Imanager SONMaster V100R017C10 Basic Feature Description

iManager SONMaster
V100R017C10
Basic Feature Description
Issue Draft A
Date 2016-7-15
HUAWEI TECHNOLOGIES CO., LTD.

Copyright © Huawei Technologies Co., Ltd. 2016. All rights reserved.
No part of this document may be reproduced or transmitted in any form or by any means without prior
written consent of Huawei Technologies Co., Ltd.
Trademarks and Permissions
and other Huawei trademarks are trademarks of Huawei Technologies Co., Ltd.
All other trademarks and trade names mentioned in this document are the property of their respective
holders.
Notice
The purchased products, services and features are stipulated by the contract made between Huawei and
the customer. All or part of the products, services and features described in this document may not be
within the purchase scope or the usage scope. Unless otherwise specified in the contract, all statements,
information, and recommendations in this document are provided "AS IS" without warranties, guarantees
or representations of any kind, either express or implied.
The information in this document is subject to change without notice. Every effort has been made in the
preparation of this document to ensure accuracy of the contents, but all statements, information, and
recommendations in this document do not constitute a warranty of any kind, express or implied.
Huawei Technologies Co., Ltd.

Address: Huawei Industrial Base
Bantian, Longgang
Shenzhen 518129
People's Republic of China
Website: http://www.huawei.com
Email: support@huawei.com
Draft A(2015-08-25) Huawei Proprietary and Confidential i

Copyright © Huawei Technologies Co., Ltd.
iManager SONMaster V100R016C10
Basic Feature Description Contents
Contents
1 Basic Features ................................................................................................................................. 1

1.1 Basic Platform .................................................................................................................................................. 1
1.1.1 SNFD-140101 SONMaster Basic Service .............................................................................................. 1
1.1.2 SNFD-140102 Data Backup and Restore................................................................................................ 3
1.1.3 SNFD-140103 ATAE Cluster Solutions .................................................................................................. 4
1.1.4 SNFD-140104 OS Hardening ................................................................................................................. 6
1.1.5 SNFD-140105 Database Security Hardening ......................................................................................... 8
1.1.6 SNFD-161101 Virtualization Platform Solution ..................................................................................... 9
1.2 Security Management ..................................................................................................................................... 12
1.2.1 SNFD-140106 User and Authority Management .................................................................................. 12
1.2.2 SNFD-140107 Security Policy Management ........................................................................................ 12
1.2.3 SNFD-140108 Antivirus Solution ......................................................................................................... 14
1.2.4 SNFD-140109 Log Management .......................................................................................................... 14
1.3 Service Management ...................................................................................................................................... 16
1.3.1 SNFD-140110 OSS Information Management ..................................................................................... 16
1.3.2 SNFD-140111 Engineering Parameter Management ............................................................................ 16
1.3.3 SNFD-140112 Region Template Management ..................................................................................... 17
1.3.4 SNFD-171101 Region Oriented Optimization Management ................................................................ 18
Draft A(2015-08-25) Huawei Proprietary and Confidential ii

Basic Feature Description Basic Feature Description
1 Basic Features
As an industry-leading self-organizing network (SON) solution provided by Huawei, the

SingleSON solution provides functions related to the distributed-SON (D-SON) and
centralized-SON (C-SON). This solution supports optimization on multi-RAT, multi-layer,
and multi-vendor networks and automatically improves operation and maintenance (O&M)
efficiency and network performance.
The SONMaster is an important part of the SingleSON solution and provides centralized SON
functions at network management system (NMS) and element management system (EMS)
layers. The SONMaster is based on the Advanced Telecommunications Application
Environment (ATAE) platform provided by Huawei, and has the following features: large
capacity, high reliability, and flexible scalability. The SONMaster applies to GSM BSS,
UMTS RAN, LTE FDD, and LTE TDD networks.
This document applies to SONMaster V100R017C10 and helps users learn the basic features
of the SONMaster, such as data backup and restore, and user and authority management.
1.1 Basic Platform

1.1.1 SNFD-140101 SONMaster Basic Service
Availability
This feature is introduced in SONMaster V100R014.
Summary
This feature provides the hardware and software environments and the basic services and
management functions required for the proper operation of the SONMaster, such as the
hardware platform, software environment, system running status monitoring, online help and
license management.
Benefits
This feature ensures the proper operation of the SONMaster.
Draft A(2015-08-25) Huawei Proprietary and Confidential 1

