Professional Documents
Culture Documents
PPT
PPT
ACSLS 8.3
Martin Ryder
Chris Morrison
George Noble
Program Agenda
Whats New
Installation
SELinux
Enhancements, Features and Utilities
Bug Fixes
ACSLS on Solaris 11
ACSLS on Linux 6
Customer-defined
Installation Directories
Platform Support
ACSLS 8.3 is supported on seven platforms
SPARC Solaris-10 Update 10
SPARC Solaris-10 Update 11
SPARC Solaris-11 Update 1
X86 Solaris-10 Update 10
X86 Solaris-10 Update 11
X86 Solaris-11 Update 1
Solaris 10
Full functionality
ACSLS on Solaris-10 is fully functional
All physical libraries and drives
Logical Library Support
The ACSLS GUI
lib_cmd
ACSLS HA 8.2.1
Solaris 11
Full support, but without HA.
Functional ACSLS features on Solaris-11
All physical libraries and drives
Logical Library Support
The ACSLS GUI
lib_cmd
Linux 6
Logical Libraries and HA are not supported
Functional ACSLS features on Linux 6
All physical libraries and drives
The ACSLS GUI
lib_cmd
Linux 6
SCSI Library Support on Linux
Includes support for FC-attached libraries: SL150, SL500
Uses the sg driver - no mchanger driver for Linux
Linux 6
SCSI Library Support on Linux mchanger links
The /dev/mchanger* links on Linux look different than those on Solaris
The link includes a unique identifier supplied by udev
Example:
/dev/mchanger-3500104f0007a8532
10
Linux 6
SCSI Library Support on Linux install_scsi_Linux.sh
# ./install_scsi_Linux.sh
Installing SCSI device(s) for Oracle StorageTek ACSLS.
Adding ACSLS rules for udev ...
Starting udev:
OK
11
Java Support
Supported Java Versions
Java 6
Java 7
12
Browser Support
Tested Browsers with the ACSLS 8.3 GUI
Firefox 22.0
Chrome 28.0
13
Installation
14
Installation Packages
Download from the Oracle eDelivery site
Solaris Sparc: V39783-01.zip
Solaris X86:
V39784-01.zip
Linux:
15
V39785-01.zip
Installation Flexibility
Customer decides where ACSLS resides.
Solaris:
# pkg_install.sh
Should the base directory be /export/home? (y/n) n
Enter the path to the base directory [?,q] /opt/home
Linux:
# rpm ivh --prefix /opt/home STKacsls_8.3.0.i686.rpm
16
PostgreSQL Installation
PostgreSQL Versions
PostgreSQL 8.3 (Solaris)
PostgreSQL 8.4 (Linux)
17
PostgreSQL Installation
Solaris 10: PostgreSQL is already installed
PostgreSQL 8.3
18
PostgreSQL Installation
Solaris 11: Five PostgreSQL packages to install
Installed automatically with pkg_install.sh
SUNWpostgr-83-server
SUNWpostgr-83-client
SUNWpostgr-83-server-data-root .
SUNWpostgr-83-libs
SUNWopenssl-libraries
19
PostgreSQL Installation
Linux: PostgreSQL must be downloaded
from the Oracle yum repository
Setup the Yum Repository
# cd /etc/yum.repos.d
# server=public-yum.oracle.com
# repository=public-yum-repo
# wget http://$server/$repository
20
PostgreSQL Installation
Linux: Install 8 packages with yum
# yum install unixODBC
# yum install glibc.i686
# yum install pam.i686
# yum install postgresql-libs.i686
# yum install libxml2
# yum install libxml2.i686
# yum install libstdc++.i686
# yum install postgresql.i686
21
PostgreSQL Installation
Linux: Install PostgreSQL ODBC libraries
# cd /opt
# server=public-yum.oracle.com
# path=repo/OracleLinux/OL6/3/base/i386/
# pkg1=postgresql-odbc 08.04.02001.el6.i686.rpm
# wget http://$server/$path/$pkg1
# rpm -ivh $pkg1
22
PostgreSQL Installation
Linux: Install PostgreSQL Server
# pkg2=postgresql-server-8.4.11-1.el6_2.i686.rpm
# wget http://$server/$path/$pkg2
# rpm -ivh --nodeps $pkg2
23
24
installed automatically.
smce
stmf
surrogate
rmi-registry
WebLogic
ACSLS GUI
lib_cmd
25
26
SELinux
27
SELinux
Security Enhanced Linux
Initially developed by the NSA in the late 1990s
Designed to meet common security goals
Mandatory Access Control
Type enforcement
Role-based access control
Multi-level security
28
SELinux
Mandatory Access Control (MAC)
POSIX Discretionary Access Control:
user:group:other
Read:write:execute
link:unlink:swapon:quotaon:mounton:rename:setattr
execut_no_trans:entrypoint:lock:unlock:ioctl
29
SELinux
SELinux Policy Enforcement
Every process runs in a security domain
confined vs. unconfined
30
SELinux
SELinux Enforcement
To disable enforcement
# setenforce 0
To enable enforcement
# setenforce 1
To disable enforcement across reboots:
edit /etc/selinux/config:
Change SELINUX=enforcing to SELINUX=permissive
31
SELinux
Monitoring SELinux Enforcement
To view the current status of SELinux:
# sestatus
SELinux status: enabled
Current mode: enforcing
To view the actual rules that disallowed access:
# vi /var/log/audit/audit.log
32
SELinux
Custom Policy Modules
To create a policy module in response to a failed operation:
# cd /var/log/audit
# audit2allow -a -M <ModuleName>
# semodule -i <ModuleName.pp>
To unload a policy module:
# semodule -r <ModuleName>
33
SELinux
ACSLS Policy Modules
Three ACSLS policy modules are loaded
34
Enhancements,
Features, and Utilities
35
36
Library Complex
The SL8500 now lets customers define partitions
in a library complex of multiple SL8500s
connected via pass-thru ports.
37
Note:
ACSLS 8.2 supports Fibre and FICON T10000D
tape drives.
38
#ACS3_desired_startup_state_is_offline
ACS3_desired_startup_state_is_offline
40
41
status
acsdb [online|offline]
smce [online|offline]
stmf [online|offline]
surrogate [online|offline]
rmi-registry [online|offline]
acsls [online|offline|starting]
weblogic [online|offline|starting|stopping]
42
43
44
45
46
47
48
49
WWNN:
WWNN:
WWNN:
WWNN:
500104f00079f9c8
500104f000cc6a67
500104f000cc6698
500104f0007a8532
50
WWNN:
WWNN:
WWNN:
WWNN:
500104f000cc6a67
500104f0007a8532
500104f00079f9c8
500104f000cc6698
51
Bug Fixes
52
53
54
cleaning cartridges.
A volume being mounted from a reserved cell
55
56
Questions?
57
58
59