Fix Readme
Abstract
xxx
Content
Readme file for: IBM SmartCloud Entry 3.1 Hyper-V Agent interim fix 2 for fix pack 3
Product/Component Release: 3.1.0.3
Update Name: 3103 interim fix 2 - hypv
Fix ID: 3.1.0.3-IBM-SCE_HYPV-IF002
Publication Date: 2014-06-18
Last modified date: 2014-06-18
Installation information
Download location
Download updates for IBM SmartCloud Entry Hyper-V Agent from the following location:
http://www.ibm.com/eserver/support/fixes/
Below is a list of components, platforms, and file names that apply to this Readme file.
Product/Component Name: | Platform: | Fix: |
---|---|---|
IBM SmartCloud Entry | Windows 64-bit, x86 Windows 64-bit, x86 | IBM_SmartCloud_Entry_Hyper-V_Agent.msi |
Prerequisites and co-requisites
Known issues
No known issues have been identified.
Known limitations
No known limitations have been identified.
Installation information
For a complete description of the required products and fixes you need prior to installation of IBM SmartCloud Entry Hyper-V Agent 3.1, please see Chapter 5 in the IBM SmartCloud Entry 3.1 Administrator Guide: IBM SmartCloud Entry Documentation
Before installing
Installing
- Download the Hyper-V Agent installer iFix (IBM SmartCloud Entry Hyper-V Agent.msi) to a directory on the Hyper-V compute node.
- Uninstall the previous Hyper-V agent.
- Install the just downloaded Hyper-V agent installer.
Update log (06/18/2014):
SmartCloud Entry 3.1 Hyper-V agent iFix based on SmartCloud Entry 3.1.0.3 includes fixes for OpenSSL vulnerabilities: CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470 and possibly CVE-2014-0076.
If you are using OpenStack controller on the SmartCloud Entry appliance, private keys, passwords and other data may have been exposed. These include, but are not limited to:
- the certificates used by the IaaSGateway
- the Keystone simpletoken used by SmartCloud Entry
- the sceagent password, which is part of the SCE cloud configuration
- passwords for any SmartCloud Entry or Keystone users that are used with the IaaSGateway via OpenStack CLI commands or APIs.
It is recommended that you generate new private keys and passwords following the directions in Appliance Fix Pack README-FIRST.txt. Additional SmartCloud Entry passwords and OpenStack keystone passwords can be changed as documented in the SmartCloud Entry Administrator Guide and the community OpenStack documentation.
Instructions to generate new private key, simple token and sceagent password:
Note: These instruction require restarting the SmartCloud Entry and OpenStack services.
- Log in to the SmartCloud Entry appliance console.
- Run 'sceappmgr'
- Select the option for Manage Authentication Tokens, then option for Generate New Keystone SimpleToken.
- Enter 1 to confirm generating a new simpletoken.
- From the Manage Authentication Tokens menu, select the option for Generate New PKI Keys.
- Enter 1 to confirm generating new PKI keys.
- After generating new keys, press Enter at each prompt until you return to the main menu.
- Select the option to Manage Passwords, then select the sceagent user. Enter the new password.
- After changing the password, exit the Password Management menu and enter 'y' when asked to restart the OpenStack services.
- Press Enter until you return to the main menu.
- Log in to the SmartCloud Entry web interface as the administrator.
- Go to the Configuration tab, select Clouds from the navigation pane and click the link for the OpenStack cloud configuration.
- Click the Edit button.
- Enter the new sceagent password in the Administrator ID password field.
- Next to the "Security certificate" label, click "Remove...".
- Click Save to save the changes.
- Log off the web interface.
- Go back to the SmartCloud Entry appliance console.
- In sceappmgr, select option 4, Manage SmartCloud Entry Services, then option 2, Start or Stop SmartCloud Entry Service.
- Select option 3 to restart SmartCloud Entry.
- Press Enter at each prompt until you exit 'sceappmgr'.
- Log in to the SmartCloud Entry web interface as the administrator.
- Go to the Configuration tab, select Clouds from the navigation pane and click the link for OpenStack cloud configuration.
- Next to the Security certificate label, click "Trust...".
- The status should change to "Connecting...". Refresh the display until the cloud status changes to OK.
Uninstallation
List of fixes
Was this topic helpful?
Document Information
Modified date:
18 July 2020
UID
isg400001840