NetWorker REST API: RESTAPI 요청을 처리할 때 원격 AUTHC 서버를 사용하는 방법
Summary: NetWorker 데이터 존이 여러 개인 환경에서는 단일 authc 서버를 통해 NetWorker 인증을 구성할 수 있습니다. 이 KB에서는 헤더를 사용하여 API URI에 지정된 NetWorker 서버 대신 지정된 NetWorker 인증 서버를 사용하도록 API 호출에 지시하는 NetWorker REST API 기능을 수행하는 방법을 자세히 설명합니다. ...
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Instructions
NetWorker REST API 인터페이스는 NetWorker 데이터 보호 서비스에 프로그래밍 방식으로 액세스하는 데 사용됩니다. NetWorker 인증 서비스(authc)는 원격 NetWorker Server에 구성되어 있으므로 NetWorker REST API 요청에 인증 정보가 포함되어야 합니다. NetWorker REST API v3 인터페이스 이상 버전에는 사용자 지정 헤더가 있는 authc 서버가 포함될 수 있습니다. 키 값은 authc 서버 IP 주소 또는 FQDN(Fully Qualified Domain Name) 및 authc 포트(기본값=9090)를 제공해야 합니다.
API 클라이언트의 다음 예제에서는 이 헤더를 사용하여 API URI(Uniform Resource Identifier)가 권한 부여를 위해 URI에 지정된 호스트 대신 헤더에 지정된 호스트를 사용하도록 지시하는 방법을 보여 줍니다.
API 클라이언트에 액세스할 수 없는 경우 linux curl 명령으로도 확인할 수 있습니다.
Key: X-NW-AUTHC-BASE-URL
값: AUTHC_IP/AUTHC_FQDN:9090
값: AUTHC_IP/AUTHC_FQDN:9090
API 클라이언트의 다음 예제에서는 이 헤더를 사용하여 API URI(Uniform Resource Identifier)가 권한 부여를 위해 URI에 지정된 호스트 대신 헤더에 지정된 호스트를 사용하도록 지시하는 방법을 보여 줍니다.
이 예에서는 NetWorker Server "nve"의 REST API에 연결합니다.
nve:~ # tail -n 1 /nsr/logs/restapi/restapi.log
2024-02-07 10:51:25.512 INFO [https-jsse-nio-9090-exec-4] c.e.n.w.WebApiResponse -Response status Method: 'GET', URI:'v3/global', Status '200'
그러나 이 요청에 대한 인증은 "networker-mc"에서 처리되었습니다.
root@networker-mc:~# tail -n 1 /nsr/authc/logs/localhost_access_log.2024-02-07.txt
192.168.25.12 - - [07/Feb/2024:10:51:25 -0500] "POST /auth-server/api/v1/sec/authenticate HTTP/1.1" 201 12209
API 클라이언트에 액세스할 수 없는 경우 linux curl 명령으로도 확인할 수 있습니다.
구문:
예:
curl -v -k --header "X-NW-AUTHC-BASE-URL:REMOTE_AUTHC_SERVER_ADDRESS:9090" --user Administrator https://NETWORKER_SERVER_ADDRESS:9090/nwrestapi/v3/global/...
예:
nve:~ # curl -v -k --header "X-NW-AUTHC-BASE-URL:networker-mc:9090" --user Administrator https://nve:9090/nwrestapi/v3/global/
Enter host password for user 'Administrator':
* Trying 192.168.25.12...
* TCP_NODELAY set
* Connected to nve (192.168.25.12) port 9090 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH
* TLSv1.2 (OUT), TLS handshake, Client hello (1):
* TLSv1.2 (IN), TLS handshake, Server hello (2):
* TLSv1.2 (IN), TLS handshake, Certificate (11):
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
* TLSv1.2 (IN), TLS handshake, Server finished (14):
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
* TLSv1.2 (OUT), TLS change cipher, Client hello (1):
* TLSv1.2 (OUT), TLS handshake, Finished (20):
* TLSv1.2 (IN), TLS change cipher, Client hello (1):
* TLSv1.2 (IN), TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384
* ALPN, server did not agree to a protocol
* Server certificate:
* subject: C=US; ST=TX; L=Round Rock; O=DELL; OU=NetWorker; CN=nve.amer.local
* start date: Oct 8 13:55:46 2019 GMT
* expire date: Oct 1 13:55:46 2044 GMT
* issuer: C=US; ST=TX; L=Round Rock; O=DELL; OU=NetWorker; CN=nve.amer.local
* SSL certificate verify result: self signed certificate (18), continuing anyway.