Description
 Hardware and software platforms supported by the SONMaster servers: ATAE platform
− Hardware model: ATAE server independently developed by Huawei
− Operating system (OS): SUSE Linux for X86
− Database: Sybase
 SONMaster software integrity check
This function ensures the correctness and integrity of the SONMaster software when the
software is installed on the live network. The software integrity check tool is delivered
with the SONMaster software to verify the digital signature. Before installing or
upgrading the SONMaster, users must run the software integrity check tool to verify the
digital signature of the software. The SONMaster can be installed or loaded only after
the verification is successful. If the verification fails, the SONMaster software is invalid
or lacks integrity.
 Online help
The SONMaster provides online help, which supports hotspot help, full text search, and
so on. Users can view the help information by choosing Help on the menu bar.
 System maintenance e
This function can manage SONMaster server, including the database and the process
status. The running status of SONMaster can be used to find and solve abnormal
problems to ensure the serve working.
− Server management
Check the basic information of SONMaster server.
Check the progress information of SONMaster server.
− SONMaster maintenance tool management
Modify the password of authorized users: Period modifies authorized users password,
which can improve the security.
Record the log of SONMaster operation: record the user's operation in SONMaster.
− Database Status Checking
Checking the status of database such as the database name, server name and status.
− Resource utilization monitor
Monitor the server's resource usage status such as CPU, memory, hard disk, and
database.
− Generation of alarms on server resource usage
Generate and display alarm messages on the U2000 alarm management page when
the usage of the system CPU, memory, disk, and database exceeds the alarm
threshold. By default, the alarm generation function is disabled.
 User session monitoring
The status of all online users on the SONMaster can be monitored in real time. The
monitoring window displays the user name, operating client, login time, and user type
information. Administrators can force a specified user to quit.
 License management
The license controls the management capability of the SONMaster system. License
information consists of resource control items and function control items. Resource
control items control the application scope of specific functions by controlling the
dimensioning of the network managed by the SONMaster. Function control items control
the use of functions by using the switches of the corresponding functions. License

information enables users to know the resources and functions under the control of their
licenses.
In addition to license information, license management provides functions such as
license remote update, license export, and license invalidation.
− License remote update allows users to upload a new license file to the SONMaster.
The SONMaster then automatically enables or disables functions, updates the license
capacity, and updates the validity period as specified in the new license file.
− Users can export the SONMaster license information to a CSV or XLS file and save
the exported file to the SONMaster client.
− Users can invalidate a license on the SONMaster client, which generates an
expiration code. Huawei technical support personnel can apply for a license based on
the expiration code in case of capacity adjustment, supplementary sales, and version
upgrade.
The SONMaster can generate and display alarm messages on the U2000 alarm
management page when the system license expires or network dimensioning exceeds the
capacity range of a resource control item.
Enhancement
SONMaster V100R014 supports Web Client. Do not need to install separate client software.
In this version, the resource usage monitor alarms and license-related alarms are added.
Dependencies
None
1.1.2 SNFD-140102 Data Backup and Restore

Availability
Summary
This feature backs up and restores the application software, OS, database software, and
dynamic data on the SONMaster server.
Benefits
Data backup and restore ensures secure operation of the SONMaster and prevents data loss
caused by exceptions. If the SONMaster encounters an exception, users can restore the
SONMaster to the status of the most recent backup.
Description
The following types of data can be backed up: OS data, database software data, SONMaster
application software data, database data, and data in the dynamic files generated during
SONMaster operation.
When the SONMaster becomes faulty, users can run a script on the SONMaster server to
restore the SONMaster to the state in the most recent backup.

Enhancement
None
Dependencies
None
1.1.3 SNFD-140103 ATAE Cluster Solutions

Availability
Summary
The ATAE cluster solution is an integrated OSS solution developed on Huawei ATAE
platform. The ATAE cluster solution has the following characteristics:
 Highly professional
 Highly integrated
 Carrier-class reliability
 High performance
 Large-scale network management
The ATAE cluster solution helps telecom operators dramatically decrease energy
consumption and save the space of equipment rooms. It also decreases the total cost for
customers and enhances their service operation competitiveness.
Benefits
The ATAE cluster solution has the following benefits:
 An ATAE subrack contains 14 boards, where 12 boards function as servers and 2 boards
function as switch boards. Compared with traditional servers that provide equivalent
management capability, the ATAE cluster solution reduces energy consumption by over
60%, saves 50% of equipment room space, and reduces the number of cables needed for
connecting servers.
 The ATAE cluster solution helps improve O&M efficiency and minimize O&M costs
because it can manage large-scale networks in a centralized manner.
 The ATAE cluster solution provides carrier-class reliability and ensures that services
always run smoothly. The key function modules in an ATAE subrack, such as subrack
power supply units, fans, management units, switch units, storage power supply units,
and controllers use the redundancy design. The ATAE cluster solution uses the N:1
redundancy scheme, which improves hardware usage and reduces hardware costs.
 ATAE boards support plug-and-play, which enables users to replace boards without re-
loading software. In this way, services can be quickly restored when a fault occurs.
 The ATAE cluster solution facilitates capacity expansion by adding a board or expanding
the disk array capacity. In this way, carriers can expand the hardware capacity without
affecting OSS services on the live network, and at the same time reuse the existing
hardware.

