. Or
      1. In the Name box, type the computer name, IP address, or the NetBIOS name of the Data Mover.
  3. Double-click Data Mover Management, and double-click Data Mover Security Settings.
  4. Click User Rights Assignment. The assignable rights appear in the right pane.
  5. Double-click EMC Event Notification Bypass. The Security Policy Setting dialog box appears.
  6. Click Add. The Select Users or Groups dialog box appears.
  7. If necessary, choose the server from the Look in drop-down list. Select the user from the list box.
  8. Click Add, and then click OK to close the Select Users or Groups dialog box.
  9. Click OK to close the Security Policy Setting dialog box.
  10. In the User Rights Assignment list, double-click EMC Virus Checking. The Security Policy Setting dialog box appears.
  11. Click Add. The Select Users or Groups window appears.
  12. If necessary, choose the server from the Look in drop-down list. Select the user from the list box.
  13. Click Add, and then click OK to close the Select Users or Groups dialog box.
  14. Click OK to close the Security Policy Setting dialog box.
  15. Close the EMC VNX File CIFS Management window.

 

Starting the Common Event Publishing Agent (CEPA)

The last step is starting and checking CEPA on EMC.

  • Start
    $ server_cepp <movername> -service –start
    in which:
    <movername> = name of the Data Mover
    result:
    <movername> : done
  • Check CEPA status:
    $ server_cepp <movername> -service –status
    result:
    <movername>: CEPP Started
  • Detailed info:
    $ server_cepp <movername> -pool –info
    result:
    <movername>:

    pool_name = <pool name>

    server_required = no

    access_checks_ignored = 0

    req_timeout = 500 ms

    retry_timeout = 50 ms

    pre_events =

    post_events = CreateFile,DeleteFile, RenameFile, FileRead ….

    post_err_events =

    CEPP Servers:

    IP = <CEE IP>, state = ONLINE, vendor = Unknown