| Oracle® Operations Management Platform Frequently Asked Questions Release 2.2 Part Number E20688-01 |
|
| View PDF |
| Oracle® Operations Management Platform Frequently Asked Questions Release 2.2 Part Number E20688-01 |
|
| View PDF |
Frequently Asked Questions
Release 2.2
E20688-01
January 2011
How can Oracle Operations Management Platform ensure I keep control over my data?
How does Oracle Operations Management Platform work with my legacy platform?
How does Oracle Operations Management Platform keep events separate from other customers?
How does Oracle Operations Management Platform manage customer device passwords?
How does the security between Oracle Operations Management Portal and the Client Web Browser work?
What is the Oracle Operations Management Platform access method to my company's infrastructure?
What is Oracle Operations Management Platform?
Oracle Operations Management Platform (OM Platform) is a fully integrated Operations Management framework, including tools, processes and technology, which is hosted by Oracle. OM Platform delivers the capabilities to enable remote management services on a customer's environment. Those services can be applied to a wide range of servers, applications, and so on, at multiple locations and are particularly effective in managing the Exadata database system. OM Platform includes Oracle Enterprise Manager (OEM) server and Exadata extension.
Is Oracle Operations Management Platform only available for certain devices, applications or operating systems?
OM Platform supports a wide variety of devices, applications and operating systems. It is platform agnostic. Oracle service delivery engineers work with customers to develop methods to send information, or Oracle can create the necessary methods to connect to a technology if required.
Which languages does Oracle Operations Management Platform support?
OM Platform is designed to enable end-to-end localization by supporting multibyte characters, which means service delivery engineers can set up local language support of help desk, portal or training material. Oracle provides training material, process descriptions, and help functions in English only.
What ongoing platform maintenance is required?
None. Oracle takes care of the platform maintenance and ensures its availability and performance.
Note:
You are responsible for ensuring that your Web browser meets minimum requirements. For browser requirements, see the Operations Management Platform User's Guide.What is the Operations Management Gateway (OM Gateway)?
The monitoring solution used by OM Platform is not a hardware device although it is most commonly deployed on Oracle supplied hardware. It is proprietary software designed to enable the secure management and monitoring of networks, devices, operating systems, and applications. The OM Gateway supports any agent or telemetry source. For advanced integration, a remote API is available. The OM Gateway uses decentralized rule logic. This allows for unlimited event customization for each site and supports advanced filtering and correlation.
What is the monitoring solution?
The OM Platform monitoring solution is comprised of monitoring agents and an OM Gateway. The monitoring agents (primarily SysEDGE and SunMC adaptors) are placed on the customer's devices. They collect and pass critical information to the OM Gateway, which is most often located on the customer's site. The OM Gateway also has the capability to probe customer configuration items directly. For advanced integration, a remote API is available. (This allows for unlimited event customization for each site and supports advanced filtering and correlation.)
The OM Gateway collects key customer data (as determined during implementation), uses decentralized rule logic, and securely transports it to the OM Control Center, where it is evaluated against known and predicted thresholds. If these alerts are validated for action, then an Incident ticket is created and service delivery personnel take responsibility for managing and resolving the issue.
Customer user accounts have access to customer-specific data only. User accounts are assigned roles. Roles contain permissions that determine what can be viewed and managed within OM Platform. Roles are designed to support functional responsibilities. For example, the Change Manager role includes the permissions necessary to oversee and manage Change Management policy.
Will I have access to the reports I require, at the time I want them?
Yes. All reports are customizable and available through OM Portal 24x7.
Highest availability of the Managed Operations platform is critical to my company. How does Oracle ensure that?
The platform is hosted and maintained by expert staff using ITIL processes against strong service level agreements (SLAs) and monitored 24x7 by our managed operations data center.
Adoption of Oracle Operations Management Platform would mean a long-term investment for my company. I can't afford to switch Operations platforms frequently. How can I be sure Oracle will not stop providing this service short/mid term?
Oracle is taking on a long-term commitment with this service. Our commitment to the OM Platform includes the complete migration of our legacy Managed Operations customers.
One size doesn't fit all. My company is unique. Can I customize Oracle Operations Management Platform to my specific needs?
OM Platform is totally customizable. The monitoring solution allows interfaces with almost any platform or technology. Reports can be customized to specific needs. The platform is designed to enable end-to-end localization.
All my staff do not speak English. Will local languages be provided?
OM Platform is designed to enable end-to-end localization by supporting multibyte characters. Services are available in several of the major world languages but Oracle provides training material, process descriptions, help functions, and so on in English only.
We have a conflict with port 162. Can we change the port that the OM Gateway uses to listen for traps from 162 to another port?
Yes, we can configure the agent to use another port. To change the agent configuration, contact Oracle Sales Support or your Customer Service Manager.
What is the difference between contacts and users?
