Вы находитесь на странице: 1из 202

Optical Manager

Element Adapter

Administration and Operations

Student guide

Release 4.0
January 2006
Course 5122AEN

NORTEL CONFIDENTIAL - FOR TRAINING PURPOSES ONLY

nortel.com/training
Copyright 2005 Nortel Networks. All rights reserved.
NORTEL CONFIDENTIAL: The information contained in this document is the property of Nortel Networks. Except as specifically authorized in
writing by Mortal Networks, the holder of this document shall not copy or otherwise reproduce, or modify, in whole or in part, this document or the
information contained herein. The holder of this document shall keep the information contained herein confidential and protect same from disclosure
and dissemination to third parties and use same solely for the training of authorized individuals.

THE INFORMATION PROVIDED HEREIN IS PROVIDED AS IS, WITHOUT WARRANTY OF ANY KIND. NORTEL NETWORKS DIS-
CLAIMS ALL WARRANTIES, EITHER EXPRESSED OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FIT-
NESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL NORTEL NETWORKS BE LIABLE FOR ANY DAMAGES WHATSOEVER,
INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, ARISING
OUT OF YOUR USE OR RELIANCE ON THIS MATERIAL, EVEN IF NORTEL NETWORKS HAVE BEEN ADVISED OF THE POSSIBILITY
OF SUCH DAMAGES.

Information subject to change without notice.


Nortel, Nortel Networks, the Globemark device, and the Nortel Networks logo are trademarks of Nortel Networks.

Sun and Solaris are trademarks of Sun Microsystems, Incorporated. UNIX is a trademark of X/Open Company Limited. Microsoft Windows and
Microsoft Excel are trademarks of Microsoft Corporation.

ii Course 5122AEN: OMEA Administration and Operations - January 2006


Course Introduction

Overview

Description
This course introduces you to the Optical Manager Element Adapter (OMEA).
Topics include
OMEA architecture and capabilities
using OMEA to monitor and administer optical network elements (NEs)
configuring and maintaining OMEA servers

Intended audience
This course is intended for all OMEA users.

Prerequisites
This course has the following prerequisites:
Course 2002 SONET Overview or relevant experience
Any Nortel optical network element OAM&P course

Objectives
After completing this course, you will be able to
explain OMEA architecture and functionality, including NE support and OMEA
integration with other Nortel optical software applications such as Optical Net-
work Manager Applications Platform
use OMEA to
view and acknowledge NE alarms
view NE performance monitoring statistics
backup and restore NE data
deliver software upgrades to NEs
configure and maintain OMEA servers
create and manage highly secured OMEA user accounts
backup and restore OMEA server data

Optical Manager Element Adapter Release 4.0 iii


References
The following documentation will be helpful for this course:

NTP 450-3121-601 Optical Manager Element Adapter Planning Guide


NTP 450-3121-201 Optical Manager Element Adapter Installation and
Configuration Guide
NTP 450-3121-301 Optical Manager Element Adapter Standard Opera-
tions Guide
NTP 450-3121-351 Optical Manager Element Adapter Security Administra-
tion Guide

iv Course 5122AEN: OMEA Administration and Operations January 2006


Contents

Introduction to Optical Manager Element Adapter 1-1


Introduction to Optical Manager Element Adapter ....................................................2-1
What is Optical Manager Element Adapter? ..................................................................2-2
Network architecture ......................................................................................................2-4
Optical Network Manager gateway ................................................................................2-8
Logging into the OMEA Desktop ..................................................................................2-10
Optical Manager Element Adapter Desktop .................................................................2-12
Main window.................................................................................................................2-14
Menus...........................................................................................................................2-16
Status bar .....................................................................................................................2-20
Navigator ......................................................................................................................2-22
Network tree .................................................................................................................2-24
Find tool........................................................................................................................2-26
Object menus ...............................................................................................................2-28
Summary ......................................................................................................................2-30

NE Surveillance and Administration 3-1


Network Element Surveillance ..................................................................................4-1
Retrieving NE properties ................................................................................................4-2
NE alarm management:
Status Bar, Network Banner and Navigator ...................................................................4-4
NE alarm management: Alarm Manager........................................................................4-6
NE alarm management: Historical Fault Browser ..........................................................4-8
NE performance management: PM Archive Browser...................................................4-10
NE performance management: PM configuration ........................................................4-14
Retrieving NE Events ...................................................................................................4-16
Summary ......................................................................................................................4-18

Network Element Backup and Restore .....................................................................5-1


Introduction to network element backup and restore .....................................................5-2
Searching for network elements.....................................................................................5-4
Configuring automated NE backups...............................................................................5-6
Locking and unlocking automated backups ...................................................................5-8
Manually backing up network element data .................................................................5-10
Restoring network element data...................................................................................5-12
Summary ......................................................................................................................5-14

Network Element Software Delivery .........................................................................6-1


Introduction to NE software delivery...............................................................................6-2
Adding NE software........................................................................................................6-4
Delivering NE software...................................................................................................6-6

Optical Manager Element Adapter Release 4.0 v


Cancelling scheduled NE software deliveries ................................................................6-8
Deleting delivered NE software ....................................................................................6-10
Summary ......................................................................................................................6-12

OMEA Configuration and Administration 7-1


Optical Manager Element Adapter Installation .........................................................8-1
Installation process overview .........................................................................................8-2
Hardware requirements..................................................................................................8-4
Operating system installation and patching....................................................................8-6
OMEA installation...........................................................................................................8-8
OMEA client installation ...............................................................................................8-10
Summary ......................................................................................................................8-12

Managing servers and spans ...................................................................................9-1


OMEA resilient servers...................................................................................................9-2
Servers, spans and controllers.......................................................................................9-4
OMEA administration parameters ..................................................................................9-6
VIewing and configuring OMEA administration parameters.........................................9-12
Retrieving OMEA server attributes...............................................................................9-14
Adding a resilient server: Overview..............................................................................9-16
Promoting a secondary server to master status...........................................................9-18
Synchronizing data across a resilient server pair.........................................................9-20
Displaying OMEA status, stopping OMEA,
and starting OMEA .......................................................................................................9-22
Adding NEs to the OMEA span ....................................................................................9-24
Editing NEs and removing NEs from the OMEA span .................................................9-26
Backing up OMEA server data .....................................................................................9-28
Restoring data on the primary OMEA server ...............................................................9-30
Summary ......................................................................................................................9-34

User Authentication ................................................................................................10-1


OMEA user authentication ...........................................................................................10-2
Centralized security......................................................................................................10-4
Configuring centralized security ...................................................................................10-6
Enabling single sign-on ................................................................................................10-8
Single sign-on: application specific considerations ....................................................10-10
Single sign-on: application specific considerations ....................................................10-11
ONM AP reach-through to OMEA single sign-on .......................................................10-12
ONM AP reach-through to OMEA single sign-on .......................................................10-13
External RADIUS server configuration overview........................................................10-14
Challenge secret ........................................................................................................10-16
Summary ....................................................................................................................10-18

User Management ..................................................................................................11-1


Introduction to user management.................................................................................11-2

vi Course 5122AEN: OMEA Administration and Operations January 2006


Administrator account management ............................................................................11-4
Planning users .............................................................................................................11-6
Resource Administration dialog ...................................................................................11-8
Creating and managing resource groups ...................................................................11-12
The User Group Administration dialog .......................................................................11-14
The User Group Administration dialog (continued) ....................................................11-16
Creating new user groups ..........................................................................................11-18
Modifying and deleting user groups ...........................................................................11-20
The User Administration dialog ..................................................................................11-22
Creating user accounts ..............................................................................................11-28
Modifying and deleting user accounts ........................................................................11-32
Setting global user account attributes ........................................................................11-34
Setting global user account password attributes........................................................11-36
The OMEA warning banner........................................................................................11-38
Session Management ................................................................................................11-40
Summary ....................................................................................................................11-42

OMEA server alarms and events ............................................................................12-1


Viewing OMEA alarms .................................................................................................12-2
The OMEA audit trail ....................................................................................................12-4
Viewing OMEA server events ......................................................................................12-6
Summary ......................................................................................................................12-8

Optical Manager Element Adapter Release 4.0 vii


viii Course 5122AEN: OMEA Administration and Operations January 2006
Optical Manager Element
Adapter

Administration and Operations

Introduction to Optical Manager Element Adapter

Student guide

Release 4.0
January 2006
Course 5122AEN

NORTEL CONFIDENTIAL - FOR TRAINING PURPOSES ONLY

nortel.com/training
1-2 Course 5122AEN: OMEA Administration and Operations January 2006
Introduction to Optical Manager Element Adapter

Overview

Description
This module introduces you to the Optical Manager Element Adapter network
management (OMEA) platform.

Objectives
After completing this module, you will be able to
explain OMEA functionality and capabilities
explain OMEA architecture and how it interacts with
NEs
Optical Network Manager Application Platform
describe the basic OMEA desktop interface and its components

Optical Manager Element Adapter Release 4.0 2-1


Introduction to Optical Manager Element Adapter

What is Optical Manager Element Adapter?

Optical Manager Element Adapter (OMEA) is a software package that runs on Sun servers
and is a key component of the overall optical network management portfolio. It provides
mediation between element management and the network element layer.
a set of features and functionality delivered through a series of decoupled, highly distrib-
uted modular components.
The OMEA management solution simplifies day-to-day network operations in a high avail-
ability, secure environment ensuring both containment of operational expenditures and busi-
ness continuity.

NE surveillance and administration


OMEA NE surveillance and administration features include (but do not apply to all NE
types):
NE navigation NE properties reporting
alarm surveillance data backup and restore
PM retrieval software delivery
event monitoring

OMEA Release 4.0 network element compatibility


OMEA Release 4.0 is compatible with the following network elements:
OM 5100 and 5200 release 6.1 and release 6.2
OME 6100 release 1 and release 2
OME 6500 release 1.1, 1.2.X, 2.0 and 1.5 Broad Band (BB)
CPL release 1.0 and 2.0

ONM AP mediation device


OMEA Release 4.0 is compatible with Applications Platform Releases 10.1 and 11
(requires AP 11 patch A). (ONM AP is an optional application.) Not all OMEA Release 4
features are supported in ONM AP Release 10.1. See your AP documentation for details.
Configuring OMEA as a controller in ONM AP, provides AP and its applications access to
the NEs managed by OMEA. AP users can also use OMEA applications from their AP ses-
sions.

OMEA configuration and management tools


OMEA is packaged with a complete set of OMEA configuration and surveillance tools:
OMEA configuration tools OMEA baackup and restore
tools
user administration and security
tools OMEA surveillance tools

2-2 Course 5122AEN: OMEA Administration and Operations January 2006


What is Optical Manager Element Adapter?

What is Optical Manager Element Adapter?

Optical Network Manager


Applications Platform

ONM AP
desktop client Optional

Optical Network Manager


Element Adapter

OMEA
desktop client
(Sun or PC)

NEs managed by
OMEA

Nortel Confidential - for training purposes only 2-3

Optical Manager Element Adapter Release 4.0 2-3


Introduction to Optical Manager Element Adapter

Network architecture

OMEA network architecture can be divided into three tiers:


OMEA client desktop(s)
OMEA platform (server)
network element(s)
The client is connected to the OMEA server via the OMEA desktop. All user commands,
requests and modifications are communicated via the desktop client to the
OMEA platform. They are then processed and passed on to NEs as required.
An OMEA client can be any of the following:
PC or an OMEA GUI server
a session running on the OMEA server
OMEA GUI server

OMEA resilient server pair configuration


OMEA can be deployed in a resilient configuration. This two-node, primary-secondary
server arrangement ensures that OMEA is always available to manage the
optical network.
Both the primary and secondary servers communicate with network elements for data collec-
tion. Deploying OMEA in a resilient configuration also increases the number of user ses-
sions that OMEA can host
The primary and secondary servers operate in a peer-to-peer arrangement. Data across the
resilient server pair is synchronized automatically, so that both server always present the
same NE data and OMEA operational parameters to their clients.
You may also choose to deploy OMEA on a single server in a stand-alone configuration.

OMEA communications
OMEA servers can be geographically remote from one another. They use an Ethernet trans-
mission control protocol/Internet protocol (TCP/IP) local area network (LAN) or a wide area
network (WAN) connection to the network elements, each other and ONM AP.

TMF814 interface support


The TMF814 Interface is the Nortel implementation of the TMF814 standard. It is available
as an add-on software application to the Optical Network Manager (ONM) Applications
Platform or OMEA.
It allows service providers to implement a programmatic interface between the ONM and
their various NMS and OSS tools.

2-4 Course 5122AEN: OMEA Administration and Operations January 2006


Network architecture

Network architecture
OMEA resilient server pair

OMEA OMEA
primary second-
server ary

OMEA OMEA
desktop clients desktop clients

NEs managed by OMEA

Nortel Confidential - for training purposes only 2-5

Optical Manager Element Adapter Release 4.0 2-5


Introduction to Optical Manager Element Adapter

Network architecture (continued)

Server co-residency
Other Nortel applications can be installed on OMEA servers.
Note: Co-residency is limited to only two software packages as either (OMEA & OV) or (OMEA &
OMgr) or (OMEA & TMF814) installed on the same platform.

OMEA co-resident with OMgr


OMEA can be installed co-resident with Optical Manager (OMgr) 3.3 as a standalone server
or as a redundant pair of servers that operate on two separate workstations (Only available in
ONM AP 11).The co-residency is hardware-based (same platform). OMEA and OMgr are
not bundled together in the same software package, and are not interlinked.
Each bundle and process are working independently, users and administrators will continue
to use the OMEA and OMgr as they would be in a non co-resident mode. Co-residency is
transparent to users. ONM AP 11 is required to enable the monitoring of OMEA and OMgr
from the same platform. As OMEA and OMgr are considered as controllers from an ONM
AP perspective, a modification was required in ONM AP to support this new dual controller
feature.

OMEA co-resident with OV


The Optical Viewer is an optional troubleshooting tool for Optical Manager Element
Adapter (OMEA) or ONM Applications Platform (ONM AP) managed network elements.
The Optical Viewer facilitates troubleshooting by enabling administrators to view a graphi-
cal representation of the configurations, wavelengths, or service paths that include a selected
network element.

OMEA co-resident with TMF814


The TMF814 Interface is the Nortel Networks implementation of the TMF814 standard. It is
available as an add-on software application to the Optical Network Manager (ONM) Appli-
cations Platform or OMEA.
OMEA can be installed co-resident with TMF814 Release 3.0 as a standalone server or as a
redundant pair of servers that operate on two separate workstations. Co-residency is trans-
parent to the users.

2-6 Course 5122AEN: OMEA Administration and Operations January 2006


Network architecture

Network architecture (continued)


OMEA resilient server pair

OMEA OMEA
primary secondary
server server

OMEA OMEA
desktop clients desktop clients

NEs managed by OMEA

Nortel Confidential - for training purposes only 2-7

Optical Manager Element Adapter Release 4.0 2-7


Introduction to Optical Manager Element Adapter

Optical Network Manager gateway

At the mediation level, OMEAs main function is to act as an element management system
(EMS) for the Applications Platform (AP). In this configuration, OMEA acts as a transparent
unified mediation device. As the server receives incoming information, it passes that infor-
mation on to AP.
A variety of information can be passed through to the Optical Network Manager AP, includ-
ing
NE information - name, ID, type
alarm information - on-demand or real-time forwarding of all NE and OMEA server
alarms
configuration changes - addition, deletion or modification of NEs being managed by
OMEA
endpoint information and topology - data that can be used by Optical Services
Provisioner (OSP), Optical Viewer (OV) and TMF
resilient pair information - fault/resource information when master and slave state of the
OMEA servers is switched

OMEA also supports the following Optical Network Manager AP features:


reach through to OMEA - OMEA can be launched directly from
Optical Network Manager AP
Reach through to NE - provides one of the following depending on what you choose
a direct command line login to a network element
a network element GUI launch
(for example, for the OPTera Metro 5000 network elements it will launch SMI)
AP 11.0 (with patch A) provides in-context launching of Site Manager sub-applications such
as Shelf level view.
The Optical Network Manager AP gateway makes it possible for administrators to manage
the entire network from a single platform.

