How to register VAIM Aipadmin and Aipusers application groups into EEM

Document ID : KB000031343
Last Modified Date : 14/02/2018
Show Technical Document Details

Summary:

The below steps contain a procedure used when implementing or having issues with setting up a new or existing EEM Server.

This procedure loads in the required User groups for Virtual Assurance for Infrastructure Managers (VAIM). The user groups are used to authenticate users.

Two procedures are available to accomplish this. Both procedures require VAIM to already be installed.
 

Procedure 1:

1) In 12.7.1 or later the dpmeemconfig utility can re-register all the necessary application groups for VAIM.

C:\CA\VirtualAssurance\bin>dpmeemconfig.exe -reset

C:\CA\VirtualAssurance\bin>dpmeemconfig.exe --h
usage: dpmeemconfig Options: -changepassword|-changeserver|-reset [-locale=<locale>] [-password=<pasword>]
CA EEM Configuration Utility
-help, --h                 Display help information on command line arguments
-changepassword, --chpwd   Change password of administrator user EiamAdmin
-reset, --reset            Reset EEM configuration
-changeserver, --chsvr     Change EEM server
-passwordvalue, --p=value  The password of administrator user EiamAdmin
-locale, --locale          A Java-style ISO 639/3166 code, e.g., fr_BE.
                           Supply this to override the default English locale.
                           Supply -localenative or --locale=native to use the
                           locale of the current command prompt

2) Add users via the procedure below.

3) Recycle all services.

4) Login to VAIM: https://<VAIM_Host>:8443/UI 

 

Procedure 2:

1)     Find AIPEEM.XML or AIPEEMActive.XML and AIPEEMPolicy.XML from the VAIM server. The files are located in the following directory after you installed it:

 a)      Location: CA\VirtualAssurance\InstallFiles\

 b)      Files:
AIPEEM.XML (for Native EEM Auth) OR AIPEEMActive.XML (for LDAP Auth)
AIPEEMPolicy.XML

2) Copy the files to the EEM server. 

3) Create a remote console session to the EEM host, then execute the below command in the following order

a)    \CA\SharedComponents\iTechnology\safex -h <EEMServerName> -u EiamAdmin -p <password> -f [ AIPEEM.XML | AIPEEMActive.XML ]

b)      \CA\SharedComponents\iTechnology\safex -h <EEMServerName> -u EiamAdmin -p <password> -f AIPEEMPolicy.XML 

4) Add users via the procedure below.

5) Create a remote session to the VAIM Server, then execute the below commands in a command prompt session.

        a)  dpmutil set –eiam 

eem3.png

b)  dpmutil set -sysuser

eem4.png 

6) Recycle all services.

7) Login to VAIM: https://<VAIM_Host>:8443/UI 

 

 

Add Users to AIP Application (Required for Both Procedures)

1) Launch EEM UI then login into the AIP instance in EEM - https://<EEM_Host>:5250/spin/eiam/eiam.csp

eeem1.png

 

2)  Add VAIM users

a) Click the Managed Identities tab

b) If new users are required, use the New User button. Otherwise search for existing users (for example if EEM is integrated with Active Directory)

c) Click "Add Application User Details" after filling out the form or finding your user

Note: If creating new EEM users, don't forget to change the password at the bottom of the new user form.

eemUsers.png

 

3) Add the Application user to the desired Application groups: move the required group to the Selected Users Group, then click Save

eemGroup.png