 The ATAE cluster solution provides the OSS self-maintenance unit (OSMU), which
implement the following functions in a centralized manner: maintenance of service
boards, device status management, task management, and data backup. This helps
telecom operators improve O&M efficiency.
Description
 Hardware configuration
Table 1-1 describes the configuration of the SONMaster modules in an ATAE subrack.
Table 1-1 Configuration of the SONMaster modules in an ATAE subrack
Module Description
OSMU board Monitors and manages the entire ATAE cluster system.
Processing boards Consists of two service boards, one standby board, and one database
service board.
Other boards Includes two switch boards.
Table 1-2 describes the management capability of an ATAE cluster system.
Table 1-2 Management capability of an ATAE cluster system
Hardware Configuration (No Standby Board) Management Capacity

3*SONMaster service boards + 1* SONMaster database ≤400 equivalent NEs
board
board
board
 Carrier-class high reliability

− N:1 redundancy: The boards in an ATAE subrack are classified into service boards
and database boards. The service boards implement different functions by loading
corresponding service software. One OSS product can be configured with multiple
service boards, and the boards are grouped into a cluster that uses N:1 redundancy.
This means that each OSS product corresponds to a service cluster to implement N:1
redundancy. Only a few services run on the database boards of each OSS product,
and the architectures of database boards are similar. Therefore, these boards share one
standby board, and the entire ATAE cluster system becomes a system that uses N:1
redundancy.
− Hardware redundancy: The key function modules in an ATAE subrack use the
redundancy design. When an active module is faulty, services are immediately
switched over to the standby module. The active/standby mode is 1:1 hot backup.
− The power supply units of the ATAE subrack use 2:2 redundancy and support four –
48 V power supply inputs.
− The management units of the ATAE subrack use 1:1 redundancy.

− The switch units of the ATAE subrack use 1:1 redundancy.

− The fans of the ATAE subrack use 1:1 redundancy.
− The service bus of the ATAE subrack uses dual-star redundancy.
− The service plane and management plane are deployed on different boards. By doing
this, impact on services is minimized.
− The storage system uses RAID 1+0 to protect data.
− The controllers in the storage system use 1:1 redundancy.
− The power supply units in the storage system use 1:1 redundancy.
 Board plug-and-play
All the boards (except the OSMU) involved in the ATAE cluster solution are not
configured with hard disks. The SAN Boot technology is applied to these boards to boot
an OS from disk arrays. When a board is faulty, the SAN Boot technology maps the boot
volume of the faulty board onto a new board that replaces the faulty board to minimize
the impact.
 Intelligent hardware management of the OSMU
Running on an independent board, the OSMU provides centralized maintenance and the
following functions:
− Changing IP addresses in batches
− Changing time in batches
− Modifying routes in batches
− Powering devices on and off in batches
− Changing user passwords in batches
With these functions, the OSMU improves maintenance efficiency.
The OSMU provides a device panel for users to view device status in real time before
performing operations on a device. When an exception occurs, an alarm is automatically
generated and then the alarm information is reported to the U2000 for centralized
hardware alarm monitoring.
The OSMU provides the function of managing tasks in a centralized manner. This
function enables users to view ongoing tasks in real time to check which tasks are
running on the OSMU before performing an important task.
The OSMU provides a built-in centralized backup function. The data on each service
board is backed up to backup media by using the OSMU in a centralized manner. The
OSMU uses disk arrays for backup, which increase backup speed and efficiency and
minimize backup costs.
Enhancement
In this version, smooth capacity expansion is added.
Dependencies
None
1.1.4 SNFD-140104 OS Hardening