2-8 Course 5122AEN: OMEA Administration and Operations January 2006


Optical Network Manager gateway

Optical Network Manager gateway

Optical Network Manager


Applications Platform

ONM AP
desktop client

Optical Network Manager


Element Adapter

NEs managed by
OMEA

Nortel Confidential - for training purposes only 2-9

Optical Manager Element Adapter Release 4.0 2-9


Introduction to Optical Manager Element Adapter

Logging into the OMEA Desktop

OMEA client desktop is provided in software packages that run on different platforms
Windows PC Desktop client
UNIX client that runs on SUN workstations
OMEA GUI server

Logging into the OMEA Windows desktop client


Logging into OMEA is a very simple procedure:
1. Launch the OMEA Desktop from Windows Start Menu.
2. When the Server Address window appears, enter the host name or IP address of the
OMEA server you want to log into.
3. In the Login screen, enter your user name and password.
The OMEA desktop opens, and you are logged into the OMEA server.

Logging into OMEA from Optical Network Manager AP


1. Log in to the Optical Network Manager AP server.
2. Open the GNB.
3. Right click on the OMEA server to launch the object menu.
4. From the object menu, select Auto-login to <server name>.
5. The Desktop window opens and then the server address window opens.
Follow the directions for logging into OMEA.

2-10 Course 5122AEN: OMEA Administration and Operations January 2006


Logging into the OMEA Desktop

Logging into the OMEA Desktop

Nortel Confidential - for training purposes only 2-11

Optical Manager Element Adapter Release 4.0 2-11


Introduction to Optical Manager Element Adapter

Optical Manager Element Adapter Desktop

The OMEA Desktop is a unified graphical user interface (GUI) that allows you to
monitor and administer optical network elements (NEs)
configure OMEA and monitor OMEA performance

Network Element surveillance and administration features


alarm retrieval, acknowledgement of current alarms and the ability to unacknowledge
acknowledged alarms
retrieval of historical alarms
retrieval of NE events
configure performance monitoring (PM) thresholds and retrieval PM data
launch NE native craft tools for full configuration and surveillance capabilities

(AP 11.0 (with patch A) provides in-context launching of Site Manager sub-applications
such as Shelf level view.)
backup and restore NE data
deliver new software releases to NEs
Note: Not all NEs and their releases are supported by these features. See the Optical Manager
Element Adapter Planning Guide 450-3121-601, for a complete list of NEs, their releases,
and the OMEA features that support them.

OMEA configuration and surveillance features


add network elements to an OMEA server span
manage the access OMEA users have to network elements and OMEA features
monitor OMEA user sessions
configure OMEA operational parameters
configure OMEA resilient networking
configure OMEA - AP reach through
backup and restore OMEA operational data

2-12 Course 5122AEN: OMEA Administration and Operations January 2006


Optical Manager Element Adapter Desktop

Optical Manager Element Adapter Desktop

Nortel Confidential - for training purposes only 2-13

Optical Manager Element Adapter Release 4.0 2-13


Introduction to Optical Manager Element Adapter

Main window

When you have successfully logged in, the main window appears. This is the base of opera-
tions for all users. The main window consists of the following elements:
menu
display area
Navigator
status bar

2-14 Course 5122AEN: OMEA Administration and Operations January 2006


Main window

Main Window

Navigator Menu

Display area

Status bar

Nortel Confidential - for training purposes only 2-15

Optical Manager Element Adapter Release 4.0 2-15


Introduction to Optical Manager Element Adapter

Menus

The OMEA Desktop menus provide access to OMEA applications. The menus are organized
into logical groups to support the common functions carried out by NE and OMEA adminis-
trators.
Note: The ability to launch certain applications depends on user account access privileges.

File
The Logout command allows you to log out without closing the OMEA Desktop window.
The Login Command allows you to login into an OMEA server. The Find command allows
you to search for OMEA resources.

Fault
The Fault Menu launches Alarm Manager, Historical Fault Browser and the Network
Banner which shows a summary of current NE alarms.

Configuration
The Manage NE feature allows OMEA administrators to add NEs to the OMEA span of con-
trol. The Managed NE Summary feature lists all of the NEs currently in the OMEA span of
control. The NE Properties feature reports specific information about NEs, such as TID, IP
address and mode of operation.

Performance
The Performance menu launches features that allow you to set NE PM thresholds and mon-
itor PM statistics.

Security
The Security menu allows you to launch features that manage OMEA users, control users
access to OMEA and Network Elements.

Tools
The Tools features allow you to launch the native craft tools for any network element that is
currently in the OMEA server span. The network element must be selected in
the Navigator before you can launch the craft tool for that NE from the Tools menu.

2-16 Course 5122AEN: OMEA Administration and Operations January 2006


Menus

Menus

Nortel Confidential - for training purposes only 2-17

Optical Manager Element Adapter Release 4.0 2-17


Introduction to Optical Manager Element Adapter

Menus (continued)

Administration
The Administration menu lists features for administering OMEA and NEs in the OMEA
span.

OMEA administration
The following are OMEA administration features:
The AP Gateway Management feature allows you to set up communications with an Opti-
cal Network Manager Applications Gateway server. This allows OMEA to pass collected
NE data to AP, which reports on those NEs.
The OMEA Administration feature allows OMEA administrators to set OMEA operational
parameters. Examples of these include
the maximum number of events that the OMEA server collects
the maximum number of NEs (of a specific type) that PM collection is enabled for
the maximum length of time that PM data is retained
the maximum number of desktop sessions the OMEA server can open
(only when the craft tool is installed co-resident with OMEA)
The Server Administration feature allows OMEA administrators to configure OMEA resil-
ient servers and retrieve resiliency data about them.

NE administration
The Backup and Restore features backs up NE operational data on the OMEA server and
allows you to restore it to the NE as required.
The Software Delivery feature allows you to deliver NE software to NEs from the OMEA
server.

Window
The features in the Window menu allow you to
close OMEA windows that are currently open
arrange open windows within the desktop
select a window from among currently open windows

Help
The features in the Help menu allow you to
launch OMEA on-line documentation
display the OMEA software release the server is running

2-18 Course 5122AEN: OMEA Administration and Operations January 2006


Menus

Menus (continued)

Nortel Confidential - for training purposes only 2-19

Optical Manager Element Adapter Release 4.0 2-19


Introduction to Optical Manager Element Adapter

Status bar

The status bar consists of three areas:


NE/server loss of association (LOA) indicator
alarm counts area
messages area

NE/server LOA indicator


This area contains a box with a question mark. If OMEA loses connectivity with a network
element or server, this box turns blue.

Alarm counts area


The alarm counts area displays the total number of active alarms by severity for all NEs and
for all servers.

Messages area
This area contains a historical list of commands executed and applications launched in
OMEA. The summary messages indicate if an action is still processing, and whether the
action was successful. A drop-down list can be used to show up to 20 previous messages.

2-20 Course 5122AEN: OMEA Administration and Operations January 2006


Status bar

Status bar

Previous messages list

NE/server LOA indicator Alarm count area Message area

Nortel Confidential - for training purposes only 2-21

Optical Manager Element Adapter Release 4.0 2-21


Introduction to Optical Manager Element Adapter

Navigator

The Navigator provides several important functions:


It displays the network as a hierarchy of resources that can be viewed individually or as a
group.
It supports object menus, from which applications specific to a certain resource can be
launched.
It provides a context for applications launched from the menu bar.
The Navigator opens at login. It can be minimized or closed at any time, and re-opened by
clicking on the Navigator icon in the status bar, or by clicking Window -> Show Navigator.
There are two main areas in the Navigator:
network tree
Find tool

2-22 Course 5122AEN: OMEA Administration and Operations January 2006


Navigator

Navigator

Network Tree

Find tool

Nortel Confidential - for training purposes only 2-23

Optical Manager Element Adapter Release 4.0 2-23


Introduction to Optical Manager Element Adapter

Network tree

The network tree provides a hierarchical view of the resources in your network.
The hierarchy consists of the following levels:
network - a single instance representing the entire managed network
server - identifies the server hosting the desktop session
span - always represented as OMEA 1, this is an abstraction of the OMEA servers and all
the NEs that are managed by OMEA
controller - each controller represents a server in the OMEA span
folder - a logical grouping of NEs
network elements - managed resources
alarm count - alarm information consists of the following objects, within a rectangle:
a color that indicates the highest severity alarms
a number, indicating the number of highest severity alarms associated with the adja-
cent object
a letter, indicating the highest severity of alarm
a plus sign, if present, indicated that additional alarms of lower severity also exist for
the associated object

Note: If OMEA loses communication with a network resource, the gray box representing that
network resource in the network tree becomes blue with a question mark. When communi-
cation is re-established, the icon becomes gray again.

2-24 Course 5122AEN: OMEA Administration and Operations January 2006


Network tree

Network tree
Network tree

Server
Span

Controller

Folder

Alarms count

Network elements

Nortel Confidential - for training purposes only 2-25

Optical Manager Element Adapter Release 4.0 2-25


Introduction to Optical Manager Element Adapter

Find tool

If you do not know the location of a resource in the Network Tree, you can display that
resource in the Network Tree, using the Find tool. The Find tool can be launched either from
the Navigator or the File menu.

Find tool launch

You can limit your search to a specific type of resource by selecting the resource type in the
Search for list.

To display the source in the Navigator


1. Select the resource in the Search Results list of the Find dialog.
2. Click the Launch in Navigator button in the Find dialog

2-26 Course 5122AEN: OMEA Administration and Operations January 2006


Find tool

Find tool

Nortel Confidential - for training purposes only 2-27

Optical Manager Element Adapter Release 4.0 2-27


Introduction to Optical Manager Element Adapter

Object menus

Context-sensitive object menus launched from objects in the Navigator are a quick way to
open OMEA applications without having to go to the menu bar.
When you right-click on an object in the Navigator, an object menu opens. The contents of
the menu depend on the type of resource selected, and your access privileges.

2-28 Course 5122AEN: OMEA Administration and Operations January 2006


Object menus

Object menus

Nortel Confidential - for training purposes only 2-29

Optical Manager Element Adapter Release 4.0 2-29


Introduction to Optical Manager Element Adapter

Summary

In this module, you gained a high-level understanding of


OMEA functionality and capabilities
OMEA architecture and how it interacts with
NEs
Optical Network Manager Application Platform
the OMEA desktop interface and its components

The remainder of this course consists of two sections:


Network Element surveillance and administration.

This section explains OMEAs NE surveillance and administration capability and is


intended for all OMEA users.
OMEA configuration and surveillance

This section explains how to configure OMEA, OMEA users, and manage OMEA on an
ongoing basis and is aimed specifically at individuals who will be responsible for config-
uring and managing OMEA installations.

2-30 Course 5122AEN: OMEA Administration and Operations January 2006


Optical Manager Element
Adapter

Administration and Operations

NE Surveillance and Administration

Student course notes

Release 4.0
January 2006
Course 5122AEN

NORTEL CONFIDENTIAL - FOR TRAINING PURPOSES ONLY

nortel.com/training
3-2 Course 5122AEN: OMEA Administration and Operations January 2006
Network Element Surveillance

Overview

Description
This module provides you with an overview of OMEAs NE management features.

Objectives
After completing this unit and its corresponding activities, you will be able to
retrieve a list of all NEs in the OMEA server span, and basic data for each NE
use the Navigator and Network Banner to summarize alarms for all NEs in the
OMEA server span
use the Alarm Manager application to view detailed information on NE alarms
and acknowledge NE alarms
use the Historical Fault Browser (HFB) to review the fault history of NEs in the
OMEA server span
view NE performance monitoring data and configure performance monitoring
data collection intervals
retrieve NE logs (events) using the OMEA Event Browser

Optical Manager Element Adapter Release 4.0 4-1


Network Element Surveillance

Retrieving NE properties

The NE Properties tool allows you to view a list of all the NEs in the OMEA span, as well
as summary information for each NE.
To open the NE properties tool, click Configuration -> NE Properties.
The NE Properties dialog displays the following data for each retrieved NE:
NE name TID
Shelf Type Software Version
Network Name Mode
Site Name AP NE ID
Status TL1 Port
NE ID NE Type
IP Address Subslot

This data appears as a record for each retrieved NE in the Object(s) found table.
The columns in this list can be moved horizontally by dragging the column heading to the
desired location. Records can be sorted on any column, in descending or ascending order.
You can retrieve data for specific NEs by selecting a combination of the following retrieval
criteria:
Network Element name Network Name
NE Type Software Version
TID
IP Address

Status

Mode

4-2 Course 5122AEN: OMEA Administration and Operations January 2006


Retrieving NE properties

Retrieving NE properties

Nortel Confidential - for training purposes only 4-3

Optical Manager Element Adapter Release 4.0 4-3


Network Element Surveillance

NE alarm management:
Status Bar, Network Banner and Navigator

Summary counts of current alarms are reported in the Status Bar, Network Banner and
Navigator. All three of these objects report alarm severity using color and character codes:

Alarm color
red critical or major alarms
orange minor alarms
yellow warning alarms
background color no alarms

Alarm severity letters


C
Critical alarms, normally service affecting, require immediate attention
M
Major alarms, can be service affecting, require prompt attention
m
minor alarms, not service affecting, must be understood to determine if action is required
w
warnings, not service affecting, for information only
Note: Alarms of an unknown severity have no letter. A plus sign (+) in the Navigator indicates
that there are alarms of a lower severity in addition to the highest severity level indicated
by the color and letter.

Navigator
The Navigator shows alarm counts for each resource in the Resource Tree, including
OMEA servers. Alarm counts are updated when new alarms are raised or cleared.
Status Bar
The alarm counts in the Status Bar include alarm summaries for all NEs and OMEA servers
in the OMEA span. Alarm counts are automatically updated when new alarms are raised or
cleared.
Network Banner
The Network Banner provides a summary of all NE and OMEA server alarms in the OMEA
span. The Network Banner can be moved outside the main OMEA window, and can remain
on your computer desktop when the OMEA window is reduced to an icon. Alarm counts are
automatically updated when new alarms are raised or cleared.

4-4 Course 5122AEN: OMEA Administration and Operations January 2006


NE alarm management: Status Bar, Network Banner and Navigator

NE alarm management:
Status Bar, Network Banner and Navigator

Alarm count summary


for each resource in the
OMEA server span

Alarm count summaries


for all resources in the
OMEA server span

Status Bar

Nortel Confidential - for training purposes only 4-5

Optical Manager Element Adapter Release 4.0 4-5


Network Element Surveillance

NE alarm management: Alarm Manager

Alarm Manager is an OMEA application that allows you to view NE alarm details for NEs
in the OMEA server span. The Alarm Manager can be launched from the Fault menu, or
from an NE in the Navigator.
You can selectively retrieve alarms for a specific NE or all of the NEs in the OMEA server
span (filtering on resources). Alarms can also be selectively retrieved on the basis of alarm
type.

You can also selectively retrieve alarms on the basis of alarm severity.

alarms found table


A list of retrieved alarms appears in the alarm(s) found table.
You can order the sequence of columns in this list by dragging them (horizontally) to the
desired location.
Sort the alarm records on any column by double-clicking the column heading.

Ascending sort Descending sort No sorting on this column

Display alarm details, by selecting the alarm in the alarm(s) found table. The details appear
in the Alarm details section of the dialog. (See opposite page.)

Acknowledging alarms
You can acknowledge an NE alarm by
right-clicking the alarm (in the alarm(s)
found table) and selecting Acknowl-
edge in the resulting object menu.

