HP OpenVMS I64 Operating Systems manual Operations, Sysman

Page 8

HP OpenVMS Alpha Version 8.3 and HP OpenVMS Version 8.3-1H1 for Integrity Servers SPD 82.35.13

Users can change their password voluntarily, or the sys- tem manager can specify how frequently passwords change, along with minimum password length, and the use of randomly generated passwords.

Operations

OpenVMS allows for varying levels of privilege to be assigned to different operators. Operators can use the OpenVMS Help Message utility to receive online descriptions of error messages. In addition, system- generated messages can be routed to different terminals based on their interest to the console operators, tape li- brarians, security administrators, and system managers.

Security auditing is provided for the selective recording of security-related events. This auditing information can be directed to security operator terminals (alarms) or to the system security audit log file (audits). Each au- dit record contains the date and time of the event, the identity of the associated user process, and additional information specific to each event.

OpenVMS provides security auditing for the following events:

Login and logout

Login failures and break-in attempts

Object creation, access, deaccess, and deletion; se- lectable by use of privilege, type of access, and on individual objects

Authorization database changes

Network logical link connections for DECnet for OpenVMS, DECnet-Plus, DECwindows, IPC, and

SYSMAN

Use of identifiers or privileges

Installed image additions, deletions, and replace- ments

Volume mounts and dismounts

Use of the Network Control Program (NCP) utility

Use or failed use of individual privileges

Use of individual process control system services

System parameter changes

System time changes and recalibrations

Every security-relevant system object is labeled with the UIC of its owner along with a simple protection mask. The owner UIC consists of two fields: the user field and a group field. System objects also have a protec- tion mask that allows read, write, execute, and delete access to the object’s owner, group, privileged system users, and to all other users. The system manager can protect system objects with access control lists (ACLs)

that allow access to be granted or denied to a list of in- dividual users, groups, or identifiers. ACLs can also be used to audit access attempts to critical system objects.

OpenVMS applies full protection to the following system objects:

Common event flag clusters

Devices

Files

Group global sections

Logical name tables

Batch/print queues

Resource domains

Security classes

System global sections

ODS-2 volumes

ODS-5 volumes

OpenVMS provides optional security solutions to protect your information and communications:

OpenVMS Version 8.3-1H1 includes encryption for data confidentiality that ships as part of the op- erating system, thereby removing the requirement to license and install Encrypt separately. The EN- CRYPT and DECRYPT commands, now part of OpenVMS, support AES file encryption with 128, 192, or 256 bit keys. AES encryption is also sup- ported by BACKUP/ENCRYPT, allowing for the cre- ation of encrypted tapes and save-sets. The built-in encryption functionality is backward-compatible with file and backup tapes created by the former lay- ered product Encryption for OpenVMS. This layered product featured 56-bit Data Encryption Standard (DES), which continues to function today, allowing for the decryption of archived DES encrypted data. The AES encryption functionality supports Electronic Code Book (ECB) and Cipher Block Chaining (CBC) block modes of encryption. The Cipher Feedback (CFB) and Output Feedback (OFB) 8-bit character stream modes are also supported from the command line as well as by the programmatic APIs.

Secure Sockets Layer (SSL) for OpenVMS Alpha and Integrity server systems provides secure transfer of sensitive information over the Internet

Common Data Security Architecture (CDSA) is con- figured and initialized automatically during installa- tion and upgrades and is required for Secure Deliv- ery purposes and other security features. If you in- stall a newer version of CDSA without upgrading the base operating system, you must initalize the CDSA software, using the following command. Enter the command from an account that has both SYSPRV