Availability

Summary
This feature enhances OS security by taking the following measures:
 Disabling insecure OS services
 Restricting access to files and directories
 Securing user accounts and passwords
 Adjusting OS kernel parameters
When this feature is enabled, the SONMaster displays a security warning message (banner)
when users perform operations related to system security, such as logging in to the
SONMaster through Telnet, FTP, or SSH. In addition, this feature provides system logs
related to Inetd, FTP, cron tasks, and daemon process for users to trace and audit operations
performed on the OS.
Security hardening of an OS is performed by users using a hardening tool. The security
hardening tool conducts OS hardening based on the security hardening policies preset in the
SONMaster.
Benefits
The following measures provided by this feature protect the OS against external attacks and
enhance the security of the SONMaster system:
 Application hardening
 Log tracing and auditing
 Kernel parameter adjustment
 User account and password security hardening
 System access, authentication, and authorization
 File and directory access control
 Warning banners
After users manually trigger the hardening process, the SONMaster automatically conducts
hardening operations. Therefore, OS hardening can be performed even if users are not
familiar with hardening items.
Description
Mandatory hardening items, which are performed by the hardening tool, are as follows:
 Application hardening
This function lowers system security risks and enhances the security of specified services
such as FTP, OpenSSH, SNMP, and Xinetd by restricting the use of system services and
disabling unsecured and unnecessary services.
Hardening policies are as follows:
− Deleting unnecessary daemon processes
− Enabling the SSH encryption algorithm, SSHD accounts, secure SSH authentication,
and FTP security configuration
− Limiting FTP users
− Disabling port 80 and HTTP services such as the cau, AT, and prs-web services
 Log tracing and auditing

The SONMaster provides system logs for users to trace system activities. System logs
include info event logs, cron task logs, daemon process logs, and kernel message logs.
 Kernel parameter adjustment
Kernel parameters determine the network configuration status and rights for applications.
Kernel parameter adjustment enhances the security of OSs by adjusting or configuring
network options, disabling information dumping, and enabling protocol stack protection.
 User account and password security hardening
Securing user accounts and passwords is useful for protecting OSs against malicious
attacks.
User account and password security policies include restricting the use of the su
command, disabling system user accounts, using the hash algorithm to encrypt
passwords, and forcing users to use complex passwords.
 System access, authentication, and authorization
This function enhances the security of OSs by enabling users to set the scope of user
operations and the execution environment of key services.
The policies related to system access, authentication, and authorization include restarting
the system by using the keyboard, setting the timeout of idle sessions, setting the secure
single-user mode, setting telnet warning banners, and restricting the number of login
attempts.
 File and directory access control
All applications and data in the SUSE Linux operating system are stored as files. A
directory that contains files is also regarded as a file. Therefore, it is essential to ensure
the security of files and directories in the SUSE Linux operating systems. This feature
enhances the security of the OS by setting rights for all the directories and files except
the /proc directory.
The policies related to file and directory access control include restricting access to
system directories, files, and executable files, enabling files and directories that have no
owners, restricting the use of the crob command, restricting access to the root PATH
directory, and setting RO mounting.
 Warning banners
Warning banners are messages displayed when users log in to the OS using Telnet, FTP,
or SSH. The messages indicate the penalties for unauthorized access to the OS. The
banners hide OS version information to prevent attacks to the OS.
Enhancement
None
Dependencies
None
1.1.5 SNFD-140105 Database Security Hardening

Availability

Summary
Database-level SONMaster security is enhanced because the Sybase database is hardened in
the following aspects:
 Locking unnecessary default user accounts
 Clearing account rights
 Improving password complexity
 Minimizing installation
Benefits
Hardening both the database and the OS helps decreases system vulnerabilities, protects the
SONMaster against various attacks, and enhances the security of the OSS.
Description
 Database account and password protection
This function protects the user accounts and passwords in the database by taking the
following measures:
− Locking unnecessary default user accounts
− Clearing redundant account rights
− Improving password complexity
− Using high-level password encryption algorithms
 Rights and session management
This function allows users to clear account rights.
 System settings
This function uses the following policies:
− Ensuring the confidentiality and integrity of messages during transmission
− Encrypting data for storage
− Minimizing software installation
− Deleting redundant components
− Disabling the Java function
Enhancement
None
Dependencies
None
1.1.6 SNFD-161101 Virtualization Platform Solution

Availability
This feature was introduced in SONMaster V100R016C10.

Summary
It is used to deploy the SONMaster based on the universal x86-based hardware platform and
virtual resources provided by Cloud OS. The SONMaster based on the virtual platform
features easy integration, large capacity, high reliability, and easy maintenance. In addition, it
follows the information and communications technology (ICT) convergence trend and
provides the most competitive solution for telecom operators.
Benefits
 Reduced total cost of operation (TCO)
The virtualization platform decouples software and hardware of traditional telecom NEs
by replacing the dedicated hardware with the standard x86 servers and general storage
and network devices, and migrating servers and storage and network devices to the cloud
platform using the cloud computing technology. As cloud nodes are extremely low-cost,
device costs and power consumption decrease significantly. Automatic and centralized
management of the cloud improves management and operation efficiency, and reduces
OPEX. Compared with the traditional system, the universality of the cloud increases
resource usage more significantly.
 Shortened deployment duration
On telecom networks with the virtualized architecture, site deployment and capacity
expansion become extremely simple and do not require complex site surveys and
hardware installation. As for service deployment, you only need to install and
commission corresponding software after applying for sufficient cloudified resources
(computing, storage, and network resources) as required. Compared with the traditional
telecom NE deployment, the whole process saves about 80% time.
Description
In 2012, 13 global telecom operators provide the network function virtualization (NFV)
assumption. This solution decouples the software and hardware of traditional telecom NEs,
replaces dedicated hardware devices with standardized x86 servers, general storage, and
network hardware devices, implements resource sharing and flexible allocation, thereby
implementing NFV, which is also known as cloudification. The NFV technology helps
implement flexible software loading and configuration of telecom NEs, thereby accelerating
the NE deployment and adjustment, simplifying the service deployment, and improving the
unification, universalization, and adaptability of network devices.
Based on the SONMaster service and architecture characteristics, Huawei provides the
virtualization platform solution first. This solution re-plans IT resources by software,
implementing the dynamic allocation and flexible scheduling of IT resources, improving IT
resource utilization, and turning IT resources into infrastructures. These IT resources include
CPU, memory, disk, network interface card (NIC), and application programs. As the earliest
cloud OS product, the VMware is widely applied. The SONMaster supports only the
VMware.
Typical virtualization includes server virtualization, storage virtualization, and network
virtualization.
 Server virtualization virtualizes one computer (physical host) to multiple logical
computers, which is also known as virtual machines (VMs). A computer simulates
multiple VMs working in parallel. Each VM runs different OSs, where all application
programs running in independent space. By doing so, the working efficiency of the
computer significantly improves.

 Storage virtualization adds a virtualization layer between the physical storage system and
servers to manage all storage systems. The virtualization of storage devices implements
the separation between servers and storage hardware. For example, adding, deleting,
switching, splitting, and jointing of storage hardware are insensitive to servers.
 Network virtualization integrates different types of physical networks based on server
virtualization to provide virtualized networks for service running. Integrated physical
networks include Ethernet, fiber channel storage area network (FCSAN), and Internet
Protocol storage area network (IP SAN). Network virtualization provides a perceivable
virtual network for VMs. The network perceives VM migration and replication and
thereby adjusts itself automatically.
Based on the preceding technologies, Huawei provides the virtualization platform solution in
the layered cloud scenario.
 Virtualization platform solution network design
Huawei completes the network design with the telecom operator, cooperates with the
telecom operator to provided related resource, storage, and network planning advice, and
provides important inputs for the telecom operator to complete the network design at the
physical layer. Based on network design requirements, the telecom operator prepares the
virtual layer environment, including computing, storage, and network resources, for
application deployment.
Based on the network design, Huawei provides the packed vAPP template. In the
template, the OS and database have been pre-installed, related security hardening has
been performed for the OS and database, and optimization parameters and drivers related
to the virtual layer have been built-in. The template has passed the strict compatibility
test to ensure that it can be deployed safely in the virtual environment of the telecom
operator. After obtaining the vAPP template, the telecom operator can import the vAPP
template into the virtual environment using vCenter as planned. After the basic OS and
database environment is prepared, you can install service software.
 Virtualization system O&M unit
Similar to the ATAE platform, the virtualization platform solution provides the virtual
OSS self-maintenance unit (vOSMU), which facilitates the central maintenance of each
VM. The vOSMU can change IP addresses, time, routes, and user passwords in batches
for multiple service VMs, improving maintenance efficiency. The vOSMU provides the
centralized backup and restoration function for dynamic data, application programs, and
OSs. The vOSMU saves backup dynamic data on the telecom operator's backup servers,
and the backup of the data is triggered by service systems. The backup of application
programs and OSs are triggered by the vOSMU.
 Management capacity
Currently, the SONMaster virtual cluster system supports the following networking
modes according to the maximum number of equivalent NEs:400 equivalent NEs;1200
equivalent NEs;2000 equivalent NEs. A telecom operator can select the management
capacity based on the network scale.
Enhancement
None
Dependencies
None

