Wiki Navigation

User Notification Service

User Notification Service

Introduction

The Intel® Active Management Technology (Intel® AMT) User Notification Service (UNS) runs as a daemon on the host of a platform that also has Intel AMT enabled.

The UNS receives messages from Intel AMT and write them to the local OS event log for the purpose of notifying end users of predefined events such as when critical System Defense policies are applied by the ME Firmware. The service is meant to be run as a daemon. Messages from the service will be sent to the system syslog. All UNS messages will be marked with a source of "Intel® AMT".

Required libraries/tools

gSOAP: Version 2.7.9h or newer (http://www.cs.fsu.edu/~engelen/soap.html)
libcurl Version: 7.12.1 or newer (http://curl.haxx.se/)
OpenSSL: Version: 0.9.7a or newer (http://www.openssl.org/source/)
libXML: Version: 2.6.16 or newer (ftp://ftp.gnome.org/pub/GNOME/sources/libxml2/2.6/)
openwsman 1.1.0 or newer (http://www.openwsman.org)
Xerces-C: Version 2.7.0 or newer (http://www.apache.org/dist/xml/xerces-c/source/)

Building and installing UNS

In order to build and install the UNS, you must first build the openwsman library. call:

./configure --prefix=/usr/local
make
make install

note: on 64bit systems add '--libdir=/usr/lib64' option to configure command

To build UNS call
```
./configure
make
```

To install UNS call 'make install'.
To configure UNS to load upon system startup call 'chkconfig --add uns'
To start UNS as daemon call 'service uns start'

The UNS may also be built and run manually (not as a daemon), by first calling 'make', then './uns'. This method doesn't load UNS upon startup, so it may be better suited for testing purposes.

Uninstalling the UNS

To stop UNS daemon call 'service uns stop'
To configure UNS not to load upon system startup call 'chkconfig --del uns'
Call 'make uninstall' to uninstall and remove the UNS.

Usage

Usage: uns [OPTIONS]
Configuration options:
unsUser <username>	Username for local UN realm.
unsPass <password>	Password for local UN realm.
eacUser <username>	Username for local EAC realm.
eacPass <password>	Password for local EAC realm.
cainfo  <file-name>	Full path to the root CA file.
cert    <file-name>	Full path to the client certificate file.
key	 <file-name>	Full path tp the client private key file.

Once the program gets configuration options it will run in "update" mode only. It will store the new configuration and will use them the next time it runs. The service will run only if no command line parameters were given.

To verify successful launch of the service, check syslog messages in /var/log/messages, it should show something similar to the following:

Jul 24 16:42:20 bl003 Intel(R) AMT: Category=UNS:EventId=2000:Message=Intel(R) User Notification Service started.
Jul 24 16:42:23 bl003 Intel(R) AMT: Category=UNS:EventId=2000:Message=Subscribed to local Intel(R) AMT.