* Server auth using Basic with user 'Administrator'
> GET /nwrestapi/v3/global/ HTTP/1.1
> Host: nve:9090
> Authorization: Basic QWRtaW5pc3RyYXRvcjpBZG1pblBhc3NAMDE=
> User-Agent: curl/7.60.0
> Accept: */*
> X-NW-AUTHC-BASE-URL:networker-mc:9090
>
< HTTP/1.1 200
< Content-Security-Policy: frame-ancestors 'none';script-src' 'self';object-src 'self'
< Strict-Transport-Security: max-age=31536000
< X-XSS-Protection: 1; mode=block
< X-Frame-Options: DENY
< X-Content-Type-Options: nosniff
< Date: Wed, 07 Feb 2024 15:41:33 GMT
< Cache-Control: no-cache,no-store,must-revalidate
< Pragma: no-cache
< Expires: 0
< Content-Type: application/json
< Transfer-Encoding: chunked
< Server: NSR SERVICES for Authentication
<
{"links":[{"href":"https://nve:9090/nwrestapi/v3/global/alerts","title":"List of alert messages"},{"href":"https://nve:9090/nwrestapi/v3/global/auditlogconfig","title":"Audit log configuration"},{"href":"https://nve:9090/nwrestapi/v3/global/auditlogconfigs","title":"Audit log configurations"},{"href":"https://nve:9090/nwrestapi/v3/global/backups","title":"List of backups"},{"href":"https://nve:9090/nwrestapi/v3/global/clients","title":"List of clients"},{"href":"https://nve:9090/nwrestapi/v3/global/cloudboostappliances","title":"List of cloudboost appliances"},{"href":"https://nve:9090/nwrestapi/v3/global/datadomainsystems","title":"List of data domain systems"},{"href":"https://nve:9090/nwrestapi/v3/global/dddevicereplication","title":"DD device replication"},{"href":"https://nve:9090/nwrestapi/v3/global/devices","title":"List of storage devices"},{"href":"https://nve:9090/nwrestapi/v3/global/directives","title":"List of backup directives"},{"href":"https://nve:9090/nwrestapi/v3/global/inspect","title":"Inspect remote/local server"},{"href":"https://nve:9090/nwrestapi/v3/global/jobgroups","title":"List of job groups"},{"href":"https://nve:9090/nwrestapi/v3/global/jobindications","title":"List of job indications"},{"href":"https://nve:9090/nwrestapi/v3/global/jobs","title":"List of jobs"},{"href":"https://nve:9090/nwrestapi/v3/global/jukeboxes","title":"List of jukeboxes"},{"href":"https://nve:9090/nwrestapi/v3/global/labels","title":"List of volume label templates"},{"href":"https://nve:9090/nwrestapi/v3/global/licenseconfig","title":"Server license configuration"},{"href":"https://nve:9090/nwrestapi/v3/global/licenses","title":"List of license templates"},{"href":"https://nve:9090/nwrestapi/v3/global/lockbox","title":"Lockbox resource"},{"href":"https://nve:9090/nwrestapi/v3/global/mediaconfig","title":"Server media configuration"},{"href":"https://nve:9090/nwrestapi/v3/global/mobilestorageunits","title":"Mobile storage units."},{"href":"https://nve:9090/nwrestapi/v3/global/nasdevices","title":"List of NAS devices"},{"href":"https://nve:9090/nwrestapi/v3/global/notifications","title":"List of notification settings"},{"href":"https://nve:9090/nwrestapi/v3/global/nsrcloneconfig","title":"NSR Clone Configuration"},{"href":"https://nve:9090/nwrestapi/v3/global/pools","title":"List of pools"},{"href":"https://nve:9090/nwrestapi/v3/global/probes","title":"List of probes"},{"href":"https://nve:9090/nwrestapi/v3/global/protectiongroups","title":"List of protection groups"},{"href":"https://nve:9090/nwrestapi/v3/global/protectionpolicies","title":"List of protection policies"},{"href":"https://nve:9090/nwrestapi/v3/global/recoverapps","title":"List of recovery applications"},{"href":"https://nve:9090/nwrestapi/v3/global/recovers","title":"List of recover resources"},{"href":"https://nve:9090/nwrestapi/v3/global/rules","title":"List of rules"},{"href":"https://nve:9090/nwrestapi/v3/global/schedules","title":"List of schedules"},{"href":"https://nve:9090/nwrestapi/v3/global/securityconfig","title":"Server security configurati* Connection #0 to host nve left intact
on"},{"href":"https://nve:9090/nwrestapi/v3/global/serverconfig","title":"Server configuration"},{"href":"https://nve:9090/nwrestapi/v3/global/servermessages","title":"List of server messages"},{"href":"https://nve:9090/nwrestapi/v3/global/serverstatistics","title":"Server statistics"},{"href":"https://nve:9090/nwrestapi/v3/global/sessions","title":"List of save/recover sessions"},{"href":"https://nve:9090/nwrestapi/v3/global/storagenodes","title":"List of storage nodes"},{"href":"https://nve:9090/nwrestapi/v3/global/tenants","title":"Restricted data zone protection"},{"href":"https://nve:9090/nwrestapi/v3/global/timepolicies","title":"List of Time Policies"},{"href":"https://nve:9090/nwrestapi/v3/global/usergroups","title":"List of user groups"},{"href":"https://nve:9090/nwrestapi/v3/global/vmware","title":"View of VMware objects"},{"href":"https://nve:9090/nwrestapi/v3/global/volumes","title":"List of volumes"}]}
로그:
인증 서버:
Linux: /nsr/authc/logs
Windows: C:\Program Files\EMC NetWorker\nsr\authc-server\tomcat\logs
REST API(NetWorker Server):
Linux: /nsr/logs/restapi/restapi.log
Windows: C:\Program Files\EMC NetWorker\nsr\logs\restapi\restapi.log
Additional Information
NetWorker: 문제 해결을 위해 AUTHC DEBUG를 활성화하는 방법
Networker: REST API 디버깅
을 활성화하는 방법NetWorker REST API 분류 가이드
Networker: REST API 디버깅
을 활성화하는 방법NetWorker REST API 분류 가이드
Affected Products
NetWorkerProducts
NetWorkerArticle Properties
Article Number: 000011247
Article Type: How To
Last Modified: 04 Mar 2025
Version: 5
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.