1.2 Security Management

1.2.1 SNFD-140106 User and Authority Management
Availability
Summary
This feature helps manage users and roles of the SONMaster and their related rights to
achieve centralized user management and authentication.
Benefits
User management enables the SONMaster to manage users and passwords and role
management allows the SONMaster to assign rights to users to ensure systematic authority
management.
Description
 User management is used to:
Create users
Delete users
View and modify user properties
Change user passwords
Disable and enable users
 Role management (authority management)
A role is a set of rights and is used for assigning rights to users. After an OSS user is
planned, a role must be set for the user to ensure that the user has related rights to
manage devices.
Role management is used to create, modify, and delete roles and to view role properties.
Role properties include the role name, user name, operation, and description.
Enhancement
None
Dependencies
None
1.2.2 SNFD-140107 Security Policy Management

Availability

Summary
This feature allows users to set password policies, account policies, and login control for user
login.
Benefits
Security policy management provides complete password policies and account policies. It
protects passwords from being illegally obtained against brute force attacks and prevents
illegal logins. By using login control, users can ensure secure operation of the SONMaster.
Description
 Password policies cover the following aspects:
− Minimum length of a password.
− Password repeat times (number).
− Maximum number of occurrences of a character in a password.
− Minimum time interval between password change attempts.
− Whether a password must contain at least one special character.
− Password validity: contains the duration of validity (days) of a password and the
period (days) during which a reminder for password change will be sent to the user in
advance.
 Account policies cover the following aspects:
− Minimum length of a user name.
− Account disabling policy: indicates that if a user does not log in to the SONMaster
for a specified period, the SONMaster disables the user account.
− Account lock policy: indicates that a user is automatically locked for a specified
period after the maximum number of failed login attempts within a specified period is
exceeded.
 Login control includes login period control and login IP address control
− Login period control: indicates that a user is not allowed to log in to the SONMaster
beyond the specified login period.
− Login IP address control: indicates that a user is allowed to log in to the SONMaster
only on a client with a specified IP address. An unauthorized user cannot log in to the
SONMaster server even if this user cracks the user name and password. This further
improves SONMaster security.
 Automatic user logout
The SONMaster provides automatic user logout to prevent unauthorized operations on
the SONMaster during the absence of a user. A user is logged out automatically if this
user does not perform any operations over a specified period.
Enhancement
None
Dependencies
None

1.2.3 SNFD-140108 Antivirus Solution

Availability
Summary
Virus attacks are a major security threat faced by the OSS network. Huawei provides an
antivirus solution by deploying third-party software on the SONMaster that runs on the SUSE
Linux operating system.
Benefits
Antivirus solution reduces the risk of virus attacks against the SONMaster servers. It also
increases the antivirus capability and enhances security of the SONMaster.
Description
ServerProtect for Linux 3.0 and Control Manager are deployed to provide the antivirus
solution for SONMaster servers that run on the SUSE Linux operating system.
Telecom operators only need to purchase the third-party hardware and software in the
antivirus solution once to use the antivirus solution in all of the OSS products, including the
U2000, SONMaster, PRS, and Nastar.
Enhancement
None
Dependencies
ServerProtect for Linux 3.0, and Control Manager are commercial antivirus software.
Therefore, telecom operators must purchase them separately.
1.2.4 SNFD-140109 Log Management

Availability
Summary
The SONMaster records system operation information in logs and provides functions
including log query, log statistics, and log export. This helps users monitor and audit the
operating status of the SONMaster and operation execution.
Benefits
This feature helps users understand the operating status of the SONMaster, view operation
records, and locate system faults. It also helps users audit and trace the key optimization
operations perform on SONs.

Description
Information generated during SONMaster operation is recorded in logs. Logs are classified
into operation logs, system logs, security logs, and SON logs.
Operation logs record all user operations. The following information is recorded in operation
logs: operation name, level, user name, operation time, operation client, operation object,
operation result, and details.
System logs record important events of the SONMaster, such as operation exceptions and
network faults. Users can analyze system logs to understand the operating status of the
SONMaster and then rectify faults. The following information is recorded in system logs:
level, source, time, operation result, and details.
Security logs record events that have impact on system security. These events include:
 Account management events (add, delete, and modify attribute)
 Account login events(log in, log out of, lock, and unlock)
The following information is recorded in security logs: security event, risk level, operation
user, user type, operation time, operation terminal, operation object, operation result, and
details.
SON logs record the key events during network optimization, such as setting parameters,
starting tasks, and delivering optimization advice. The following information is recorded in
SON logs: log class, event name, generation time, event source object, and event description.
The SONMaster provides the following functions for logs:
 Log collection and storage
SONMaster logs are saved in the database.
 Log query
The SONMaster enables users to query the log information that meets the query criteria
set by users. It also allows users to query required log information by setting various
search criteria. For easy analysis, query results can be saved as a file. The search criteria
supported by different logs are as follows:
− Operation logs: operation user, operation terminal, operation result, time range,
details, operation name, and operation object.
− System logs: source, level, operation result, time range, and details.
− Security logs: operation user, operation terminal, operation result, time range, details,
security event, and operation object.
− SON logs: log class, event name, time range.
 Log statistics
The SONMaster collects statistics about the logs and displays the statistical results in
tables.
By using this function, users can quickly obtain the optimization result, such as the
optimization object and optimization types.
Enhancement
None

