Wednesday, February 26, 2014

HP Procurve switches, enabling SSH for use in HP iMC

I wanted to configure SSH on my procurve switches, for secure communication from HP iMC.

For Procurve 4108gl, 5308xl and 5412zl;
Logon as admin, enter config:
crypto key generate ssh (to generate private key)
show crypto host-public-key (to view status)
ip ssh (to enable ssh)
show ip ssh (to view status)

For Procurve 2524;
Logon as admin, enter config:
crypto key generate (to generate private key)
show crypto host-public-key (to view status)
ip ssh (to enable ssh)
show ip ssh (to view status)

HP Procurve Switches: Enable syslog to your HP iMC server

Enable syslog to your HP iMC server on your HP Procurve switches

Although SNMP works fine, you'll be missing alerts that your switches are generating. You'll see them in the switches logs and webgui, but these messages should really show up in iMC, such as CRC or Alignment Errors.

The logging command will allow you to set a remote syslog destination.

For Procurve 2524, 4108gl, 5308xl, 5412zl:
Telnet, logon as Admin, enter config mode, and type: logging 123.456.123.23
Use your iMC server as the IP address destination

Monday, February 24, 2014

HP iMC: Configure Automatic Configuration Backups for your switches

How to configure automatic configuration backups of your switches, using HP iMC v7.0 (Intelligent Management Center).

Once you have iMC setup and it has proper access to your switches, on the menu select "Service", "Configuration Center", select "Auto Backup Plan". Click "Add" to add a new plan.

Give it a name, select the operation frequency and enter the time (format hh:mm:ss). Click "Select Device" and add your switches to the device list. Click OK and you should be all set.



Update your HP Procurve SNMP Trap Server List

Problem: I had some outdated SNMP trap servers on my procurve switches, from when I was experimenting with different monitoring software. HP Intelligent Management for some reason won't remove them in the GUI, so I had to do it via command line. Here's how to do it;

Solution: 
Telnet to the switch, login as a switch Admin and enter config mode (by typing "config" at the prompt).

"show snmp-server" will list your servers. Take note of the IP address and community listed by each.

For 5308xl and 5412zl switches:
"no snmp-server host 123.456.123.23 community public" will remove the server.

"snmp-server host 123.456.123.23 community public" will add the new server.

For 4108GL and 2524 switches:
"no snmp-server host 123.456.123.23 public" will remove the server.
"snmp-server host 123.456.123.23 public" will add the new server.