Server Management - Systems Insight Manager
1748219 Members
4503 Online
108759 Solutions
New Discussion юеВ

SIM 6.0 thru W2K8 firewall, Certificate xfer.

 
David Orwig
Regular Advisor

SIM 6.0 thru W2K8 firewall, Certificate xfer.

We have been told to use the windows 2008 firewall and have been succesful until someone deleted the VHD my previous version of SIM was running on. I'm rebuilding from scratch with SIM 6.0. When I discover a new system that has the proper settings the first attempt to connect via the SMH I get this at the bottom of the page:

"Unable to retrieve certificate from management server cmsserver.domain.com"

(I'm using "trust by certificate" Trust Mode.)

If I log on to the SMH and attempt to "Get Certificate Information" I get this error message:
"Error: Unable to obtain a certificate from server VBxx0999. Verify if the server is reachable and running Insight Manager."

If I turn off the firewall, the certificates exchange and then I can turn on the firewall again and everything else works perfectly.

Current ports open:
2381 TCP any any
2381 UDP any any
161 UDP any any
161 TCP any any
22 TCP any any
22 UDP any any
2301 TCP any any
2301 UDP any any
50000 TCP any any
50000 UDP any any

What port(s) do I need to open in order for these certificates to be installed into the monitored machines' System Management Homepage???



3 REPLIES 3
David Orwig
Regular Advisor

Re: SIM 6.0 thru W2K8 firewall, Certificate xfer.

P.S. 443 TCP any any is also open
David Orwig
Regular Advisor

Re: SIM 6.0 thru W2K8 firewall, Certificate xfer.

It's port 280 TCP.
I found this documment for SIM 5 that works. And it shows a lot more than the standard port list that you've seen for years:
http://h10018.www1.hp.com/wwsolutions/misc/hpsim-helpfiles/hpsim_5_Security.pdf
David Orwig
Regular Advisor

Re: SIM 6.0 thru W2K8 firewall, Certificate xfer.

It's port 280 TCP.