Dependencies
None
1.3 Service Management

1.3.1 SNFD-140110 OSS Information Management
Availability
Summary
This feature provides OSS and NE information management functions and allows OSSs and
NEs provided by Huawei or other vendors to connect to the SONMaster.
Benefits
Multiple OSSs can be connected to the SONMaster and users can select certain NEs managed
by the OSSs to optimize the network as required.
Description
This feature provides the following functions:
 OSS information management
This function allows users to create, modify, and delete OSS server information such as
the IP addresses, user names, and passwords of OSS servers.
 NE information management
After an OSS is connected to the SONMaster, users can view the information about the
NEs managed by the OSS. Users can also select required NEs and use the SON services
provided by the SONMaster to optimize the network.
Enhancement
None
Dependencies
None
1.3.2 SNFD-140111 Engineering Parameter Management

Availability

Summary
SONMaster service analysis is performed based on engineering parameters such as latitude
and longitude, azimuth, and mechanical downtilt angle. This feature enables users to import,
export, query and synchronize engineering parameters.
Benefits
Engineering parameters such as latitude and longitude, azimuth, and mechanical downtilt
angle are used during SONMaster network optimization calculation. This feature enables
users to manage these parameters.
The SONMaster allows users to load engineering parameters on electronic maps, helping
users view and locate network problems, and evaluate optimization advice quickly.
Description
 Importing engineering parameters
This function allows users to import engineering parameters into the SONMaster in CSV
or XLSX files as required. The SONMaster checks the imported engineering parameters.
 Exporting engineering parameters
This function allows users to export engineering parameters from the SONMaster in
CSV or XLSX files as required. This helps users maintain engineering parameters in
offline mode.
 Querying engineering parameters
This function allows users to query and view engineering parameters saved on the
SONMaster.
 Synchronizing engineering parameters
The SONMaster can automatically synchronize engineering parameters with the CME.
Users can also manually trigger the SONMaster to synchronize engineering parameters
with the CME.
Enhancement
The SONMaster supports automatic or manual synchronization of engineering parameters
with the CME.
Dependencies
Automatic synchronization of engineering parameters of the SONMaster depends on the
corresponding synchronization feature of the CME.
1.3.3 SNFD-140112 Region Template Management

Availability

Summary
This feature allows users to group NEs managed by the SONMaster based on users' SON
service requirements. Each group contains several NEs or cells. Such a group is referred to as
an optimization region. Preset optimization regions can be directly used for SON feature
deployment.
Benefits
A large number of NEs exist on the live network, and users can divide the network into
multiple region templates as required. When deploying SON services, users can select a
region template to optimize the network. By doing this, users do not have to select a large
number of NE objects each time they perform operations.
Description
 Adding a region template
This function allows users to select NEs or cells to create a region template. An NE or
cell can be added to multiple region templates.
 Modifying a region template
This function allows users to modify a region template. Users can add NEs or cells to or
delete NEs or cells from a specified region template.
 Deleting a region template
This function allows users to delete a region template.
 Querying a region template
This function allows users to query a region template and view the details about the
template.
Enhancement
None
Dependencies
None
1.3.4 SNFD-171101 Region Oriented Optimization Management

Availability
This feature is introduced in SONMaster V100R017C10.
Summary
This feature provides region-based O&M, allowing the SONMaster to optimize networks by
region. This feature is available from SONMaster V100R017C10.

