application execution, and then closes and deregisters the port. All communications are over

aSOAP server using SSL with additional functionality to prevent man-in-the-middle, packet spoofing, packet replay, and other attacks. The randomness of the port helps prevent port scanning software from denying service to the application. The SOAP server is deployed on the remote target using the initial ports (138, 445, and 22) and then allocates another independent port for its communications back to the workstation where HP SUM is running. During shutdown of HP SUM, the SOAP server is shutdown and removed from the target server, leaving the log files.

To deploy software to remote targets on their secure networks using HP SUM, the following ports are used.

Ports

Description

 

 

Ports 445 and 137/138/139

These ports are needed to connect to the remote ADMIN$ share on target

(Port 137 is used only if you are

servers. These ports are standard ports that Windows servers use to connect to

using NetBIOS naming service.)

remote file shares. If you can connect remotely to a remote Windows file share

 

on the target server, then you have the correct ports open.

Ports 60000-60007

Random ports are used in this range to pass messages back and forth between

 

the local and remote systems using SSL. These ports are used on the system

 

running HP SUM to send data to the target server.

 

Several internal processes within HP SUM automatically use the port from 60000

 

when no other application uses it. If a port has a conflict, the manager uses the

 

next available port. HP does not guarantee that the upper limit is 60007 because

 

the limit depends on how many target devices are selected for installation.

 

 

Ports 61000-61007

These ports are used to communicate from the target server to the system running

 

HP SUM. The same mechanism is used by the remote access code as the 60000

 

ports, with the first trial port as 61000. The upper limit might not be 61007

 

when a conflict occurs.

 

In the case of IPv4-only and one NIC, the lowest available port is used by HP

 

SUM to pass information between processes on the local workstation where HP

 

SUM is executed, and the next available port is used to receive messages from

 

remote servers.

 

 

Port 62286

This port is the default for some internal communications. This port is listening

 

on the remote side if a conflict does not exist. If a conflict occurs, the next

 

available port is used.

 

 

Ports 80 or 63000-63005

The logs are passed to the target, and the logs are retrieved using an internal

 

secure web server that uses port 80 (if available) or a random port between

 

63000 and 63005, if port 80 is not available.

 

This support enables updates of the iLO firmware without the need to access

 

the host server and enables servers running VMware or other virtualization

 

platforms to update their iLO without rebooting their server or migrating their

 

virtual machines to other servers.

 

 

HP SUM is disconnected.

When either iLO or NIC firmware is updated, HP SUM loses the connection and cannot install components. If an access error occurs, HP SUM cancels the installation.

How do I recover from an installation failure?

HP SUM generates a set of debug trace logs located in the %TEMP%\hp_sum directory on Windows systems and \tmp\hp_sum on Linux systems. These files contain internal process and debug information that can help you determine HP SUM failures.

How do I reboot when running HP SUM on a Japanese version of Windows?

You can specify a message to appear before shutting down the system during a reboot operation. When using a Japanese character set and running on a Japanese version of a

42 Troubleshooting