8

Page 7 Page 9
Image 8
Page 7 Page 9
Contents October DescriptionUser Environment Program Development Environment Macro Compiler Posix Threads LibraryLibrarian Utility HypersortSystem Management Environment HP Availability Manager DECamdsManagement Agents for OpenVMS HP OpenVMS Management StationEnterprise Capacity and Performance Analyzer Performance Data CollectorGraphical Configuration Manager for OpenVMS Class Scheduler for CPU SchedulingSecurity Operations SysmanGovernment Security Ratings HP Utility Pricing on OpenVMS for Integrity ServersInstant Capacity TiCAP Temporary iCAPVery Large Memory VLM Features Pay per useOperating System Environment Processes and SchedulingSymmetric Multiprocessing SMP DECdtm ServicesInterprocess Communication AlphaServers Terminal Server ProductsUniversal Serial Bus Support Integrity Server SystemsPerformance Features Input/OutputExtended File Cache XFC Virtual I/O Cache Alpha onlyDisk and Tape Volumes Business and Integration TechnologiesHP OpenVMS Cluster Software Associated ProductsHP Galaxy Software Architecture on OpenVMS Alpha HP Volume Shadowing for OpenVMS HP RMS Journaling for OpenVMSHP Advanced Server for OpenVMS Alpha HP Pathworks for OpenVMS Advanced ServerHP DECram for OpenVMS HP TCP/IP Services for OpenVMSHP DECnet-Plus and HP DECnet Software Conformance to Standards Distributed Computing Environment DCE SupportSupport for OSF/Motif and X Window System Standards Standards Supported by OpenVMSInstallation Network Installation and UpgradeVirtual Media vMedia Polycenter Software InstallationVirtual Connect Wbemcim Test Package and DiagnosticsVmsinstal DECwindows Motif for OpenVMS Alpha Disk Space Requirements Layered Product Disk Space RequirementsDocumentation Memory Space RequirementsDistribution Media Ordering Information Growth ConsiderationsSource Listings Ordering OE License Upgrades Software Licenses Sold with SystemOE License Upgrade Options OpenVMS Alpha Ordering InformationAlpha CD Media and Online Documentation OpenVMS Hardcopy Documentation SetsSoftware Product Services OpenVMS Alpha and Integrity servers Source List- ings KitOpenVMS Alpha Software Products Library SPL CD Offerings Software LicensingSoftware License Information Alpha and Integrity servers Product Name Description SPDVMS System Support ServicesOpenVMS Alpha License Information Systems Supported Integrity Server Systems SupportedAlpha Systems Supported TURBOchannel Bus-Based SystemsXMI Bus-Based Systems PCI Bus-Based SystemsDssi Bus-Based Systems Modular Computing ComponentAppendix a OpenVMS for Integrity servers LAN OptionsParallel Scsi Storage Options Serial Attached Scsi SAS Storage OptionsStorage and Network Combo Cards Tape DevicesTerminals and Terminal Line Interfaces DisksPBXRW-JC Tapes Networks Storage Servers SwxnaEnterprise Storage Arrays Controllers and AdaptersSynchronous Controllers Hubs and SwitchesAsynchronous Terminal Controllers Graphics Options Defpa DapbaDapca DglpbAdapters and Switches CI OptionsMemory Channel Options MiscellaneousSoftware Warranty

OpenVMS I64 Operating Systems specifications

HP OpenVMS I64 is a robust operating system originally developed by Digital Equipment Corporation and later acquired by Hewlett-Packard. It stands for "Open Virtual Memory System" and is designed to run on Intel Itanium (I64) architecture, offering high reliability and performance for mission-critical applications.

One of the defining features of OpenVMS is its focus on availability and fault tolerance. It supports clustering, allowing multiple nodes to function together as a single system. This feature ensures that if one node fails, others can continue processing, minimizing downtime. Furthermore, OpenVMS employs a sophisticated method of process management, enabling the efficient handling of multiple tasks and processes simultaneously.

Security is a paramount characteristic of OpenVMS. The system implements a multi-layered security architecture, encompassing user authentication, access controls, and logging features that protect against unauthorized access. It also offers role-based access control, which streamlines permissions and bolsters overall system security.

OpenVMS is compatible with various programming languages and development tools, which makes it a versatile choice for developers. It supports languages like C, C++, COBOL, and Pascal, as well as development environments that facilitate the creation of sophisticated applications. Its comprehensive suite of development and debugging tools enhances productivity and ease of use for software engineers.

Another notable feature is its support for legacy applications. OpenVMS provides compatibility with older systems, allowing organizations to modernize their infrastructure without losing valuable investments in legacy code. This backward compatibility is vital for enterprises that require long-term system integrity and data consistency.

The operating system also features an advanced file system known as the Virtual Memory System (VMS) file system, which supports a variety of file types and efficient data management. The system is designed for high-performance I/O operations, which is crucial for applications that require quick data access and processing.

In terms of networking, OpenVMS supports a range of communication protocols, making it suitable for integration into complex networked environments. Its TCP/IP stack enables seamless connectivity with other platforms, facilitating collaboration in mixed environments.

Overall, HP OpenVMS I64 stands out for its reliability, security, and performance, making it an ideal choice for enterprises demanding a robust operating environment capable of handling their critical workloads. Its combination of advanced features and software support ensures that organizations can continue to innovate while relying on a stable foundation.
Top Page Image Contents