Contacts are receive-only entities and can be used when the intent is to notify only. User accounts are necessary for active participation in OM Portal.
How can managed systems be grouped?
Systems can be grouped in a variety of ways using the features of the Configuration Management System (CMS). Smart groups can contain other groups, and as such can be used for large-scale organization. Static groups are created to contain a set of CIs intended to be viewed or acted upon as a single entity. For instance, creating a group containing all Solaris OSs would enable you to update them all at once.
What OS parameters can be monitored?
Connectivity, file systems, CPU usage, and memory usage are all monitored. You can use Probes to set thresholds for actively monitored criteria and receive notifications if they are exceeded.
What hardware parameters can be monitored?
CPU temperature, Ambient temperature, Fan speed in revolutions per minute, Voltages, LEDs, Hard disks and memory are all monitored. Oracle can set up probes that include thresholds requested by customers to meet their individual requirements.
Alerts (sometimes referred to as events) are automatically-generated messages that are sent for events that were implemented as part of the standard Oracle installation or that were mutually agreed upon between the customer and Oracle to support specific customer conditions. For example, if CPU usage for a system jumps to 99%, and the monitoring threshold is 90%, then an alert will be sent.
Incident notifications are sent to registered contacts or users by e-mail or pager when an event has been validated and an Incident Ticket is created.
Where is the event stored on the OM Gateway?
All events get forwarded to Oracle in real time. Events are queued into the local database to provide reliability in the event of connectivity issues with Oracle's backend systems. The events are deleted from the local queue once they are delivered to Oracle.
How can Oracle Operations Management Platform ensure I keep control over my data?
Data security and privacy is our key concern, and we built it into the design of OM Platform. We've been able to address the most important customer concerns by implementing a distributed architecture. Software components enabling access to customer passwords (Password Vault) and devices (JumpGate) are fully segregated and controlled by the service delivery teams. Oracle has no access to customer passwords.
All inbound connections are managed and controlled through JumpGate software. Monitoring data, which is transferred to the Oracle central location for system management and reporting, only includes metadata (system performance and metrics), and does not contain any customer business data. This data is accessible to the authorized service delivery engineer only. Role-based authorization is provided at a user level, which ensures strictly segregated data views as per user permissions.
Oracle adheres to standard security practice and conducts regular audits to ensure that there is no unauthorized access to data. Also, Oracle promotes engineer security awareness through regular training.
How can delivery partners be included into the Oracle Operations Management Platform delivery infrastructure while data security and privacy are ensured?
OM Platform provides virtual data segregation through the use of a robust security model. This allows us to engage partner resources by providing them a limited view of the customer environment as needed. OM Platform also uses the Common Web Platform (CWP), Oracle's established centralized authentication model for single sign-on. Using CWP, OM Platform can quickly leverage resources anywhere within Oracle.
How does Oracle Operations Management Platform work with my legacy platform?
OM Platform is platform agnostic. Any platform can be monitored and managed, because the monitoring solution allows integration into customer's legacy systems.
How does Oracle Operations Management Platform keep events separate from other customers?
Each OM Gateway has a unique ID. A customer is associated to one or more OM Gateways. An OM Gateway can only be associated to one customer. The outbound data from the OM Gateway to Oracle are tagged with the unique OM Gateway application ID (UUID). All customers' data are identified by this unique ID, directly from the OM Gateway to Oracle's back-end systems. Furthermore, customer inventory data is tagged with a unique inventory id and this information is pushed to the local OM Gateway to ensure that the events are properly associated to the right customer (virtual data segregation).
How does Oracle Operations Management Platform manage customer device passwords?
OM Platform stores customer passwords in a secure database where engineers access them as needed. This secure database is accessible from Oracle's internal network only via a three-factor authentication. Each and every activity account vault access is captured and audited routinely.
How does the security between Oracle Operations Management Portal and the Client Web Browser work?
OM Portal uses standard security protocol based on SSL to ensure customer privacy. The site uses the Verisign certificate which is widely trusted by most browsers.
How is the OM Gateway secured?
The OM Gateway uses iptables firewall to protect itself. It allows only the desired traffic and blocks the rest. Ports are only opened upon careful security evaluation and monitoring requirements. Oracle builds the OM Gateway from base images. These images have their Operating Systems (OS) hardened, all unnecessary software uninstalled, and then the engineer runs a scan to ensure that there is no vulnerability.
Additionally, access to the OM Gateway is strictly controlled. You must connect through JumpGate, which is controlled by key fob and restricted to engineers who are assigned to the customer account.
How does Oracle Operations Management Platform manage a customer's geographically distributed infrastructure environment?
Oracle recommends placing the OM Gateway at a hub site to manage all your systems efficiently. Depending on the number of managed nodes and network reliability, you can deploy multiple OM Gateway closer to the nodes. Oracle engineers can review your network connectivity requirements and suggest connectivity options for the OM Gateway.