4-6 Course 5122AEN: OMEA Administration and Operations January 2006


NE alarm management: Alarm Manager

NE alarm management: Alarm Manager

Nortel Confidential - for training purposes only 4-7

Optical Manager Element Adapter Release 4.0 4-7


Network Element Surveillance

NE alarm management: Historical Fault Browser

The Historical Fault Browser (HFB) reports alarm histories for network elements in the
OMEA span. The HFB can also be configured to retrieve active alarms.
The HFB database can contain a maximum of 500 000 alarms.

Retrieval Criteria
Historical alarm records can be retrieved on the basis of
network element name
alarm type
alarm severity
alarm timing (time-raised and/or time-cleared)

Historical alarm reports


Each historical alarm that meets your retrieval criteria is reported as a record in the Results
table of the HFB window. Each record is comprised of the following fields:
Status Service Subslot
Name Time raised Port
Unit Time cleared
Alarm Type Alarm ID
Probable Cause Frame
Reason Shelf
Severity Slot

You can set the field order (left to right) by dragging field headings to where you want them.
Alarms can be sorted (in ascending or descending order) on any field, and it is possible to
perform nested sorts.

Alarm histories appearing in the HFB window can be exported to comma-separated variable
(CSV) text files. Theses files can then be opened in spreadsheet programs, and database
reporting tools for further manipulation and analysis.

4-8 Course 5122AEN: OMEA Administration and Operations January 2006


NE alarm management: Historical Fault Browser

NE alarm management: Historical Fault Browser

Nortel Confidential - for training purposes only 4-9

Optical Manager Element Adapter Release 4.0 4-9


Network Element Surveillance

NE performance management: PM Archive Browser

NEs can collect a wide range of performance measurements (PMs). When NEs are managed
by OMEA, these PMs are logged and can be accessed through OMEAs PM Archive
Browser.
PM collection must be enabled for an NE in order for OMEA to collect and report PM statis-
tics for the NE. The OMEA administrator configures the maximum number of NEs for
which OMEA can collect PM data. The OMEA administrator also configures OMEA to
retain NE PM data for a period of time ranging between one and 31 days. A major factor in
deciding this time interval is the availability of free disk space on the OMEA server.
The PM Archive Browser can also collect and display optical measurements (OM) data for
those NEs which support OM collection.
To open the PM archive browser application, click Performance -> PM Archive Browser,
or right-click an NE in the Navigator, and select PM Archive Browser in the resulting
object menu.

The Objects Found list


PM parameters are reported in the Object(s) found table. Each record in this table reports an
NE facility PM parameter. The parameters reported for a facility (AID) depend on the facil-
ity type. Parameters are measured over time periods (bins) of fifteen minutes or one day.
Each record contains additional information about the PM parameter such as the starting
time of the bin.
You can set the field order (left to right) by dragging field headings to where you want them.
PM records can be sorted (in ascending or descending order) on any field.

4-10 Course 5122AEN: OMEA Administration and Operations January 2006


NE performance management: PM Archive Browser

NE performance management: PM Archive Browser

Nortel Confidential - for training purposes only 4-11

Optical Manager Element Adapter Release 4.0 4-11


Network Element Surveillance

NE performance management: PM Archive Browser


(continued)

Retrieval criteria
You can choose which PM records to retrieve by selecting retrieval criteria prior to clicking
the Retrieve button. The following retrieval criteria are available, and can be used in combi-
nation with each other:

Network Element
The Network Element Criteria allows you to retrieve PMs for all NEs in the OMEA server
span or a specific NE.

PM/OM
When an NE that supports optical mea-
surements is selected in the
Network Element field, the PM/OM field
is enabled.

This field allows you to retrieve


both PMs and OMs for that NE (All)
PMs only
OMs only

Bin Type
The Bin Type criteria allows you to
retrieve PM records based on the time
interval over which the PM parameter
was measured. The All setting retrieves
both fifteen minute and one day bins.

From: / To:
Use the From: / To: fields to specify the time span during which the PM parameters are col-
lected. For example, if you specify a time of a few hours and a fifteen minute bin, a record
for each fifteen minute bin during From: / To: time period will be reported.

Additional Criteria
PM record retrieval can be filtered
according to three additional criteria
which can assume any one of these val-
ues:
Note: PMs are stored on the OMEA
server(s) for up to 31 days.

4-12 Course 5122AEN: OMEA Administration and Operations January 2006


NE performance management: PM Archive Browser

NE performance management: PM Archive Browser

Nortel Confidential - for training purposes only 4-13

Optical Manager Element Adapter Release 4.0 4-13


Network Element Surveillance

NE performance management: PM configuration

The PM Configuration dialog allows you to enable or disable 15 minute PM collection.


By default, 15 minute PM collection is disabled. 15 minute PM collection can is set on a per-
NE basis.
To launch the PM Configuration dialog, click Performance ->PM Configuration.
15 minute PM collection is controlled through dialog that is launched from the PM Configu-
ration dialog.

4-14 Course 5122AEN: OMEA Administration and Operations January 2006


NE performance management: PM configuration

NE performance management: PM configuration

Nortel Confidential - for training purposes only 4-15

Optical Manager Element Adapter Release 4.0 4-15


Network Element Surveillance

Retrieving NE Events

The Event Browser allows you to view events and logs generated by NEs and OMEA
server(s). You can apply filters, retrieve the list of events, and view details for a specific
event.
To open the Event Browser, click Security -> Event Browser.

The Objects Found table


NE Events are reported in the Object(s) found table. Each record in this list reports an NE
event. Each record contains additional information about the event such as time, severity and
reason for the event.
You can set the field order (left to right) by dragging field headings to where you want them.
PM records can be sorted (in ascending or descending order) on any field.
Note: System events and logs are stored on the OMEA server(s) for up to 31 days, up to half a
million records.

Retrieval criteria
You can choose which events to retrieve by select-
ing retrieval criteria prior to clicking the Retrieve
button. The following retrieval criteria are avail-
able, and can be used in combination with each
other:.
Event category
To retrieve only NE events, set the Event cate-
gory to Network Element
Network Element
You can choose to retrieve events for all NEs in the
OMEA server span, or a specific NE.
Event Type
You can retrieve events of a certain type or all
events.

User ID
Log originator user account.

Severity
You can choose to retrieve events with a severity
of Notice or all severities.

4-16 Course 5122AEN: OMEA Administration and Operations January 2006


Retrieving NE Events

Retrieving NE Events

Nortel Confidential - for training purposes only 4-17

Optical Manager Element Adapter Release 4.0 4-17


Network Element Surveillance

Summary

In this unit, you learned how to


retrieve a list of all NEs in the OMEA server span, and basic data for each NE
use the Navigator and Network Banner to summarize alarms for all NEs in the OMEA
server span
use the Alarm Manager application to view detailed information on NE alarms and
acknowledge NE alarms
use the Historical Fault Browser (HFB) to review the fault history of NEs in the OMEA
server span
view NE performance monitoring data and configure performance monitoring data col-
lection intervals
retrieve NE logs (events)

4-18 Course 5122AEN: OMEA Administration and Operations January 2006


Network Element Backup and Restore

Overview

Description
This module explains how to backup and restore network element data using Optical
Manager Element Adapter (OMEA).

Objectives
After completing this module and its associated activities, you will be able to
launch the NE Backup and Restore application
search for network elements
schedule automated backups
lock and unlock NE backups stored on an OMEA server
initiate a manual backup
restore network element data

Optical Manager Element Adapter Release 4.0 5-1


Network Element Backup and Restore

Introduction to network element backup and restore

Use the NE Backup and Restore feature of OMEA to archive NE data to an OMEA server.
The type of data that is backed up varies from one network element type to the next. See the
NE technical documentation for information about the type of data that is backed up.
Once a network element is under the control of OMEA, the system performs backups auto-
matically. Alternatively, immediate or scheduled manual backups can be initiated from the
backup and restore interface. OMEA will store up to 31 backup archives per network ele-
ment.
Likewise, in the event of data corruption, administrators can restore a backup to the network
element.

Warning: Restoration of NE data causes the network element to reboot,


and may result in traffic loss.

The OMEA Backup and Restore application supports the following NEs:
Optical Metro 5100
Optical Metro 5200
Optical Multiservice Edge 6110 Release 2 and later
Optical Multiservice Edge 6500
Common Photonic Layer Release 2 and later

5-2 Course 5122AEN: OMEA Administration and Operations January 2006


Introduction to network element backup and restore

Introduction to network element backup and restore

OMEA server

NE backup User-initiated NE
restore

Network element

Nortel Confidential - for training purposes only 5-3

Optical Manager Element Adapter Release 4.0 5-3


Network Element Backup and Restore

Searching for network elements

When you launch the Backup and Restore application from the Administration Menu, the
Network Element field is pre-loaded with the NE currently selected in the Navigator. How-
ever, you can configure backup and restore options for other NEs using one of the following
methods:

Searching by network element name


1. Select the network element name in the Network Element field.
2. Set the NE Type field to All.
3. Set the IP Address to All.
4. Click the Retrieve button.
The NE appears in the Object(s) found table.

Searching by network element type


1. Select the desired NE type in the NE Type field.
2. Set the Network Element field to All.
3. Set the IP Address field to All.
4. Click the Retrieve button.
A list of network elements matching your retrieval criteria appears in the Object(s)
found table.

Searching by network element IP address


1. Enter the NE IP address in the IP Address field. (Alternately, you can search for the IP
address in the pull-down scrolling list, and select it.)
2. Set the NE Element field to All.
3. Set the NE Type field to All.
4. Click the Retrieve button.
The network element appears in the Object(s) found table.

In the Object(s) found table, columns can be arranged in any order (horizontally) by
selecting a column heading and dragging and dropping the column. The list can be
sorted on any column in descending or ascending order by double-clicking he column
heading.

5-4 Course 5122AEN: OMEA Administration and Operations January 2006


Searching for network elements

Searching for network elements

NE Name NE Type Object(s) found table

Nortel Confidential - for training purposes only 5-5

Optical Manager Element Adapter Release 4.0 5-5


Network Element Backup and Restore

Configuring automated NE backups

Automated NE backup parameters are set in the Edit Global Automatic Backup
Schedules dialog, which is launched from the Global Automatic Backup Schedules tab
of the Backup and Restore window.

Date and time of the next scheduled backup


Set the time and date for the next automated backup in the Enter start date and time dia-
log. (Launched from the Edit Global Automatic Backup Schedules dialog.)

After the this initial backup, backups occur every repeat interval.

Repeat interval
This value determines backup frequency.

Number of automated backups retained on the OMEA server


When the OMEA Backup and Restore application stores the maximum number of
backup generations, it deletes the oldest backup with the most recent backup.
For example, when the Max back generations to keep field is set to 5, the five most
recent backups are always stored on the OMEA server.
The range of values for the Max back generations to keep field is 3 to31.
Note: Set this value according to the amount of disk space available on the OMEA server.
NE backups are not synchronized across OMEA resilient servers. NE backups are stored on
the server you logged into when configuring the backup.
Note: Do not schedule a network element to be backed up by both servers of an OMEA resilient
server pair at the same (or overlapping) time(s).

5-6 Course 5122AEN: OMEA Administration and Operations January 2006


Configuring automated NE backups

Configuring automated NE backups

Nortel Confidential - for training purposes only 5-7

Optical Manager Element Adapter Release 4.0 5-7


Network Element Backup and Restore

Locking and unlocking automated backups

You can prevent an NE backup from being deleted by the Backup and Restore application
(as part of the ongoing automated backup process) by locking the file. Only one backup per
NE can be locked.
You can also restore a locked backup to an unlocked state.
To change the lock status of an NE backup:
1. Find the NE and select it in the Object(s) found list.
2. Click the Restore tab. The available backups appear in the Restore tab,
and the Toggle Lock button is enabled.
The Status column reports whether an NE backup is currently locked or unlocked.
3. Click the Toggle Lock button to change the lock status of the selected NE backup.
Clicking the Toggle Lock button when the selected backup is unlocked, locks the
backup.
Clicking the Toggle Lock button when the selected backup is locked, unlocks the
backup.
4. Click the OK button in the ensuing confirmation dialog.

5-8 Course 5122AEN: OMEA Administration and Operations January 2006


Locking and unlocking automated backups

Locking and unlocking automated backups

Nortel Confidential - for training purposes only 5-9

Optical Manager Element Adapter Release 4.0 5-9


Network Element Backup and Restore

Manually backing up network element data

Once a specific network element is selected in the Object(s) found list of the Backup and
Restore dialog, you can initiate a manual backup of the NE from the Backup tab.
Selecting the Backup tab, enables the Now and Later... buttons.

Backing up now
Clicking the Now button opens a warning dialog that reminds you that NE backups are
stored only on the OMEA server from which the backup is initiated.

Clicking the OK button in the Warning dialog starts the backup.

Backing up later
Clicking the Later... button opens a warning dialog stating that NE backups are stored only
on the OMEA server from which the backup is initiated. Clicking the OK button in the
Warning dialog launches the Enter date and time for backup dialog.

Once youve set the date and time, click the OK button, and the backup will start at the
scheduled date and time.

5-10 Course 5122AEN: OMEA Administration and Operations January 2006


Manually backing up network element data

Initiating a manual backup

Nortel Confidential - for training purposes only 5-11

Optical Manager Element Adapter Release 4.0 5-11


Network Element Backup and Restore

Restoring network element data

Restoring data to a network element is a risky procedure, which may affect the
traffic-carrying abilities of the NE, and could potentially result in traffic loss. Conditions
which may prevent successful data restoration include:
a software upgrade in process
a duplicate TID
a software backup in progress

Warning: Operational considerations are heavily dependent on the NE type. The above condi-
tions are used for illustrative purposes only -- always refer to your network element
documentation for specific conditions relevant to that product.

Once a specific network element is selected in the Object(s) found list of the Backup and
Restore dialog, you can restore backup data to that NE from the Restore tab.
Selecting a backup file in the Restore tab, enables the Restore button. Clicking the Restore
button initiates the restore process.

5-12 Course 5122AEN: OMEA Administration and Operations January 2006


Restoring network element data

Restoring network element data

Nortel Confidential - for training purposes only 5-13

Optical Manager Element Adapter Release 4.0 5-13


Network Element Backup and Restore

Summary

In this unit, you learned how to use the OMEA to


launch the NE Backup and Restore application
search for network elements
schedule automated backups
lock and unlock NE backup files stored on an OMEA server
initiate a manual backup
restore network element data

5-14 Course 5122AEN: OMEA Administration and Operations January 2006


Network Element Software Delivery

Overview

Description
This module explains how to deliver NE software to network elements using the
OMEA.Software Delivery application.

Objectives
After completing this module and its associated activities, you will be able to
launch the OMEA Software Delivery application
configure OMEA to display NE software loads that are available on the OMEA
server or computers that the OMEA server can communicate with
deliver NE software loads to NEs in the OMEA span
cancel previously scheduled NE software deliveries
delete a delivered software load from an NE

Optical Manager Element Adapter Release 4.0 6-1


Network Element Software Delivery

Introduction to NE software delivery

The OMEA Software Delivery application allows you to deliver software loads to NEs in
the OMEA span. The Software Delivery application supports the following types of NEs:
Optical Metro 5000 Release 6.1 and later
OME 6110 Release 2.0 and later
OME 6500 Release 1.2 and later
CPL Release 1.0 and later

At a high level, delivering NE software loads to NEs using this feature is a two part process:
1. Adding NE software on an OMEA server or a networked computer that the OMEA
server can access
2. Scheduling NE software delivery to selected NEs.

Software deliveries can be scheduled for automated delivery


at some point in the future
as soon as possible

Note: The Software Delivery application in OMEA is disabled by default because of incompatibil-
ities with certain network elements. See the OMEA Release 4.0 Letter of Considerations
for a complete description of these incompatibilities.

6-2 Course 5122AEN: OMEA Administration and Operations January 2006


Introduction to NE software delivery

Introduction to NE software delivery

NE software delivery

Has NE software Add NE Software


been added to N
load to Software
Software Delivery Delivery application.
application?

Schedule NE software
delivery.

Nortel Confidential - for training purposes only 6-3

Optical Manager Element Adapter Release 4.0 6-3


Network Element Software Delivery

Adding NE software

OMEA can deliver NE software that is stored


on the OMEA server
on a networked device that the OMEA server can access
Before OMEA can deliver NE software to NEs, you must add that software to the OMEA
Software Delivery application. To add NE software to the Software Delivery application:
1. Check that the NE software hasnt already been added to the Software Delivery
application. NE software that has already been added is listed in
the Release Management tab of the Software Delivery window.
2. Use the The Add Release dialog to locate the NE software and add it to
the Software Delivery application.

The Add button in the Release


Management dialog launches
the Add Release dialog.

6-4 Course 5122AEN: OMEA Administration and Operations January 2006


Adding NE software

Adding NE software

The Configure button launches the Release Management dialog.

Nortel Confidential - for training purposes only 6-5

Optical Manager Element Adapter Release 4.0 6-5


Network Element Software Delivery

Delivering NE software

Once NE software has been added to the Software Delivery application, that software can
be delivered to NEs. Once delivered to a network element, the load is ready for installation.
To deliver a load
1. Checking for existing scheduled software deliveries in the Scheduled Deliveries Tab.

This tab will be empty if no software deliveries are currently scheduled. Do not add an
additional scheduled delivery if it conflicts with an existing delivery
2. A list of available NE software appears in the Deliver Release dialog.

3. After selecting an available release, you can choose to


start the delivery as soon as possible
or
schedule the delivery at some time in the future

6-6 Course 5122AEN: OMEA Administration and Operations January 2006


Delivering NE software

Delivering NE software

The Deliver button launches the Deliver Release dialog.

Nortel Confidential - for training purposes only 6-7

Optical Manager Element Adapter Release 4.0 6-7


Network Element Software Delivery

Cancelling scheduled NE software deliveries

Scheduled NE software deliveries can be cancelled from the Software Delivery dialog.
Scheduled software deliveries can not be cancelled on the OM5000 series NEs.
To cancel a scheduled software delivery:
1. In the Scheduled Deliveries tab. select the NE software delivery you want to cancel.
2. Click the Cancel button to launch the Remove Load dialog.

3. Clicking the Yes button cancels the delivery

Confirming NE software delivery cancellation


Its always a good idea to confirm that the cancellation in the Scheduled Deliveries tab.

6-8 Course 5122AEN: OMEA Administration and Operations January 2006


Cancelling scheduled NE software deliveries

Cancelling scheduled NE software deliveries

Nortel Confidential - for training purposes only 6-9

Optical Manager Element Adapter Release 4.0 6-9


Network Element Software Delivery

Deleting delivered NE software

For operational or maintenance reasons, you may need to delete the software delivered by
the Software Delivery application. The Backout feature of the Software Delivery
application allows you to do this. You can delete delivered software from an NE by
1. selecting the NE for which you want to perform a delivery backout
2. in the Details tab, clicking the Backout button.
when the Backout Release dialog opens, clicking the Yes button

Confirming NE software backout


You can confirm the backout success in the Details tab.

6-10 Course 5122AEN: OMEA Administration and Operations January 2006


Deleting delivered NE software

Deleting delivered NE software

Nortel Confidential - for training purposes only 6-11

Optical Manager Element Adapter Release 4.0 6-11


Network Element Software Delivery

Summary

In this unit, you learned how to use the OMEA to


launch the OMEA.Software Delivery application
configure OMEA to display NE software loads that are available on the OMEA server or
computers that the OMEA server can communicate with
deliver NE software loads to NEs in the OMEA span
cancel previously scheduled NE software deliveries
delete a delivered software load from an NE

6-12 Course 5122AEN: OMEA Administration and Operations January 2006


Optical Manager Element
Adapter

Administration and Operations

OMEA Configuration and Administration

Student guide

Release 4.0
January 2006
Course 5122AEN

NORTEL CONFIDENTIAL - FOR TRAINING PURPOSES ONLY

nortel.com/training
7-2 Course 5122AEN: OMEA Administration and Operations January 2006
Optical Manager Element Adapter Installation

Overview

Description
This module provides an overview of OMEA server and client software installation.

Objectives
After completing this module, you will be able to
describe the high-level OMEA installation process
verify that target systems meet minimum hardware requirements
identify the Solaris OS and OS patches required for OMEA server installation
identify the major steps involved in installing OMEA software.
provide a high-level overview of OMEA client architecture

Optical Manager Element Adapter Release 4.0 8-1


Optical Manager Element Adapter Installation

Installation process overview

At a high level, the deployment of a new OMEA load consists of:


confirming available hardware meets requirements, and upgrading hardware if required
installing and patching the Solaris operating system
installing the OMEA server and client software
Each of these steps must be performed in order for the installation to be successful.

8-2 Course 5122AEN: OMEA Administration and Operations January 2006


Installation process overview

Installation process overview

OMEA installation

Confirm hardware requirements

Install Solaris OS

Patch Solaris OS

Install OMEA

Nortel Confidential - for training purposes only 8-3

Optical Manager Element Adapter Release 4.0 8-3


Optical Manager Element Adapter Installation

Hardware requirements

Recommended OMEA platforms without any other application co-residency

Platform CPU RAM Disk Space

Sun Fire V880/V890 8 CPUs @ 1.2 Ghz 32 Gbyte 6x 73 Gbyte SCSI

Sun Fire V440 or Nitro 440 4 CPUs @ 1.28 Ghz 16 Gbyte 4x 73 Gbyte SCS

Sun Fire V240 or Netra 240 2 CPUs @ 1.28 Ghz 8 Gbyte 2 x 73 Gbyte SCSI

Sun Fire 280R 2 CPUs @ 1.2 Ghz 8 Gbyte 2 x 73 Gbyte SCSI

Recommended platforms for co-residency of OMEA and OMgr


OMEA and Optical Manager can be installed on the same machine, when that machine
meets the following requirements

Platform CPU RAM Disk Space

Sun Fire V880/V890 8 CPUs @ 1.2 Ghz 32 Gbyte 6x 73 Gbyte SCSI

Sun Fire V440 or Netra 440 4 CPUs @ 1.28 Ghz 16 Gbyte 4x 73 Gbyte SCS

Note: This information is a guideline only. Detailed specifications for supported (as opposed to
recommended) and legacy hardware platforms appear in the OMEA Planning Guide 450-
3121-601.

8-4 Course 5122AEN: OMEA Administration and Operations January 2006


Hardware requirements

Hardware requirements

OMEA installation

Confirm hardware requirements

Install Solaris OS

Patch Solaris OS

Install OMEA

Nortel Confidential - for training purposes only 8-5

Optical Manager Element Adapter Release 4.0 8-5


Optical Manager Element Adapter Installation

Operating system installation and patching

The Solaris Operating Environment is the base operating system for the OMEA platform,
and must be installed as per engineering guidelines before installing OMEA.
OMEA 4.0 is baseline on Sun Solaris 9 (SUN 5.9) operating system.
Note: This information is a guideline only. Detailed OS requirements appear in the OMEA Plan-
ning Guide 450-3121-601.

Pre-Install
Prior to installing Solaris, make sure you have the following information available:
server host and domain name
(The UNIX host name must be between 7 and 15 characters.)
IP address, netmask and default gateway
Solaris installation CDs

Install
Detailed installation instructions are provided in the OMEA Planning Guide 450-3121-601.
The following tables can be used as a guideline for the partitioning of the disk where OMEA
is installed:

Disk partitioning

Partition Minimum partition size (in MB) File system

/ (root) (Slice 0) all remaining, after allocation of Swap UFS

swap (Slice 1) 4096 minimum Swap


The swap size should be twice the size of total RAM installed
on the server.
If the swap space is greater than half of the disk space,
it should be distributed across multiple disks

overlap (Slice 2) total disk space NA

Post-Install
After the Solaris OS installation completes, it may be necessary to manually enter the IP
address of the default gateway (if not prompted during installation).

Applying Solaris patches


After the Solaris operating system (OS) installation, a series of Nortel-recommended OS
patches must be applied. See the OMEA Installation and Configuration Guide 450-3121-
201, for information on where to obtain and how to apply the OS patches.

8-6 Course 5122AEN: OMEA Administration and Operations January 2006


Operating system installation and patching

Operating system installation and patching

OMEA installation

Confirm hardware requirements

Install Solaris OS

Patch Solaris OS

Install OMEA

Nortel Confidential - for training purposes only 8-7

Optical Manager Element Adapter Release 4.0 8-7


Optical Manager Element Adapter Installation

OMEA installation

The installation of OMEA software varies with the OMEA configuration (standalone server
or a resilient pair).
Follow the detailed installation procedures in the Optical Manager Element Adapter Instal-
lation and Configuration Guide 450-3121-201, to install OMEA software according to the
configuration of your choice.

8-8 Course 5122AEN: OMEA Administration and Operations January 2006


OMEA installation

OMEA installation

OMEA installation

Confirm hardware requirements

Install Solaris OS

Patch Solaris OS

Install OMEA

Nortel Confidential - for training purposes only 8-9

Optical Manager Element Adapter Release 4.0 8-9


Optical Manager Element Adapter Installation

OMEA client installation

OMEA clients fall into two categories


PC desktop clients
Xterminal clients

OMEA PC desktop client installation


PC desktop clients are
installed on a PC running PC running OMEA PC running OMEA PC running OMEA
either Windows 2000 or Win- desktop client desktop client desktop client
dows XP. These clients are
hosted directly by an OMEA
server.
The OMEA PC client can be
installed either from CD ROM
or an installation file can be
downloaded to the PC from
the OMEA server. The instal-
lation process is straightfor-
ward, and consists of
launching the setup file and
following the on-screen OMEA
OMEA server
instructions. GUI
server
For instructions on how to
install the PC client, see the
OMEA Installation and Con-
figuration Guide 450-3121-
201.

OMEA GUI server installation


OMEA clients can also be
Xterminal sessions hosted
from a dedicated OMEA GUI
server. Implementation of
OMEA GUI servers is sup-
ported only on specific SUN
Solaris workstations.
For instructions on how to Xterminal client Xterminal client Xterminal client
install OMEA GUI server
software, see the OMEA
Installation and Configuration
Guide 450-3121-201.

8-10 Course 5122AEN: OMEA Administration and Operations January 2006


OMEA client installation

OMEA client installation

OMEA installation

Confirm hardware requirements

Install Solaris OS

Patch Solaris OS

Install OMEA

Nortel Confidential - for training purposes only 8-11

Optical Manager Element Adapter Release 4.0 8-11


Optical Manager Element Adapter Installation

Summary

Now that you have completed this module, you can


describe the high-level OMEA installation process
verify that target systems meet minimum hardware requirements
identify the Solaris OS and OS patches required for OMEA server installation
identify the major steps involved in installing OMEA software.
provide a high-level overview of OMEA client architecture

8-12 Course 5122AEN: OMEA Administration and Operations January 2006


Managing servers and spans

Overview

Description
This module explains the tasks associated with configuring Optical Manager Ele-
ment Adapter (OMEA) servers and spans.

Objectives
Upon completion of this module and its related activities, you will
understand how resilient servers interact and manage NEs
understand the difference between servers, spans and controllers
understand the function of OMEA administration parameters, and be able to
retrieve and configure OMEA administration parameters
be able to add a resilient OMEA server to a standalone OMEA server
be able to promote an OMEA slave server to a master server
be able to synchronize data across OMEA servers
be able to add network elements to the OMEA span
be able to backup and restore OMEA server data

Optical Manager Element Adapter Release 4.0 9-1


Managing servers and spans

OMEA resilient servers

The OMEA resilient server configuration


OMEA can be installed separately on two servers. The servers can then be configured to
operate as a resilient pair. The servers may be geographically remote.
Both servers of a resilient pair operate in active mode. This means that both servers are
independently managing the same network elements through their own connections.
The OMEA desktop clients can log into either server of a resilient pair.
A real-time, peer-to-peer synchronization protocol between the servers ensures any
changes made on a server are automatically updated on the other server.
The workload of hosting user sessions is spread over two servers, thereby increasing
OMEA capacity

9-2 Course 5122AEN: OMEA Administration and Operations January 2006


OMEA resilient servers

OMEA resilient servers


Primary/master Secondary/slave
OMEA server OMEA server

User User
sessions sessions

Nortel Confidential - for training purposes only 9-3

Optical Manager Element Adapter Release 4.0 9-3


Managing servers and spans

Servers, spans and controllers

Network
The Network is at the root of the
OMEA navigation tree. From it, you
can launch the Find tool, which allows
you to find any entity in the OMEA
span.

Server
The server identifies the OMEA server that you are currently logged into.

Span
The OMEA span is called OMEA 1 for all OMEA installations. Because both servers in an
OMEA resilient pair share all network element supervision responsibilities and data is syn-
chronized across the servers, their functionality is abstracted in the OMEA 1 span, which
includes the OMEA servers and NEs that the servers manage.

Controller
A controller is the representation of each of the servers in a resilient OMEA server pair. The
number of controllers appearing in the Navigator tree, lets you see if youre logged into a
resilient server pair or a standalone OMEA server. The server youre currently logged into is
represented with the controller icon. The server youre not logged into, is represented
with the controller icon.
By right-clicking a controller in the Naviga-
tor, you can launch a context-sensitive menu,
that in turn, allows you to launch a telnet ses-
sion to the server.

Network elements
Before individual network elements can be managed by OMEA (and visible in the OMEA
Navigator), they must be added to the OMEA span by an OMEA administrator/

9-4 Course 5122AEN: OMEA Administration and Operations January 2006


Servers, spans and controllers

Servers, spans and controllers

Server
OMEA span

Controller
Controller

Nortel Confidential - for training purposes only 9-5

Optical Manager Element Adapter Release 4.0 9-5


Managing servers and spans

OMEA administration parameters

You must enable/disable features and put limits on the disk space and computing resources
used by specific features. These features are configured in the OMEA Administration
window. The features and their administration parameters follow:

Server access to NE craft tools


If the craft tool is not installed on the OMEA server or not installed in a default directory,
you must configure these parameters to point to the location of the craft application.

Type of parameter Function

...CraftGUIServererIP the IP address or host name of the GUI server hosting the craft
application

...PathonGUIServer path to launch script on GUI server

...CraftGUIServererOnOff On/off switch enables or disables OMEA server access to craft tool

PM data retention
As an administrator, you must balance the need for PM data retention with the amount of
disk space available on the OMEA server. You can do this by setting limits on the number of
NEs that data is collected for, and how long that data is retained on the OMEA server.

(Type of) parameter Function

PMCOllectionMax... the maximum number of NEs (of this type) that 15-minute PM data
collection can be enabled for

PMDataRetention number of days that collected PM data is stored on the OMEA


server

Collect PMsOnSlave determines whether the PMs are collected by the resilient OMEA
server

Desktop GUI
When a server is dedicated to serving up desktop sessions, you must configure OMEA to
communicate with the server and the desktop application.

Parameter Function

DesktopGuiServerIP the IP address or host name of the GUI server

DesktopLaunch- path to launch script on GUI server


PathOnGuiServer

DesktopGuiServerOnOff On/off switch enables or disables GUI sessions from the GUI server

9-6 Course 5122AEN: OMEA Administration and Operations January 2006


OMEA administration parameters

OMEA administration parameters

Nortel Confidential - for training purposes only 9-7

Optical Manager Element Adapter Release 4.0 9-7


Managing servers and spans

OMEA administration parameters (continued)

Disk monitoring
As an administrator, you must prevent the OMEA server(s) from running out of disk space.
If you dont, the system will crash, and you may lose all your OMEA data and have to
rebuild the server.
You can configure disk space major and critical alarms to go off when a percentage of disk
capacity is used, thereby giving you advance warning and time to act before you run out of
disk space.

(Type of) parameter Function

DiskMonitorMajorALarm percentage disk utilization that triggers this disk alarm

DiskMonitorCriticalALarm percentage disk utilization that triggers this disk alarm

RADIUS secret distribution


The OMEA server is capable of distributing the OMEA secret to the NEs in its span.

Parameter Function

DistributeRADIUSecret directs OMEA to distribute or not distribute the OMEA RADIUS


secret to the NEs in the OMEA span

Event Retention
You can configure how long OMEA retains NE and OMEA events. Determine this value by
weighing how far back you want to record events against available disk space.

Parameter Function

EventRetention number of days OMEA retains NE and OMEA server events

Peer server timeout


When a loss of communications can exist between a resilient pair of OMEA server before a
loss of association alarm is raised.

Parameter Function

PeerServerTimeOut amount of time (in seconds) that a loss of communications condition


can exist between a resilient pair of OMEA servers before a loss of
association alarm is raised.

9-8 Course 5122AEN: OMEA Administration and Operations January 2006


OMEA administration parameters

OMEA administration parameters (continued)

Nortel Confidential - for training purposes only 9-9

Optical Manager Element Adapter Release 4.0 9-9


Managing servers and spans

OMEA administration parameters (continued)

Limiting concurrent desktop and craft sessions


OMEA can host numerous concurrent desktop and craft tool sessions. Care should be taken
to limit the number of concurrent desktop and craft sessions in accordance with the comput-
ing resources available from the OMEA server.

Type of parameter Function

ReachThrough...LImit maximum number of concurrent sessions of this type (desktop, CPL


craft, SMI and SM) that the OMEA server will host.

Single sign-on
Single sign-on is an OMEA feature that allows users access to NE craft tools and
applications, from and OMEA session, without having to login into the NE. (Single sign-on
is discussed in detail in a subsequent module.)

Parameter Function

SingleSignOn enables or disables the single sign-on feature.

TMF filtering
The NE data that is passed upstream to Trail Manager through TMF can be filtered accord-
ing to NE type. Data for the specified NE type is not transmitted upstream.

Parameter Function

TMFilter data for this NE type is not passed upstream

9-10 Course 5122AEN: OMEA Administration and Operations January 2006


OMEA administration parameters

OMEA administration parameters (continued)

Nortel Confidential - for training purposes only 9-11

Optical Manager Element Adapter Release 4.0 9-11


Managing servers and spans

VIewing and configuring OMEA administration parameters

The OMEA Administration window is launched from the Administration menu.

Viewing OMEA configuration parameters


OMEA configuration parameters can be viewed by clicking the Retrieve button in the
OMEA Administration window.
The parameters are listed in the Object(s) found table. Each record in the table lists
the parameter name
the current parameter value
a description of the parameter
the range of values that can be entered for the parameter
(numeric parameters only)
The columns in this table can be moved horizontally by dragging the column heading to the
desired location. Records can be sorted on any column, in descending or ascending order.
The records in the Object(s) found table can be saved to a comma-delimited text file.
When you select a parameter in the Object(s) found table, the parameter attributes appear in
the Setting Details tab.

Setting OMEA configuration parameters


You can modify an OMEA configuration parameter by
1. selecting the parameter in the Object(s) found table
2. clicking the Modify button, which opens the Edit Config Setting dialog
3. entering a value in the Value field and clicking the OK button

9-12 Course 5122AEN: OMEA Administration and Operations January 2006


VIewing and configuring OMEA administration parameters

Viewing and configuring OMEA


administration parameters

Nortel Confidential - for training purposes only 9-13

Optical Manager Element Adapter Release 4.0 9-13


Managing servers and spans

Retrieving OMEA server attributes

OMEA server attributes can be viewed in the Server Administration dialog, which is
launched from the Administration menu.

Server attributes
Clicking the Retrieve button Server Administration dialog displays the following
information in the Object(s) found table, for the server youre logged in to:
Server
server host name
IP address
server IP address
Mode
If the server is not running in a resilient configuration with another OMEA server, the
server mode is standalone. If the server is a member of a resilient OMEA server pair it
will be either in primary or secondary mode.
Status
If the server is a member of a resilient pair, its status is determined by the server mode.
Under normal operating conditions, the primary server status will be master, and the sec-
ondary server status will be slave. In the event that the primary server fails, the secondary
server status changes to master.
The Server Administration dialog allows you to launch dialogs for the following tasks:
join two OMEA servers to form a resilient pair, or removing a server from a resilient pair
promote a secondary server to master status
synchronize operating parameters across two resilient servers

Creating and removing resilient configurations


(Server Details tab)
If the server displayed in the Object(s) found table is in primary mode, and not a member of
a resilient pair, the Add button is enabled. The Add button launches a dialog that allows you
to add a server to form a resilient pair, provided that server is in standalone mode.
If the server displayed in the Object(s) found table is the secondary server of a resilient pair,
the Remove button is enabled. The Remove button launches a dialog that allows you to
remove the secondary server from the resilient server pair.

9-14 Course 5122AEN: OMEA Administration and Operations January 2006


Retrieving OMEA server attributes

Retrieving OMEA server attributes

Nortel Confidential - for training purposes only 9-15

Optical Manager Element Adapter Release 4.0 9-15


Managing servers and spans

Adding a resilient server: Overview

Adding a resilient server to a standalone server


Once you have configured a standalone OMEA server, you can configure a second OMEA
server to form an OMEA resilient server pair. In this case, the existing server becomes the
master server and the server you add becomes the slave server.
To do this, you must
1. Install OMEA on the second server.
2. On the primary server, in the command line interface, change the operating mode of
the primary server from standalone to primary.
./platformreconfig -primary
3. On the secondary server, in the command line interface, change the operating mode
of the secondary server from standalone to secondary.
./EMScontrol halt
./platformreconfig -secondary
/opt/nortel/omea/bin/platform/.configureCM.sh off
./EMScontrol restart
4. Logged into OMEA on the primary server, and from the Server Administration win-
dow configure the primary server to recognize the secondary server as a peer in a
resilient pair.

Note: The above is an abbreviated overview of this procedure. See the Adding a resilient server
activity in the Activity Guide for the full procedure.

9-16 Course 5122AEN: OMEA Administration and Operations January 2006


Adding a resilient server: Overview

Adding a resilient server: Overview


Standalone Standalone
OMEA server OMEA server

Primary/master Secondary/slave
OMEA server OMEA server

2 3

Primary OMEA Secondary


server OMEA server OMEA resilient server pair

Nortel Confidential - for training purposes only 9-17

Optical Manager Element Adapter Release 4.0 9-17


Managing servers and spans

Promoting a secondary server to master status

Under normal operating conditions, a primary OMEA server status is master and the second-
ary OMEA server status is slave.
You can promote the secondary server to a master server. This automatically demotes the
primary server to slave status. Once the primary server is in slave status, OMEA can be
stopped on the primary server and the server can be serviced or upgraded while OMEA con-
tinues to run uninterrupted, on the secondary server.
You can promote a secondary server by
1. opening the Server Administration window from the Administration window
2. clicking the Retrieve button to load server data in the Object(s) found table
3. selecting the secondary server in the Object(s) found table.
4. selecting the Redundancy tab
This enables the SetMaster button.
5. clicking the SetMaster button.
This launches the Server Mastership dialog.
6. in the Server Mastership dialog, clicking the Yes button

When you refresh the server status in the Server Administration window, by clicking the
Retrieve button, the primary server status is slave, and the secondary server status is
master.

9-18 Course 5122AEN: OMEA Administration and Operations January 2006


Promoting a secondary server to master status

Promoting a secondary server to master status

Nortel Confidential - for training purposes only 9-19

Optical Manager Element Adapter Release 4.0 9-19


Managing servers and spans

Synchronizing data across a resilient server pair

The synchronization of OMEA operational parameters between the servers in a resilient pair
occurs continually and generally does not require administrator intervention. Examples of
data that is synchronized across servers are
span definitions
user accounts and their attributes
NE and server events
NE PM data
If data across a resilient server pair are not synchronized, a peer-server misalignment alarm
is raised by OMEA.
NE backup data is not synchronized across servers.

However, you can force data synchronization across a resilient server pair by
1. opening the Server Administration window form the Administration window
2. clicking the Retrieve button to load server data in the Object(s) found table
3. selecting the secondary server in the Object(s) found table.
4. selecting the Data Synchronization tab
This enables the Resynch button.
5. clicking the Resynch button
This launches the Server Synchronisation dialog.
6. in the Server Synchronisation dialog, clicking the Yes button

9-20 Course 5122AEN: OMEA Administration and Operations January 2006


Synchronizing data across a resilient server pair

Synchronizing data across a resilient server pair

Nortel Confidential - for training purposes only 9-21

Optical Manager Element Adapter Release 4.0 9-21


Managing servers and spans

Displaying OMEA status, stopping OMEA,


and starting OMEA

In order to avoid data loss or corruption, OMEA should be stopped before you shut down or
reboot the server its running on.

Displaying OMEA status


1. Log in to the OMEA workstation using the "root" user account.
2. Open a terminal window.
3. Change the directory by entering
cd /opt/nortel/omea/bin/
4. Display OMEA server software status by entering
./EMScontrol status

Stopping OMEA
1. Log in to the OMEA workstation using the "root" user account.
2. Open a terminal window.
3. Change the directory by entering
cd /opt/nortel/omea/bin/
4. Halt the OMEA server software by entering
./EMScontrol halt
A message indicates that the server is halting. A confirmation message and the prompt
are displayed when the process is complete.

Starting OMEA
1. Log in to the OMEA workstation using the "root" user account.
2. Open a terminal window.
3. Change the directory by entering
cd /opt/nortel/omea/bin/
4. Start the OMEA server software by entering
./EMScontrol restart
A message indicates that the server is starting. A confirmation message and the prompt
are displayed when the process is complete.

9-22 Course 5122AEN: OMEA Administration and Operations January 2006


Displaying OMEA status, stopping OMEA, and starting OMEA

Displaying OMEA status, stopping OMEA,


and starting OMEA
Displaying OMEA status Stopping OMEA

cd /opt/nortel/omea/bin/
cd /opt/nortel/omea/bin/
./EMScontrol status
./EMScontrol halt

Checking Status:
Server is running
Checking Services:
ApplicationServer: running
PlatformServices: running
ParameterDistribution: running Starting OMEA
Directory: running
cd /opt/nortel/omea/bin/
DirectoryManager: running ./EMScontrol restart
PMCollector: running
Logger: running
Database: running
RadiusServer: running
Registry: running
FTPServer: running
ApGateway: running
Mediation: running

Nortel Confidential - for training purposes only 9-23

Optical Manager Element Adapter Release 4.0 9-23


Managing servers and spans

Adding NEs to the OMEA span

Network elements to be managed by OMEA must be added to the OMEA span before they
can be seen in Navigator.

You can add network elements to the OMEA span by


1. selecting Manage NE from the Configuration menu
2. entering the required information for the network element
NE IP address
User ID for an existing admin-level account on the NE
NE type

3. clicking the Assign User AP NE ID check box, and entering a value


(The User AP NE ID A unique XDR network element identifier. This identifier is used
when the network element is enrolled to XDR clients, and is part of the unique identifier
for the network element in the ONM AP GNB. This field is optional. If you do not spec-
ify a value, this field is automatically assigned by the software.)
4. clicking the OK button

Generally, you add network elements one at a time. However, for the Optical Metro 5000
series NEs, you can only add an entire ring. When you enter the IP address of an NE within
the ring, the entire ring is added.
See the OMEA Standard Operations Guide 450-3121-301 for limitations pertaining to NE
TIDs as they pertain to specific NEs.
Note: For Optical Metro 5000 series NEs (release 6.1 and later), Optical Multiservice Edge
(OME) 6500 NEs (release 1.1 and later), and Common Photonic Layer (CPL) NEs using
Centralized Security, OMEA security settings are applied to the NE.

9-24 Course 5122AEN: OMEA Administration and Operations January 2006


Adding NEs to the OMEA span

Adding NEs to the OMEA span

Nortel Confidential - for training purposes only 9-25

Optical Manager Element Adapter Release 4.0 9-25


Managing servers and spans

Editing NEs and removing NEs from the OMEA span

In addition to adding NEs to the OMEA span, you can also


edit NE attributes
delete NEs from the OMEA span
The tools for these functions are launched from the NE Properties window.

Editing NE attributes
The Edit Network Element dialog allows you to change
an NE User ID password
an NE APNEID

9-26 Course 5122AEN: OMEA Administration and Operations January 2006


Editing NEs and removing NEs from the OMEA span

Editing NEs and removing NEs from the OMEA span

Nortel Confidential - for training purposes only 9-27

Optical Manager Element Adapter Release 4.0 9-27


Managing servers and spans

Backing up OMEA server data

The OMEA (EMS) backup and restore application supports


scheduled backups of EMS data
manually initiated backups of EMS data,
manual restoration of data to an EMS from a backup
The backup operation copies information from operational locations within OMEA to a loca-
tion designated for backups, within the OMEA server workstation. A backup contains all
data on the server including Historical PM data and NE Backup Files. This type of backup is
large in size, and takes a long time to process.
Note: Prior to starting an OMEA server backup, ensure that you have adequate disk space avail-
able to contain the backup data. When fully loaded, OMEA can store 500 Gbytes of data.
In this case, the OMEA backup would require an additional 500 Gbytes of disk space.
Backups are performed from the UNIX command line prompt.

Automatic backups
The procedure for scheduling automated backups is Scheduling automated OMEA back-
ups on page 9-29.

Manual backups

1. Log into the EMS server as the "root" user.


2. Change directory by entering
cd /opt/nortel/omea/bin/platform/
3. Initiate the backup by entering and the on screen instructions.
./ems_backup <backup_directory> <keep> <mode>

backup_directory Location where archive file will be stored.


Default value = /opt/OMEA4_EMS_BACKUP. If a directory is specified, a
sub-directory, OMEA4_EMS_BACKUP will be created, under the directory
specified, and the files placed in this sub-directory. No other files should be
kept in this folder.

keep If this parameter is specified then EMS backup will retain ALL log files other-
wise log files older than '<user supplied value> days' will be deleted.
Default value = 9999. Possible values = 'keep' or a numeric value.

mode Description = can be either manual (user interaction) or auto (no user inter-
action). Auto mode is designed for crontab usage and uses all default values.
Default value = 'manual'. Possible values = 'manual' or 'auto'.

Note 1: If a backup directory is specified, a sub-directory OMEA4_EMS_BACKUP will be created,


under the directory specified, and the files placed in this sub-directory. No other files
should be placed in this folder.
Note 2: Depending on the number of NEs commissioned by the EMS, the backup process can
take between 1 and 20 minutes.

9-28 Course 5122AEN: OMEA Administration and Operations January 2006


Backing up OMEA server data

Backing up OMEA server data

Scheduling automated OMEA backups

1 Log into the EMS server as user root.


2 Set the EDITOR env variable to vi
EDITOR=vi
export EDITOR
3 Open the crontab root file
crontab -e root
4 Add an entry matching the root user requirements
This example line can be added at the end to activate an EMS Backup once a
day at 23:55
55 23 * * * /opt/nortel/omea/bin/platform/ems_backup
/opt/OMEA4_EMS_BACKUP keep auto
Refer to the man pages for crontab for more details. The structure of the line
is <minute> <hour> <day of month> <month of year> <day of week> / <path>,
An * means all legal values are used.
5 Activate the newly updated crontab file
crontab /var/spool/cron/crontabs/root

Nortel Confidential - for training purposes only 9-29

Optical Manager Element Adapter Release 4.0 9-29


Managing servers and spans

Restoring data on the primary OMEA server

Backup fileset management


The backup files are compressed and named in the following format
omea@<ip_address of host machine>-<year-month-day_time>v<version
number>.tar.gz.
This makes recognition and management of the backup fileset easier.

Restoring OMEA data


Any of the backups stored on the server can be restored using the command line interface.
Progress indicators and a completion status are displayed back to the user.
Note: A backup fileset can not be restored to an EMS server with a different IP address.
An EMS data restore requires that the OMEA server be halted.
Advise users to close applications and log out of the server before an EMS data restore is
performed.

Restoring data on the primary server


Note 1: Restoring data to the primary server of a resilient pair requires server preparation ahead of
this procedure and follow up after this procedure. Use this procedure only as part of, and
only where it is specified in Restoring data on the primary OMEA server on page 9-31.
Note 2: If you are restoring backed up data on a standalone sever, this procedure can be used as
on its own.
Note 3: Before you restore EMS data, ensure that there are no EMS software upgrades in
progress.
1. Log into the EMS server as root.
2. Change the directory by entering
cd /opt/nortel/omea/bin/
3. Halt the server by entering
./EMScontrol halt
4. Change directory by entering
cd /opt/nortel/omea/bin/platform/
5. Initiate the restore by entering
./ems_restore <backup_directory>

9-30 Course 5122AEN: OMEA Administration and Operations January 2006


Restoring data on the primary OMEA server

Restoring data on the primary OMEA server

1 Set the primary server status to slave and the secondary server status to
master as described in Promoting a secondary server to master status on
page 9-18.

2 Restore the backup file on the primary server, using Restoring data on the
primary server on page 9-30.

3 Restore the primary server to master status and the secondary server to
slave status.

4 Force the data on the secondary server to synch with the restored data on the
primary server as described in Synchronizing data across a resilient server
pair on page 9-20

Nortel Confidential - for training purposes only 9-31

Optical Manager Element Adapter Release 4.0 9-31


Managing servers and spans

Restoring data on the primary OMEA server


(continued)

Restoring OMEA data (continued)


Restoring data on the primary server (continued)
6. Answer Y to the following output
==============================================
OMEA4.0 - EMS Restore
==============================================
About to commence Restore of critical OMEA files to local platform.
Archived Backup file will be taken from
/opt/OMEA4_EMS_BACKUP
Do you want to continue? [y/n] y

7. Choose the backup file to be restored


Checking for backup data directory.
Backup data directory '/opt/OMEA4_EMS_BACKUP' found -continuing...
There is more than one OMEA backup file in the chosen directory.
The following backup files are available;
omea@47.115.52.71-2005_02_03_133203v031.tar.gz
omea@47.115.52.71-2005_02_08_091527v031.tar.gz
Please enter one of the above filenames for use during the
EMS Restore...
omea@47.115.52.71-2005_02_08_091527v031.tar.gz
Note: An exception will be raised for NEs that already exist, this is normal, ignore this message.
8. At the prompt, the script has completed and a restart is required.
Change directories by entering
cd /opt/nortel/omea/bin
9. Start the server by entering
./EMScontrol restart
A message indicates that the server is starting. A confirmation message and the prompt is
displayed when the process is complete.
Server Starting: <date and time>
...............................................
Server Started: <date and time>

9-32 Course 5122AEN: OMEA Administration and Operations January 2006


Restoring data on the primary OMEA server

Restoring data on the primary OMEA server


(continued)

1 Set the primary server status to slave and the secondary server status to
master as described in Promoting a secondary server to master status on
page 9-18.

2 Restore the backup file on the primary server, using Restoring data on the
primary server on page 9-30.

3 Restore the primary server to master status and the secondary server to
slave status.

4 Force the data on the secondary server to synch with the restored data on the
primary server as described in Synchronizing data across a resilient server
pair on page 9-20

Nortel Confidential - for training purposes only 9-33

Optical Manager Element Adapter Release 4.0 9-33


Managing servers and spans

Summary

Now that you have completed this module and its related activities, you can
explain how resilient servers interact and manage NEs
explain the difference between servers, spans and controllers
explain the function of OMEA administration parameters, and retrieve and configure
OMEA administration parameters
add a resilient OMEA server to a standalone OMEA server
promote an OMEA slave server to a master server
synchronize data across OMEA servers
add network elements to the OMEA span
backup and restore OMEA server data

9-34 Course 5122AEN: OMEA Administration and Operations January 2006


User Authentication

Overview

Description
This module provides a description of OMEA user authentication and the centralized
security architecture.

Objectives
After completing this module and its related activities, you will be able to
explain the role of RADIUS in OMEA user authentication
explain and configure OMEA centralized security
explain the different authentication features available with OMEA local
RADIUS and a remote RADIUS server
explain how the single sign-on feature works and how to configure OMEA for
single sign-on
explain the role of the OMEA challenge secret and how to configure the chal-
lenge secret

Optical Manager Element Adapter Release 4.0 10-1


User Authentication

OMEA user authentication

OMEA user authentication


All logins into OMEA are verified through Remote Access Dial-In User authentication
Service (RADIUS).

RADIUS is installed on the OMEA server during the OMEA installation process, and is
the default RADIUS for OMEA authentication.

In the OMEA interface, authentication performed by this RADIUS is referred to as


local authentication.)

OMEA authentication can also be performed by an external RADIUS running on another


server.

In the OMEA interface, authentication performed by an external RADIUS is referred to


as remote authentication.)
Once you have configured OMEA to communicate with an external RADIUS server, you
can configure individual accounts to user either local or remote RADIUS authentication.
The external RADIUS can also be configured as a proxy to a SecurID ACE/server

Centralized security
OMEA RADIUS can also be used in a centralized authentication configuration to validate
network element logins.

10-2 Course 5122AEN: OMEA Administration and Operations January 2006


OMEA user authentication

OMEA user authentication

Nortel Confidential - for training purposes only 10-3

Optical Manager Element Adapter Release 4.0 10-3


User Authentication

Centralized security

NE user authentication without centralized security


When an NE is configured for local authentication, that is, not for centralized security, users
who launch NE craft tools from OMEA have to log into the NE again. The NE login is
authenticated by the NE.

NE user authentication using centralized security


NE user authentication can be performed by OMEA RADIUS, for the following NEs:

OM5000 R 6.1, R 7.0, R 8.0 or later

OME 6500 R 1.1 or later

CPL R 10 and later

NE centralized security through a remote RADIUS service


OMEA users are required to login into the NE whenever they launch NE craft tools from the
OMEA interface, but the NE login is authenticated by the OMEA remote RADIUS server.
Users logging directly into the NE (not through an OMEA desktop) are authenticated by the
OMEA remote RADIUS.

NE centralized security through a local OMEA RADIUS service


When OMEA and the NEs in the OMEA span are configured for centralized security using
OMEA local RADIUS, the single sign -on feature can be enabled. When the single sign-on
feature is enabled, users can launch NE craft tools from their OMEA session without having
to log into the NE.
The single sign-on feature frees administrators from having to maintain duplicate accounts
for OMEA users on NEs.
Users logging directly into the NE (not through an OMEA desktop) are authenticated by the
OMEA local RADIUS.

ONM AP single sign-on


When centralized authentication is implemented and based on OMEA local RADIUS, users
logged into ONM AP can launch NE craft tools without logging into the NE.

10-4 Course 5122AEN: OMEA Administration and Operations January 2006


Centralized security

Centralized security

2 3

Single sign-on
1. In an OMEA session, a user requests a craft tool
2. The NE requests user account verification from the
the OMEA local RADIUS.
3. The OMEA local RADIUS validates the account for
the NE.
4. The OMEA user is allowed to open a craft interface
to the NE.

Nortel Confidential - for training purposes only 10-5

Optical Manager Element Adapter Release 4.0 10-5


User Authentication

Configuring centralized security

In order to configure centralized security, you must configure the NEs and OMEA to authen-
ticate on either on the OMEA local RADIUS, or an external RADIUS server.

Network element configuration


1. The NE must be configured to use either OMEA local RADIUS, or a remote RADIUS
server. The configuration procedure varies with each type of NE. Consult your NE tech-
nical documentation for instructions on how to configure the NE.

OMEA configuration
Configuring NE login accreditation
You must ensure that when OMEA logs into the NE, the User ID sent to the NE by OMEA
does not fail the password accreditation check.
2. In the Password Panel of the Global Setting window, set the Enforce accreditation
for NE logins field to No.

Setting the RADIUS secret on the OMEA server


A RADIUS secret is a key used to encrypt/decrypt data in the messages that pass between a
RADIUS client (the NE) and server (OMEA RADIUS). In order for the server to authenti-
cate a user on behalf of a client, and for the client to determine that a response came from a
valid server, the secret must be the same on both the client and the RADIUS server.
3. For OMEA local RADIUS, in the RADIUS Secret Panel of the Global Settings win-
dow, set the RADIUS secret. If youre using a remote RADIUS server, set the
RADIUS secret on the remote RADIUS server.

Rediscovering NEs or NE SOC


4. for OM5000 (R6.1 and later), OME 6500 (R 1.1 or later) and CPL
In the NE Properties window, rediscover the NE. OMEA now has an updated data
model of the NE that includes NE centralized authentication by either the OMEA
local RADIUS, or a remote RADIUS server.
or
for OM3000 R11 or later
At the NE, remove the span of control, and then re-enter it with the correct user pass-
word. See the OM3000 technical documentation for detailed instructions.

Configuring user accounts to authenticate on local OMEA RADIUS


5. In the Edit User dialog, ensure user accounts authenticate on either the OMEA local
RADIUS, or an remote RADIUS server, according to how you configure the NEs to
authenticate.

10-6 Course 5122AEN: OMEA Administration and Operations January 2006


Configuring centralized security

Configuring centralized security

Configuring centralized security consists of

1 configuring the NE to communicate with and use the OMEA local RADIUS,
or a remote RADIUS server

2 configuring NE login accreditation on the OMEA server.

3 setting the RADIUS secret on the OMEA local RADIUS or remote RADIUS server

4 for OM5000 (R6.1 and later), OME 6500 (R 1.1 or later) and CPL:
in OMEA, re-discovering the NE

or for OM3000 R11 or later


at the NE, re-discovering the span of control
5 ensure user accounts authenticate on the appropriate RADIUS

Nortel Confidential - for training purposes only 10-7

Optical Manager Element Adapter Release 4.0 10-7


User Authentication

Enabling single sign-on

Single sign-on is enabled for all OMEA users by default when OMEA is installed.
OMEA users can take advantage of the single sign-on feature provided that centralized secu-
rity is configured as described in Configuring centralized security on page 10-6, using
OMEA local RADIUS.
The OMEA Administration window which is launched from the Administration menu
allows you to
view the current single sign-on status
turn the single sign-on feature on or off

Viewing current single sign-on status


Clicking the Retrieve button in the OMEA Administration window loads all current OMEA
configuration settings in the Object(s) found table.
Selecting the SingleSignOn record in the Object(s) found table, displays the current status
of the single sign-on feature in the Setting Details tab.
When the single sign-on feature is on, single sign-on is enabled for all users
When.the single sign-on feature is off, single sign-on is disabled for all users.

Changing single sign-on status


Clicking the Modify button, launches the Edit Config Setting dialog., where single sign-on
can be turned on or off.

10-8 Course 5122AEN: OMEA Administration and Operations January 2006


Enabling single sign-on

Enabling single sign-on

Nortel Confidential - for training purposes only 10-9

Optical Manager Element Adapter Release 4.0 10-9


User Authentication

Single sign-on: application specific considerations


Note: For single sign-on to work with NE craft applications or NE nodal applications, the craft or
nodal application must be installed in a supported location. See the OMEA Security
Administration Guide 450-3121-351, for details regarding NE application configuration and
availability through single sign-on.

Optical Viewer considerations


For single sign-on reach-through to Optical Viewer from OMEA: ensure that the Optical
Viewer client and server software is installed on the workstation where OMEA is installed.

Network element craft tool considerations


OM5000 System Manager Interface (SMI)
Single-sign on functionality is not supported for reach-through from a client OMEA
Desktop installed on a PC to the System Manager interface.
If launched from a standalone Client OMEA Desktop (installed on a Solaris system),
ensure that SMI is installed on that Solaris system.

OME 6500
If launched from a standalone Client OMEA Desktop installed on a PC, ensure that Site
Manager is installed on that PC. (Site Manager must be installed in the correct folder.)
If launched from a standalone Client OMEA Desktop installed on a Solaris system,
ensure that Site Manager is installed in the location as configured in the OMEA Admin-
istration application (on the OMEA server).

CPL
A compatible web browser must be installed on the system from which OMEA is
launched.
If launched from a standalone client OMEA Desktop (installed on a PC), ensure that the
Web browser is installed on that PC system.
Note: If launched from a standalone Client OMEA Desktop (installed on a Solaris system), a
Web browser is already installed on the Solaris system.

10-10 Course 5122AEN: OMEA Administration and Operations January 2006


Single sign-on: application specific considerations

Single sign-on: application specific considerations

Nortel Confidential - for training purposes only 10-11

Optical Manager Element Adapter Release 4.0 10-11


User Authentication

ONM AP reach-through to OMEA single sign-on

ONM AP single sign-on enables the following:


reach-through from AP to OMEA
reach-through from AP to the full NE Craft application
reach-through from AP to specific nodal applications
reach-through from AP to Optical Viewer
(Optical Viewer must be installed)
To enable AP single sign-on functionality, single sign-on must be enabled in both ONM AP
and OMEA.
Single sign-on is disabled in AP by default. For information on configuring the single sign-
on feature and for additional details on single sign-on in ONM AP, refer to the ONM AP
Planning Guide 450-3101-601, and to the ONM AP Security Administration Guide 450-
3101-351.

OM5000 System Manager Interface (SMI)


If SMI is launched from ONM AP (ONM AP reach-through) and a GUI server is not
being used, ensure that the SMI is installed on the OMEA server.
If SMI is being launched from ONM AP (ONM AP reach-through) and a GUI server is
being used, ensure that the SMI is installed on the GUI server.

OME 6500
If Site Manager is launched from ONM AP (ONM AP reach-through), ensure that Site Man-
ager is installed in the location as configured in the OMEA Administration application (on
the OMEA server).

10-12 Course 5122AEN: OMEA Administration and Operations January 2006


ONM AP reach-through to OMEA single sign-on

ONM AP reach-through to OMEA single sign-on

3 2
ONM AP Single sign-on
1. In an ONM AP session, a user requests a craft tool
(residing on the ONM AP desktop session computer)
for a specific NE.
2. The NE requests user account verification from the
the OMEA local RADIUS.
3. The OMEA local RADIUS validates the account for
the NE.
4. The ONM AP desktop computer is allowed to open a
craft interface to the NE.

Nortel Confidential - for training purposes only 10-13

Optical Manager Element Adapter Release 4.0 10-13


User Authentication

External RADIUS server configuration overview

OMEA authentication on an external RADIUS server allows you to leverage RADIUS serv-
ers that you may already have in service.
Only specific, third-party RADIUS software is supported for use with OMEA.
See OMEA Security Administration Guide 450-3121-351, for more information on installing
and configuring third-party RADIUS software for use in conjunction with OMEA.
In OMEA, external RADIUS is enabled in the Global Settings dialog, which is launched
from the Security menu.

Note 1: The OMEA single sign-on feature is not supported for user accounts that are authenti-
cated by an external RADIUS server.
Note 2: When an external RADIUS server is used for OMEA logins, you must maintain at least one
user account that uses local OMEA RADIUS authentication and that has read/write/admin
privileges.

10-14 Course 5122AEN: OMEA Administration and Operations January 2006


External RADIUS server configuration overview

External RADIUS server configuration overview

Configuring centralized security using OMEA external RADIUS consists of

1 enabling an external RADIUS server in OMEA

2 installing the external RADIUS server

3 adding the user accounts to the RADIUS server


(Define all users that require RADIUS authentication on the RADIUS Server as
Native or Local users. See the RADIUS Server administration guide.)

4 adding the OMEA platform as a RAS Client of the RADIUS server


(the shared secret must be the same as the one configured in OMEA).

Nortel Confidential - for training purposes only 10-15

Optical Manager Element Adapter Release 4.0 10-15


User Authentication

Challenge secret

A challenge secret is a key that is used to encrypt/decrypt challenges and responses in the
challenge/response security protocol.
The value entered in this panel is used by OMEA in the challenge response tool to generate
responses to challenges presented from CPL, OME6500, OM5000, and OM3000 NEs.
When a network element is configured in centralized security, configured in challenge mode,
and pointed to the OMEA server, the NE will provide a challenge to the user when it
becomes isolated from the OMEA RADIUS server.

OMEA can generate a quick response to the challenge if both of the following conditions
exist
the user was created in OMEA
the challenge secret entered in the NE is the same string entered in the
Challenge Secret Panel of the Global Settings window
OMEA can also generate a manual key if the user or the Challenge secret is not in OMEA.

Setting the challenge secret on the OMEA server


The challenge secret is set in the Challenge Secret Panel of the Global Settings window.

10-16 Course 5122AEN: OMEA Administration and Operations January 2006


Challenge secret

Challenge secret

Nortel Confidential - for training purposes only 10-17

Optical Manager Element Adapter Release 4.0 10-17


User Authentication

Summary

Now that you have completed this module and its associated activities you can:
explain the role of RADIUS in OMEA user authentication
explain and configure OMEA centralized security
explain the different authentication features available with OMEA local RADIUS and a
remote RADIUS server
explain how the single sign-on feature works and configure OMEA for single sign-on
explain the role of the OMEA challenge secret and configure the challenge secret

10-18 Course 5122AEN: OMEA Administration and Operations January 2006


User Management

Overview

Description
This unit describes in detail the user management and access control features of Optical
Manager Element Adapter (OMEA).

Objectives
After completing this module and its associated activities, you will be able to
explain how resource groups, user groups and user accounts work together to define what
users can and can not do in their OMEA sessions
explain why you need to create or modify an existing OMEA account in order to add
NEs to the OMEA span, and why this has to be done before you can create user accounts
plan resource groups, user groups and user accounts
create, manage and delete
resource groups
user groups
user accounts
configure global account attributes
detect the source of failed OMEA break-in attempts
monitor active OMEA desktop sessions, and terminate sessions

Optical Manager Element Adapter Release 4.0 11-1


User Management

Introduction to user management

Every time you used an application and/or accessed a network element in the first half of this
course it was through a user account configured to give you access to that application and
NE.
OMEA administrators have complete control over
the network elements that OMEA users can access
the tools (applications) that OMEA users can use
the types of tasks that OMEA users can perform with their assigned tools (applications)
These are particularly valuable features in light of how network security has climbed the cor-
porate ladder of operational priorities.
As an administrator you will have to create accounts for OMEA users. OMEA account cre-
ation generally consists on the following tasks:
creating resource groups
creating user groups, and making the user groups members of resource groups
creating a user account and making it a member of a user group

Resource Groups
A resource group is a list of network elements. When a user group is a member of a resource
group, all user account members of the user group have access to all the network elements in
that resource group. User accounts can access only those NEs that are listed in resource
groups that their user groups are members of.

User Groups
A User Group is a holder for user accounts, and must exist before its user accounts can be
created. Once a user account is a member of a user group, that user group defines
the types of network elements its user accounts will be able to access
which OMEA applications its user accounts will be able to access and which
application features the user accounts will be able to use
which resources (network elements) the user accounts will be able to access (by virtue of
membership in one or more resource groups)
A user account can belong to numerous user groups. If a user account is a member of multi-
ple groups, access permissions default to the highest level for a common resource.
NE type access, application access, and resource membership can be modified after the ini-
tial creation of a user group. User accounts can be added and dropped during the lifetime of a
user group.

Users
User accounts can be created only after at least one of the groups they will belong to, exists.

11-2 Course 5122AEN: OMEA Administration and Operations January 2006


Introduction to user management

Introduction to user management

A resource group
Resource group defines which NEs the
members of a user
group can access
OME21 OME42

OME11
OME99

A user group defines which


User group applications member user
accounts open and what
they can do in those
accounts; just view NEs and
servers or view and config-
ure NEs and servers

A user account is a login


User account vehicle for OMEA users. It
inherits all of its application
and NE access privileges
from one or more user
groups.
Nortel Confidential - for training purposes only 11-3

Optical Manager Element Adapter Release 4.0 11-3


User Management

Administrator account management

In the introduction to user management section, we said that user account creation consisted
of the following sequence:
creating a resource group
creating a user group and making it a member of at least one resource group
creating a user account and making it a member of at least one user group
Creation of resource groups requires that NEs be assigned to the groups. Only NEs that are
currently enrolled in the OMEA span can be added to a resource group. However, if youre
the administrator of a newly installed OMEA there are no NEs in the OMEA span.

Before you can create accounts for other users, you must first create an account for yourself
that will allow you to add NEs to the OMEA span. The process for creating this account con-
sists of
creating a user group that provides access to all applications and NE types you need to
access. Be sure to include the NE Management application.
assigning the AllResources resource group to this user group. AllResources is the only
default resource group in OMEA. Without it, you cannot add NEs to the OMEA span.
creating a user account for yourself and making it a member of the user group you just
created
Now you can add NEs to the OMEA span, and proceed with the creation of other user
accounts.

11-4 Course 5122AEN: OMEA Administration and Operations January 2006


Administrator account management

, and

Administrator account management

Nortel Confidential - for training purposes only 11-5

Optical Manager Element Adapter Release 4.0 11-5


User Management

Planning users

Now that NEs are enrolled in the OMEA server span, you can follow this generalized
approach to user management.
Before new user and group accounts are created, an OMEA security administrator must plan
and design the systems user and group schema. A high-level view of this process involves
five steps:
Task analysis:
Analyze and list all the tasks OMEA users will perform. Example tasks could be
monitoring NE alarms
backing up or restoring NE data
Grouping of common tasks:
Break the task list created previously into groups of common tasks - often groupings are
based on job function or level of responsibility in an organization. When finished, assign
relevant descriptive names to the task groups.
Resource group creation:
Create lists of NEs that user group members will be able to access.
User group creation:
Create groups corresponding to the tasks outlined previously. Assign appropriate appli-
cation and NE type access to each newly created group.
User creation:
Create user accounts and make each user a member of the appropriate user group.
Note: Proper planning at this stage can greatly reduce the amount of time required for user man-
agement at a later date.

11-6 Course 5122AEN: OMEA Administration and Operations January 2006


Planning users

Planning users

Planning users and groups

Task analysis

Group common tasks

Create resource groups

Create user groups

Assign users to user groups

Nortel Confidential - for training purposes only 11-7

Optical Manager Element Adapter Release 4.0 11-7


User Management

Resource Administration dialog

User access to OMEA applications, the OMEA server, and NEs are inherited from the user
group that the user is a member of. A user group gives it users access to Networks Elements
through membership in a resource group. A resource group can be all or a subset of the NEs
in the OMEA span. OMEA administrators create, modify and change resource groups
according to the needs of existing and planned user groups.
Resource group creation and management is performed in the Resource Administration
dialog, which is launched from the Security menu.

Finding resource groups


In an environment where numerous resource groups exist, the Retrieval criteria feature of
the Resource Administration dialog, allows you to quickly find user groups by searching
for
Resource Group
Searching on a resource, limits retrieval of user groups that one resource group.
Network Element
Searching on a network element retrieves all resource groups that the network element
belongs to.
User Group
Searching on a user group retrieves all resource groups that the user group is a member of.

Viewing user group attributes


Resource group records matching the retrieval criteria appear in the Object(s) found table.
Each resource group record lists the following for a user group when it is selected:
the user group name
network elements in the resource group
The column hidings in the Object(s) found table can be dragged horizontally to reposition
columns. Records can be sorted on any column by double-clicking column headings. The
records in the Object(s) found table can be saved to a comma-delimited text file.

11-8 Course 5122AEN: OMEA Administration and Operations January 2006


Resource Administration dialog

Resource Administration dialog

Nortel Confidential - for training purposes only 11-9

Optical Manager Element Adapter Release 4.0 11-9


User Management

Resource Administration dialog (continued)

Viewing user group attributes (continued)


The information in the Object(s) found table is also listed in the tabs at the bottom of the
Resource Group Administration dialog.

The General tab


The General tab lists the name of the resource group selected in the Object(s) found table.
The Add..., Edit... and Delete... buttons are visible only when the General tab is selected.
The Edit... and Delete... buttons are enabled only when a resource group is selected in the
Object(s) found table.
The Add... button opens the Add Resource Group dialog. The Edit... button opens Edit
Resource Group dialog that allows you to modify the attributes of the selected resource
group. The Delete...button deletes the selected resource group.

The Network Elements tab


The Network Element tab lists the NEs that are in the resource group selected in the
Object(s) found table.

User Groups tab


The User Groups tab lists the user groups which are members of the resource group selected
in the Object(s) found table.

11-10 Course 5122AEN: OMEA Administration and Operations January 2006


Resource Administration dialog

Resource Administration dialog (continued)

Nortel Confidential - for training purposes only 11-11

Optical Manager Element Adapter Release 4.0 11-11


User Management

Creating and managing resource groups

Creating a new resource group


New resource groups are created in the Add Resource Group dialog by assigning a name to
the new resource group along with user groups and NEs.

Modifying an existing resource group


Existing resource groups can be modified in the Edit Resource Group dialog. New NEs can
be added to the resource group and existing NEs can be deleted. New user groups can be
added to the resource group and existing user groups can be deleted.
Note: The AllResources resource
group is pre-packaged with
OMEA and always lists all
NEs in the OMEA span, The
NEs list for this resource
group cannot be modified.
Only user groups can be
added to, and deleted from
this resource group.

Deleting an existing resource group


Existing resource groups can be deleted from the Resource Administration dialog. Click-
ing the Delete... button launches the Confirm Delete Resource Group dialog. Clicking the
Yes button in this dialog deletes the resource group selected in the Resource Administra-
tion dialog.

11-12 Course 5122AEN: OMEA Administration and Operations January 2006


Creating and managing resource groups

Creating and managing resource groups

Nortel Confidential - for training purposes only 11-13

Optical Manager Element Adapter Release 4.0 11-13


User Management

The User Group Administration dialog

All user group administration functions are either performed in, or launched from the User
Group Administration dialog, which launches from the Security menu. This dialog allows
you to
list all existing user groups and view their attributes
(NE types, applications, users and resource groups)
launch tools for
creating new user groups
modifying existing user groups
deleting existing user groups

Finding user groups


In an environment where numerous user groups exist, the Retrieval criteria feature of the
User Group Administration dialog, allows you to quickly find user groups by searching for
User Group
Searching on a user group, limits retrieval of user groups that one user group.
User
Searching on a user retrieves all user groups that the user belongs to.
Application
Searching on an application retrieves all user groups that provide access to that application.
Resource Group
Searching on a resource group retrieves all user groups that are members of that resource
group.

Viewing user group attributes


User group records matching the retrieval criteria appear in the Object(s) found table.
Each user group record lists the following for a user group when it is selected:
the user group name
users that are members of the user group
the applications which the user group members can access
the resource groups the user group is a member of
The column headings in the Object(s) found table can be dragged horizontally to reposition
columns. Records can be sorted on any column by double-clicking column headings. The
records in the Object(s) found table can be saved to a comma-delimited text file.

11-14 Course 5122AEN: OMEA Administration and Operations January 2006


The User Group Administration dialog

The User Group Administration dialog

Nortel Confidential - for training purposes only 11-15

Optical Manager Element Adapter Release 4.0 11-15


User Management

The User Group Administration dialog (continued)

The information in the Object(s) found table is also listed in the tabs at the bottom of the
User Group Administration dialog. Some of the tabs list information that is not displayed
in the Object(s) found table.

Viewing user group attributes (continued)


The General tab
The General tab lists the NE types that user group members can access and the access level
that members have to each NE type.
The Add..., Edit... and Delete... buttons are visible only when the General tab is selected.
The Edit... and Delete... buttons are enabled only when a user group is selected in the
Object(s) found table.
The Add... button opens a user group creation dialog. The Edit... button opens a user group
modification dialog that allows you to modify the attributes of the selected user group. The
Delete...button deletes the selected user group.

The Applications tab


The Applications tab lists applications that the selected user group permits its users to open.
The corresponding application permissions determine what users can do with that applica-
tion. The permission levels are
RWA (read/write/administer)
Gives the user full application access, allowing the user to
view NE or OMEA server configuration and operational data
configure the NE or OMEA server
W (write)
For NEs, W generally allows users to view NE configuration and operational data. For the
OMEA server, W provides no access to OMEA server configuration and operational data.
R (read)
For NEs, R generally allows users to view NE configuration and operational data. For the
OMEA server, R provides no access to OMEA server configuration and operational data.
See the OMEA Security Administration Guide 450-3121-351 for exact descriptions of appli-
cation permission levels.

Users tab
The Users tab lists the users that are members of the user group selected in
the Object(s) found table.

Resources tab
The Resources tab lists the users that are members of the user group selected in
the Object(s) found table.

11-16 Course 5122AEN: OMEA Administration and Operations January 2006


The User Group Administration dialog (continued)

The User Group Administration dialog (continued)

Nortel Confidential - for training purposes only 11-17

Optical Manager Element Adapter Release 4.0 11-17


User Management

Creating new user groups

New user groups are created in the Add User Group dialog. (The launches from the Add...
button in the Group Administration dialog.) To create a new user group:
assign a unique user group name
set which network element types members of the user group will have access to, and the
type of access they will have
set which applications members of the
user group will have access to, and the
type of access they will have.

You used the native OMEA NE surveil-


lance and configuration applications ( )
in the activities you performed in the first
half of this course. (Some NE applications
such as OSP and OV are independent
applications ( ) that are not packaged
with OMEA)

The remaining applications ( ) are


OMEA administration and security tools
that you will learn about in this and subse-
quent modules.

Some applications ( ) are used for


both NE and OMEA surveillance and con-
figuration. For example, you can view
NE and OMEA server alarms in Alarm
Manager and you can view NE and
OMEA server events in Event Browser.
assign resource groups to the new user
group

11-18 Course 5122AEN: OMEA Administration and Operations January 2006


Creating new user groups

Creating new user groups

Nortel Confidential - for training purposes only 11-19

Optical Manager Element Adapter Release 4.0 11-19


User Management

Modifying and deleting user groups

You will need to add, modify and delete user groups as networks and personnel assignments
evolve with time. Once you have found the user group you want to modify or delete, select it
in the Object(s) found table, and make sure the General tab is selected. This enables the
Edit... and Delete... buttons.

Modifying user groups


User group attributes are modified in the |
Edit User Group dialog, which launches from
the User Group Administration dialog with
the Edit... button.
All the user group attributes you set when you
created the user group can be modified in the
Edit User Group dialog.

Note: When modifying a user group, your modifications will not affect users (that are members of
the user group youve modified) until their next user session. Users that were already
logged in when you modified their user group will go on functioning with their old user
group attributes until they log out and log in again. The next time the user logs in, it will be
with the new user group attributes.

Deleting user groups


To delete a user group, click the Delete... button in the |
User Group Administration dialog, This launches a confirmation dialog.

Clicking the Yes button in the confirmation deletes the user group.
Note: A user group cannot be deleted until all member users of the user group are removed from
the user group.