Benefits
The region-based O&M method provided by this feature better conforms to users' O&M
habits and allows users to observe the health and optimization status of each region in greater
detail. This feature also allows users to set different optimization policy parameters in
different scenarios, thereby maximizing gains from SON feature.
Description
 Creating an optimization region
Users can create regions through base station controllers on GSM and UMTS networks
or through eNodeBs on LTE networks. A cell can be included in only one region. Users
can use this function to divide the network managed by the SONMaster into multiple
regions.
 Modifying an optimization region
Users can manually modify the scope of an existing region. In addition, the SONMaster
automatically adds new cells to the region that are within the optimization scope.
 Deleting an optimization region
Users can manually delete an existing region on the condition that all the optimization
tasks in this region have been stopped.
 Viewing an optimization region
Users can view the overall optimization status of each region and monitor the network
health status through major KPIs.
Enhancement
None
Dependencies
None

Basic Feature Description 0Acronyms and Abbreviations
Acronyms and Abbreviations
A
ATAE Advanced Telecommunications Application Environment
C
C-SON Centralized SON
D
D-SON Distributed SON
F
FCSAN fiber channel storage area network
I
ICT information and communications technology
IP SAN Internet Protocol storage area network
G
GSM Global System for Mobile Communications
L
LTE Long Term Evolution
N
NFV network function virtualization
NIC network interface card

Basic Feature Description 0Acronyms and Abbreviations
R
RAT radio access technology
S
SON self-organizing network
T
TCO total cost of operation
U
UMTS Universal Mobile Telecommunications System
U2000 iManager U2000
V
VM virtual machine
vOSMU virtual OSS self-maintenance unit


Imanager SONMaster V100R017C10 Basic Feature Description

Загружено:

Сведения о документе

Оригинальное название

Авторское право

Доступные форматы

Поделиться этим документом

Поделиться или встроить документ

Параметры публикации

Этот документ был вам полезен?

Это неприемлемый материал?

Авторское право:

Доступные форматы

Imanager SONMaster V100R017C10 Basic Feature Description

Загружено:

Авторское право:

Доступные форматы

iManager SONMaster

HUAWEI TECHNOLOGIES CO., LTD.

Trademarks and Permissions

Huawei Technologies Co., Ltd.

Draft A(2015-08-25) Huawei Proprietary and Confidential i

1 Basic Features ................................................................................................................................. 1

Draft A(2015-08-25) Huawei Proprietary and Confidential ii

As an industry-leading self-organizing network (SON) solution provided by Huawei, the

1.1 Basic Platform

Draft A(2015-08-25) Huawei Proprietary and Confidential 1

Draft A(2015-08-25) Huawei Proprietary and Confidential 2

1.1.2 SNFD-140102 Data Backup and Restore

Draft A(2015-08-25) Huawei Proprietary and Confidential 3

1.1.3 SNFD-140103 ATAE Cluster Solutions

Draft A(2015-08-25) Huawei Proprietary and Confidential 4

Table 1-1 Configuration of the SONMaster modules in an ATAE subrack

Table 1-2 describes the management capability of an ATAE cluster system.

Table 1-2 Management capability of an ATAE cluster system

Hardware Configuration (No Standby Board) Management Capacity

 Carrier-class high reliability

Draft A(2015-08-25) Huawei Proprietary and Confidential 5

− The switch units of the ATAE subrack use 1:1 redundancy.

1.1.4 SNFD-140104 OS Hardening

Draft A(2015-08-25) Huawei Proprietary and Confidential 6

Draft A(2015-08-25) Huawei Proprietary and Confidential 7

1.1.5 SNFD-140105 Database Security Hardening

Draft A(2015-08-25) Huawei Proprietary and Confidential 8

1.1.6 SNFD-161101 Virtualization Platform Solution

Draft A(2015-08-25) Huawei Proprietary and Confidential 9

Draft A(2015-08-25) Huawei Proprietary and Confidential 10

Draft A(2015-08-25) Huawei Proprietary and Confidential 11

1.2 Security Management

1.2.2 SNFD-140107 Security Policy Management

Draft A(2015-08-25) Huawei Proprietary and Confidential 12

Draft A(2015-08-25) Huawei Proprietary and Confidential 13

1.2.3 SNFD-140108 Antivirus Solution

1.2.4 SNFD-140109 Log Management

Draft A(2015-08-25) Huawei Proprietary and Confidential 14

Draft A(2015-08-25) Huawei Proprietary and Confidential 15

1.3 Service Management

1.3.2 SNFD-140111 Engineering Parameter Management

Draft A(2015-08-25) Huawei Proprietary and Confidential 16

1.3.3 SNFD-140112 Region Template Management

Draft A(2015-08-25) Huawei Proprietary and Confidential 17

1.3.4 SNFD-171101 Region Oriented Optimization Management

Draft A(2015-08-25) Huawei Proprietary and Confidential 18

Draft A(2015-08-25) Huawei Proprietary and Confidential 19

Acronyms and Abbreviations

Draft A(2015-08-25) Huawei Proprietary and Confidential 20

Draft A(2015-08-25) Huawei Proprietary and Confidential 21

Вам также может понравиться