My company's security policy does not allow a vendor-managed firewall in their premises. Can Oracle Operations Management Platform establish site-to-site VPN with their VPN concentrator?
OM Platform can establish site-to-site VPN to customers in the following conditions.
Customer NATs their address space to public address before IPSEC policy is applied.
Customer understands and agrees to potential latency in troubleshooting process if both ends of tunnel are not owned by OM Platform.
Customer agrees to make changes on their side in a timely manner. OM Platform would not be responsible for any monitoring blackout caused by VPN failure.
My company's security policy prohibits SSH tunneling but their policy permits the use of IPSEC VPNs. Can Oracle Operations Management Platform connect via IPSEC VPN?
Yes. OM Platform offers connectivity via IPSEC VPN as long as customer NATs their address space to publicly routable addresses as part of their encryption domain.
My company has some sites with dial-on demand connectivity only. How do you manage servers at those locations?
OM Platform is not supported by dial-up. OM Platform expects to reach all managed systems from the OM Gateway by the Internet or dedicated circuit.
What is the Oracle Operations Management Platform access method to my company's infrastructure?
OM Platform uses two factor authentication to access all infrastructure devices: password and security tokens
What is the physical security of the OM Gateway?
Typically the OM Gateway is located at customer data center with customer managed systems. It would be as secure as the customer systems.
Our goal is to make Oracle products, services, and supporting documentation accessible to all users, including users that are disabled. To that end, our documentation includes features that make information available to users of assistive technology. This documentation is available in HTML format, and contains markup to facilitate access by the disabled community. Accessibility standards will continue to evolve over time, and Oracle is actively engaged with other market-leading technology vendors to address technical obstacles so that our documentation can be accessible to all of our customers. For more information, visit the Oracle Accessibility Program Web site at http://www.oracle.com/accessibility/.
Accessibility of Code Examples in Documentation
Screen readers may not always correctly read the code examples in this document. The conventions for writing code require that closing braces should appear on an otherwise empty line; however, some screen readers may not always read a line of text that consists solely of a bracket or brace.
Accessibility of Links to External Web Sites in Documentation
This documentation may contain links to Web sites of other companies or organizations that Oracle does not own or control. Oracle neither evaluates nor makes any representations regarding the accessibility of these Web sites.
Oracle customers have access to electronic support through My Oracle Support. For information, visit http://www.oracle.com/support/contact.html or visit http://www.oracle.com/accessibility/support.html if you are hearing impaired.
Operations Management Platform FAQ, Release 2.2
E20688-01
Copyright © 2010, 2011, Oracle and/or its affiliates. All rights reserved.
This software and related documentation are provided under a license agreement containing restrictions on use and disclosure and are protected by intellectual property laws. Except as expressly permitted in your license agreement or allowed by law, you may not use, copy, reproduce, translate, broadcast, modify, license, transmit, distribute, exhibit, perform, publish, or display any part, in any form, or by any means. Reverse engineering, disassembly, or decompilation of this software, unless required by law for interoperability, is prohibited.
The information contained herein is subject to change without notice and is not warranted to be error-free. If you find any errors, please report them to us in writing.
If this software or related documentation is delivered to the U.S. Government or anyone licensing it on behalf of the U.S. Government, the following notice is applicable:
U.S. GOVERNMENT RIGHTS Programs, software, databases, and related documentation and technical data delivered to U.S. Government customers are "commercial computer software" or "commercial technical data" pursuant to the applicable Federal Acquisition Regulation and agency-specific supplemental regulations. As such, the use, duplication, disclosure, modification, and adaptation shall be subject to the restrictions and license terms set forth in the applicable Government contract, and, to the extent applicable by the terms of the Government contract, the additional rights set forth in FAR 52.227-19, Commercial Computer Software License (December 2007). Oracle USA, Inc., 500 Oracle Parkway, Redwood City, CA 94065.
This software is developed for general use in a variety of information management applications. It is not developed or intended for use in any inherently dangerous applications, including applications which may create a risk of personal injury. If you use this software in dangerous applications, then you shall be responsible to take all appropriate fail-safe, backup, redundancy, and other measures to ensure the safe use of this software. Oracle Corporation and its affiliates disclaim any liability for any damages caused by use of this software in dangerous applications.
Oracle is a registered trademark of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners.
This software and documentation may provide access to or information on content, products, and services from third parties. Oracle Corporation and its affiliates are not responsible for and expressly disclaim all warranties of any kind with respect to third-party content, products, and services. Oracle Corporation and its affiliates will not be responsible for any loss, costs, or damages incurred due to your access to or use of third-party content, products, or services.
 Copyright © 2010, 2011, Oracle and/or its affiliates. All rights reserved. Legal Notices |
|