By enabling the attribute masking feature, you can ensure that sensitive data does not leave your data center. After enabling this feature, Cloud Connector masks sensitive data and sends the masked data to the CMC server, and the CMC UI displays these masked values of the resource attributes on all the CMC pages and apps. When Attribute Masking is enabled, the CMC APIs also contain masked data in their response.
To enable Attribute Masking, click Settings > Cloud Connector > Cloud Connector Management, scroll down to the end of the page, and then set Attribute Masking to On.
The attribute masking feature is available with HMC 1040 and later only. Data from earlier HMC versions is not masked and will continue to be displayed unmasked even when Attribute Masking is enabled.
Important:
- If a system is connected to multiple HMCs, for the attribute masking feature to work, the version of all the connected HMCs must be HMC 1040 or later.
- After you enable Attribute Masking, to see the masked values on the UI, wait for a minimum of five minutes, then reload CMC in the browser.
- The historical data that was collected before you enabled Attribute Masking remains unmasked. For example, the values for the Partition Lifecycle record, which were collected in the Logging application before you enabled Attribute Masking, are not masked on the UI.
The following table lists the attributes whose values are masked:
Attribute type | Resource | Attribute name |
Inventory | ManagedSystem | SystemName |
SystemLocation | ||
Description | ||
Hostname | ||
PrimaryIPAddress | ||
SharedProcessorPool | PoolName | |
VirtualSwitch | SwitchName | |
LogicalPartition |
PartitionName | |
ResourceMonitoringIPAddress | ||
Description | ||
VirtualIOServer |
PartitionName | |
ResourceMonitoringIPAddress | ||
Description | ||
ManagementConsole |
ManagementConsoleName | |
NetworkInterfaces.ManagementConsoleNetworkInterface.NetworkAddress | ||
IPAddress | ||
Cluster |
ClusterName | |
RepositoryDisk.PhysicalVolume.Description | ||
RepositoryDisk.PhysicalVolume.VolumeName | ||
RepositoryDisk.PhysicalVolume.StorageLabel | ||
Node.Node.HostName | ||
SharedStoragePool |
SharedPoolName | |
PhysicalVolumes.PhysicalVolume.Description | ||
PhysicalVolumes.PhysicalVolume.VolumeName | ||
PhysicalVolumes.PhysicalVolume.StorageLabel | ||
Tier |
Name | |
FailureGroups.FailureGroup.Name | ||
FailureGroups.FailureGroup.PhysicalVolumes.PhysicalVolume.Description | ||
FailureGroups.FailureGroup.PhysicalVolumes.PhysicalVolume.VolumeName | ||
FailureGroups.FailureGroup.PhysicalVolumes.PhysicalVolume.StorageLabel | ||
Performance | ManagedSystemPreferences | SystemName |
SharedStoragePoolPreferences | ClusterName | |
ManagedSystemMetrics |
SharedProcessorPool | |
SystemName | ||
LogicalPartitionMetrics |
Name | |
SystemName | ||
VirtualIOServerMetrics | Name | |
SystemName | ||
SharedStoragePoolMetrics | NodeMetrics.VIOSName | |
NodeMetrics.TierMetrics.TierName | ||
ClusterName | ||
PoolName |
The following attributes that are used by the Logging application are also masked:
- SourceCEC
- DestinationCEC
- SourceHMCIP
- DestinationHMCIP
- PartitionName
- HMCUser
- SPPName
- SourceCECName
- DestinationCECName
- SourcePrimaryMSPName
- SourceSecondaryMSPName
- DestinationPrimaryMSPName
- DestinationSecondaryMSPName
Comments
0 comments
Please sign in to leave a comment.