![]() You can install this software on any machine which can access your 3PAR. Here I will explain that how to download and install the HPE 3PAR StoreServ Management Console (SSMC). You can also use the Command Line Interface (CLI) options like PuTTY, 3PAR CLI etc. SSMC provides the Graphical User Interface (GUI) on the browser through which management tasks become easy for system administrators. I’m not going to discuss other potential mitigators (IPsec for example) or what you should be doing to protect your network – let’s just end on DO NOT un-tick that box.StoreServ Management Console (SSMC) is the Management Software that we use to manage the HPE 3PAR storage arrays. I will say that with it un-ticked a management console connection loads faster, in fact on a 3PAR training course you were told this would help speed things up when doing lab work. I really hope this has encouraged you to always keep that little tick box checked. This includes (at the end) the output from the ‘getuser’ command which lists all users and their access level as well as a list of currently connected users, the hostnames of their machines and IP addresses.įor an attacker this is really useful information, at this point they have a good idea of the username conventions, who they should be attacking based on access levels as well as details for host machines of administrators. Not only is the current connection username and password exposed but all the information the management client pulls back. You can see the default admin username and password I have connected with (3paradm and 3pardata) as well as the hostname (random as it’s a Windows VM just spun up now)Īs you can see the un-secure connection reveals a huge amount of information to anyone sniffing on your network. Now if we try a packet capture with the option un-ticked we see everything is transferred in clear text. This is of course the encrypted data flowing between the 3PAR and my VM – this is a good thing! With the ‘Secure Connection’ option enabled we see the 3PAR management client connect and exchange certificate data followed by what looks to be random gibberish. The VMs are communicating on an isolated subnet in Workstation to keep the TCP/IP traffic relevant. To demonstrate I’ve created a virtual machine (VM) and an instance of the 3PAR simulator in VMware Workstation. Let’s open up Wireshark and see what a packet capture reveals. Here we have a screenshot of the logon prompt, as you can see ‘Secure Connection’ option is selected. This post is specific to the traditional IMC client which is being deprecated in favour of the SSMC web client however I won’t be covering alternative clients (SSH, web, OneView etc) in this post as they aren’t relevant to the point I’m making. In this post I will demonstrate why you should not connect without this option selected. If you have used the HPE 3PAR management console (IMC) you will know that the logon prompt has a tick box for ‘Secure Connection’. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |