HPE Alletra 6000 and NimbleOS | Scan Requirements

Preparation for Scanning HPE Alletra 6000 / Nimble storage systems

StorageGuard collects configuration and security posture data from HPE Alletra 6000 and Nimble systems using read-only API calls and (optionally) CLI commands executed directly on the storage system.
 

The following table lists the scan requirements:

Creating a User Account for Scanning HPE Alletra 6000 / Nimble storage systems

StorageGuard requires a user account with read-only access. The Operator role is recommended.

Operator role capabilities:

• Read-only access to system, configuration, and security settings
• Permission to execute required REST API (GET) calls
• Ability to run non-privileged CLI commands (if SSH is enabled)

NOTE: User administration APIs are available only to admin users, which means some checks can only be executed with Admin privileges.

Creating an Operator User via CLI

Use the following command to create a local user with the Operator role: 

useradmin --add sguard --role operator --full_name "<Full Name>"
 

Parameters:

• --add – Specifies the unique username for the new account
• --role operator – Assigns the Operator (read only) role
• --full_name – Optional display name for the user

Creating an Operator User via Web GUI

The following procedure can be used to create the recommended user:

1. Log in to the HPE Nimble / Alletra Management UI as an Administrator.
2. Navigate to: Administration → Security → Users and Groups.
3. Click Add.
4. Enter the Username and Full Name.
5. From the Role dropdown, select Operator.
6. Set and confirm a password.
7. Click Save.