This topic contains the following sections:
BMC TrueSight Capacity Optimization has two security models:
If you select Basic security, the product is installed so that all functionality is available (remote requests from the GUI are honored, Investigate is supported, and so on).
If you select Advanced security, Perform Agent is affected as follows:
In an Advanced Security installation, the remote agent does not support the following features:
The secure computer data must be manually collected and transferred to the managing computer (Gateway Server). BMC recommends grouping all secure computers into a policy file (equivalent to a domain file on UNIX).
A Manager run can handle up to 12 computers. BMC recommends grouping secure computers into groups of 12 or fewer, and setting up a Manager run for each of these groups.
When firewall mode is active, the managing node makes a connection to port 6767 on the remote node. Drill-down requests and graph requests that would normally use port 30000 are routed instead through the established connection on port 6767. Even though port 30000 is not used by the remote computers to send data, the console computer does bind to this port.
If you are behind a firewall environment, and proxy data collection is enabled, the following ports need to be configured on your system:
If you make the range of ports too small, you might run out of available ports.
For more information about proxy data collection, see Collecting Gateway Server data using proxy hosts.
Secure Perform Agent provides support for secure remote computers. Perform the steps in Running Gateway Server with data from secure computers to enable the Gateway Server to process secure computer data. The console processes the data collected from secure computers on a daily basis, but the console cannot collect or transfer data from secure computers.
Gateway Server cannot process data from a mixture of secure and non-secure computers.