11-20 Course 5122AEN: OMEA Administration and Operations January 2006


Modifying and deleting user groups

Modifying and deleting user groups

Nortel Confidential - for training purposes only 11-21

Optical Manager Element Adapter Release 4.0 11-21


User Management

The User Administration dialog

The majority or work in user administration consists of user group and resource group main-
tenance. However, you still need to create user accounts that can subscribe to user groups.
User account management consists of:
creating new user accounts (add users)
modifying the account properties of existing users (edit users)
deleting existing user accounts when they are no longer required
All of these activities are performed in or launched from the User Administration dialog.

Launching the User Administration dialog


From the OMEA applications window,
select Security->User Administration.

Finding user accounts


In an environment where numerous user groups exist, the Retrieval criteria feature of the
User Administration dialog, allows you to quickly find user accounts by searching for
User ID
Searching on a user ID, limits retrieval of user groups that one user ID.
User group
Searching on a user group retrieves all users that are members of that user group.
Account Status
Searching on an account status allows you to retrieve user accounts that either enabled or
disabled.
Authentication Type
Searching on a authentication type allows you to retrieves all user accounts according to how
they are authenticated when they log in. User accounts can authenticate on a local server
(co-resident with OMEA) or a remote RADIUS server.

Viewing user attributes


User group records matching the retrieval criteria appear in the Object(s) found table.
Each user group record lists the following attributes for a user group when it is selected:
User ID - displays the user account name
First Name, Last Name and Telephone Number (optional fields) - list user account
identity and contact information
Account Status - can be active or disabled. Disabled user accounts cannot log into
OMEA.
User Groups - lists the user groups the user account is a member of
Authentication - lists the authentication method the user account uses to login

11-22 Course 5122AEN: OMEA Administration and Operations January 2006


The User Administration dialog

The User Administration dialog

Nortel Confidential - for training purposes only 11-23

Optical Manager Element Adapter Release 4.0 11-23


User Management

The User Administration dialog (continued)

Viewing user attributes (continued)


Email - lists the user account E-mail address
The column headings in the Object(s) found table can be dragged horizontally to reposition
columns. Records can be sorted on any column by double-clicking column headings. The
records in the Object(s) found table can be saved to a comma-delimited text file.

The General tab


The General tab displays two pieces of data not listed in the Object(s) found table.
Password Aging -the length of time (in days) before the password expires. This time
period is measured from the day of creation of the user account. When the password
expires, the user must change their password in order to start a new session.

A value of Default in this field indicates that a default global value is being used.
(Default global settings are discussed in a subsequent module.)
Inactivity Period - The amount of time the OMEA user interface will remain open while
inactive. At the end of this idle time, the user interface session logs out the user.

A value of Default in this field indicates that a default global value is being used.
The Add..., Edit... and Delete... buttons are visible only when the General tab is selected.
The Edit... and Delete... buttons are enabled only when a user group is selected in the
Object(s) found table.
The Add... button opens the Add User dialog, which allows you to create new user accounts.
The Edit... button opens Edit User dialog which allows you to modify the attributes of the
selected user account. The Delete... button deletes the selected user account.

The User Group tab


The User Group tab lists user groups that the user is a member of.

11-24 Course 5122AEN: OMEA Administration and Operations January 2006


The User Administration dialog

The User Administration dialog (continued)

Nortel Confidential - for training purposes only 11-25

Optical Manager Element Adapter Release 4.0 11-25


User Management

The User Administration dialog (continued)

Viewing user attributes (continued)


The Account tab.

The Account tab lists the following user account information which is not present in the
Object(s) found table:
Expiry - lists the number of days from user account creation to expiry, or No Expiry.
Intruder Location - lists the IP address from which the selected user last tried to
log into the OMEA server, but failed to do so. This is a valuable tool for identifying the
source of attempted hacks and break-ins into the OMEA span.
Last Login - lists the date and time of the most recent login by the selected user

11-26 Course 5122AEN: OMEA Administration and Operations January 2006


The User Administration dialog

The User Administration dialog (continued)

Nortel Confidential - for training purposes only 11-27

Optical Manager Element Adapter Release 4.0 11-27


User Management

Creating user accounts

The Add User dialog allows an administrator to create new user accounts. The Add User
dialog launches from the Security menu.

To create a new user account, enter data (or set values) in the following fields
User ID: string of alphanumeric characters used to identify a user.
Password: password for newly created user
Password Aging: How long the user password will be valid after this value is set in the
Add User (or Edit User) dialogs. When the password reaches this age, the user must
choose a new password in order to start a new user interface session. This field can be set
to
Default - the value is inherited from the OMEA Global Settings dialog.
disabled - the user password never expires
numeric value
(Limits for the numeric values are set in the Global Settings dialog.)
Inactivity Period: How long a user session can remain inactive before it automatically
logs out the user. This field can be set to

Default - the value is inherited from the OMEA Global Settings dialog.1
disabled - the users sessions never time out due to inactivity
numeric - a value between 1 and 999 minutes
First Name: case sensitive string representing a users first name (optional field)
Last Name: case sensitive string representing a users last name (optional field)
Phone: case sensitive string representing a users phone number (optional field)
Email: case sensitive string representing a users e-mail address (optional field)
Authentication Type: allows you to chose between local and remote RADIUS server
authentication
User Groups...: the group(s) to which this user will belong
Account...: account options, including expiry, status

1.Setting default values in the Global Settings dialog is discussed in a subsequent module in this course.

11-28 Course 5122AEN: OMEA Administration and Operations January 2006


Creating user accounts

Creating user accounts

Nortel Confidential - for training purposes only 11-29

Optical Manager Element Adapter Release 4.0 11-29


User Management

Creating user accounts (continued)

Provisioning guidelines
A number of provisioning guidelines exist for the different attributes of an OMEA user
account:

User ID
must be 6 to 10 characters

Password
must contain at least one alphabetic and one numeric character
following special characters are allowed:!#$%()+-./=<>@[]^{|}~ (providing the secu-
rity administrator provisioned these allowances)
minimum length as provisioned (default 6 characters)
maximum length as provisioned (default 10 characters)
case-sensitive (next case also)

11-30 Course 5122AEN: OMEA Administration and Operations January 2006


Creating user accounts

Creating user accounts (continued)

Nortel Confidential - for training purposes only 11-31

Optical Manager Element Adapter Release 4.0 11-31


User Management

Modifying and deleting user accounts

Modifying user accounts


All of the user account attributes that you configure when creating a new account can be
modified once the account exists. User account modification is performed in the Edit User
dialog.
The Edit User dialog is launched from the User Administration dialog.
Note: When modifying a user account, your modifications will not affect the user until their next
user session. Users that are already logged in when you modify their user account will go
on functioning with their old user account attributes until they log out and log in again. The
next time the user logs in, it will be with the new user account attributes.

This is particularly important to take into consideration when you are changing
Account Status from active to disabled. Disabling the account will not terminate an
in-progress user session.

Deleting users
As a standard security measure, you should delete user accounts when they are no longer
needed or when they may pose a security threat. Removing unneeded user accounts removes
account clutter, making it easier to monitor and maintain working accounts.
Accounts are deleted by selecting them in the Object(s) found table of the User Adminis-
tration dialog, selecting the General tab, and clicking he Delete... button.

11-32 Course 5122AEN: OMEA Administration and Operations January 2006


Modifying and deleting user accounts

Modifying and deleting user accounts

Nortel Confidential - for training purposes only 11-33

Optical Manager Element Adapter Release 4.0 11-33


User Management

Setting global user account attributes

Setting global user account attributes


Global user account attributes are configured in the Global Settings dialog which is
launched form the Security menu. These attributes are set in the General Panel, for all user
accounts on the OMEA server:
Dormant Period
how many days a user account can go unused before that account is disabled.
Login Attempts
the number of failed login attempts before a security violation is declared
(User is locked out and an alarm is raised.)
Lockout period
how long (in seconds) a user account is locked out of the server after an unsuccessful login
attempt
Default Inactivity period
How long (in minutes) an open user session may remain inactive before the OMEA closes
the session.
This value is also the default value for the Inactivity Period field in the Add User and Edit
User dialogs you saw earlier in this module.

Setting limits for global user account attributes


You can configure the numerical limits that appear in the General Panel of
the Global Settings dialog, in the General Panel of the Configure Global Settings dialog.

The Configure Global Settings dialog is also launched form the Security menu

11-34 Course 5122AEN: OMEA Administration and Operations January 2006


Setting global user account attributes

Setting global user account attributes

Nortel Confidential - for training purposes only 11-35

Optical Manager Element Adapter Release 4.0 11-35


User Management

Setting global user account password attributes

Global user account password attributes are configured in the Global Settings dialog which
is launched form the Security menu. These attributes are set in the Password Panel, for all
user accounts on the OMEA server:
Obsolescence period
minimum time before an old password can be reused.
Accreditation period
time during which a password provided by an admin can be used. On expiry, the user must
change the password.
Enforce accreditation for NE logins
determines whether the accreditation period is applied to NE logins.
Password history size
the number of previous passwords that cannot be used as a new password.
Default Password aging
length of time a password can be used before it expires. On expiry, user must change the
password on next login.
Expiration warning
number of days a user is notified prior to password expiration.

Setting limits for global user account password attributes


You can configure the numerical limits that appear in the Password Panel of
the Global Settings dialog, in the Password Panel of the
Configure Global Settings dialog.

11-36 Course 5122AEN: OMEA Administration and Operations January 2006


Setting global user account password attributes

Setting global user account password attributes

Nortel Confidential - for training purposes only 11-37

Optical Manager Element Adapter Release 4.0 11-37


User Management

The OMEA warning banner

When you first install OMEA, a warning banner appears in all user desktop sessions (before
the login dialog that prompts you for a user ID and password.)

Using the Warning Banner panel in the Global Settings window, you can replace the
default text with your own message. For example, you might want to insert an announcement
regarding the date of upcoming changes to the OMEA configuration or changes to the NEs
in the OMEA span.
You can also configure the warning banner to
appear after the user has logged in
not appear at all

11-38 Course 5122AEN: OMEA Administration and Operations January 2006


The OMEA warning banner

The OMEA warning banner

Nortel Confidential - for training purposes only 11-39

Optical Manager Element Adapter Release 4.0 11-39


User Management

Session Management

Using an account with security administration privileges, you can use the
Session Management dialog to
list all open user sessions
end one or more selected sessions
end all sessions
The Session Management dialog launches from the Security menu.

Viewing user sessions


All current OMEA sessions are listed in the Session Management window. The following
data is reported for each user session:
User ID - user account ID. A user ID appears as a separate record for each session that was
launched using the user ID, and is currently active.
Client Address - the IP address of the system from which OMEA was launched
Display Address - the IP address of the system that is hosting the desktop session
Login Time - session start time
Once the Session Management window has been open for some time, its session records
may become outdated. (Sessions listed in the window may have terminated, and new ses-
sions, not listed in the window, may have opened.) The Refresh button updates the records
in this dialog to display current session information.

Ending sessions
To end a session, select the session, then click the End Session(s) button.
To end multiple session, hold down the Control key, while selecting the session, then click
the End Session(s) button.
To end all sessions, click the End All Sessions button.

11-40 Course 5122AEN: OMEA Administration and Operations January 2006


Session Management

Session Management

Nortel Confidential - for training purposes only 11-41

Optical Manager Element Adapter Release 4.0 11-41


User Management

Summary

Now that you have completed this module and its associated activities, you can
explain how resource groups, user groups and user accounts work together to define what
users can and can not do in their OMEA sessions
explain why you need to create or modify an existing OMEA account in order to add
NEs to the OMEA span, and why this has to be done before you can create user accounts
plan resource groups, user groups and user accounts
create, manage and delete
resource groups
user groups
user accounts
configure global account attributes
detect the source of failed OMEA break-in attempts
monitor active OMEA desktop sessions, and terminate sessions

11-42 Course 5122AEN: OMEA Administration and Operations January 2006


OMEA server alarms and events

Overview

Description
This module describes the OMEA alarms and events can be retrieved using OMEA
applications that youre already familiar with.

Objectives
After completing this module, you will be able to
retrieve and acknowledge OMEA alarms
retrieve and acknowledge OMEA events

Optical Manager Element Adapter Release 4.0 12-1


OMEA server alarms and events

Viewing OMEA alarms

In a previous module, you learned how to use the OMEA Alarm Manager to view and
acknowledge network element alarms.
You can also use this application to view and acknowledge OMEA alarms. To limit alarm
records to OMEA server alarms, select the OMEA server in the Resources field.
Some OMEA alarm types are
SECURITY
for example, failed log-in attempts raise alarms
PROCESSING-CAPACITY
for example, when OMEA am server reaches a preset disk space utilization, an alarm
is raised
OAMCOMMS
for example: a loss of association with an NE raises an alarm
For a full description of OMEA server alarm types, see the OMEA Standard Operations
Guide 450-3121-301.

Example: security alarms


The alarm selected in the Results table (opposite page) indicates a possible unauthorized
intrusion attempt at the OMEA server. The alarm details can be viewed in the Alarm Details
tab.

Youll see later in this module, that you can obtain additional information about alarms
because many alarms are also reported OMEA events . . .

12-2 Course 5122AEN: OMEA Administration and Operations January 2006


Viewing OMEA alarms

Viewing OMEA alarms

Nortel Confidential - for training purposes only 12-3

Optical Manager Element Adapter Release 4.0 12-3


OMEA server alarms and events

The OMEA audit trail

The OMEA audit trail is a record of events generated by applications, network elements and
users, stored in a central repository on the OMEA server. Events can be categorized in two
ways:
OMEA events
network element events
Using the Event Browser, an OMEA administrator can sort and view event records, as well
as search for event records matching specified criteria. Subsequent interpretation and analy-
sis of events can assist an administrator with a number of tasks:
assign accountability for user actions
reconstruction / verification of past events
intrusion detection
Any of the above tasks may reveal system, user or application activity that needs to be
addressed.

OMEA server events


In a previous module, you became familiar with the Event Browser window, and how to use
it to monitor NE-generated events. To retrieve OMEA server-generated events, set the Event
Category field to Server.

12-4 Course 5122AEN: OMEA Administration and Operations January 2006


The OMEA audit trail

The OMEA audit trail

Nortel Confidential - for training purposes only 12-5

Optical Manager Element Adapter Release 4.0 12-5


OMEA server alarms and events

Viewing OMEA server events

Any activity affecting an OMEA server is logged as an Optical Manager Element Adapter
event. For example, OMEA server events include:
security (i.e. authorization, user management, provisioning security parameters)
OMEA Backup and Restore (i.e. initialization of an EMS backup, failure of EMS
backup)
Security events are the most important records stored in the Audit Trail. These logs help
identify the root cause of a security problem and may be used to prevent future incidents.

Example: security events


An OMEA alarm (Example: security alarms on page 12-2) indicates that a possible
intruder has attempted to log into an OMEA server. The intruder either guessed (or reconnoi-
tered) a user ID with the name admin, but did not know the password. His attempt at
guessing the password failed, and consequently his login attempt failed.
The failed login not only raises an alarm but is also recorded as an OMEA server security
event.
A summary of the failed login appears in the General tab of the Event Browser window.
Details appear in the Details tab.

The Details tab reports where the unauthorized log in attempt came from. Working with the
data in the Details tab, the OMEA administrator
confirms that individuals with legitimate knowledge of the admin account were not
attempting to login from the reported location at the reported time
passes the information to her IS security contacts, and they track down and prosecute
the responsible individual, thereby averting future threats from this source
For a full description of OMEA server event types and event reporting, see the OMEA Stan-
dard Operations Guide 450-3121-301.

12-6 Course 5122AEN: OMEA Administration and Operations January 2006


Viewing OMEA server events

Viewing OMEA server events

Nortel Confidential - for training purposes only 12-7

Optical Manager Element Adapter Release 4.0 12-7


OMEA server alarms and events

Summary

Now that you have completed this module, you can


retrieve and acknowledge OMEA alarms
retrieve and acknowledge OMEA events

12-8 Course 5122AEN: OMEA Administration and Operations January 2006