Managing FSx for ONTAP resources using NetApp applications - FSx for ONTAP
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Managing FSx for ONTAP resources using NetApp applications

In addition to the Amazon Web Services Management Console, Amazon CLI, and Amazon API and SDKs, you can also use these NetApp management tools and applications to manage your FSx for ONTAP resources:

Important

Amazon FSx periodically syncs with ONTAP to ensure consistency. If you create or modify volumes using NetApp applications, it may take up to several minutes for these changes to be reflected in the Amazon Web Services Management Console, Amazon CLI, API and SDKs.

Signing up for a NetApp account

In order to download some NetApp software, such as BlueXP, SnapCenter, and the ONTAP Antivirus connector, you need to have a NetApp account. To sign up for a NetApp account, perform the following steps:

  1. Go to the NetApp User Registration page and register for a new NetApp user account.

  2. Complete the form(s) with your information. Be sure to select the NetApp Customer/End User access level. In the SERIAL NUMBER field, copy and paste the File System ID for your FSx for ONTAP file system. See the following example:

    
      Select user access level when signing up for a NetApp account.

What to expect after you register

Customers with existing NetApp products will have their NSS account leveled-up to Customer Level access within one business day. Customers new to NetApp will be onboarded using standard business practices, in addition to having their NSS account leveled-up to Customer Level access. Providing the File System ID will help expedite this process. You can check the status of your NSS account by logging into mysupport.netapp.com and navigating to the Welcome page. The access level of your account should be Customer Access.

Using NetApp BlueXP

NetApp BlueXP is a unified control plane that simplifies management experiences for storage and data services across on-premises and cloud environments. BlueXP provides a centralized user interface to manage, monitor, and automate ONTAP deployments in Amazon and on premises. For more information, see the NetApp BlueXP documentation and the NetApp BlueXP for Amazon FSx for NetApp ONTAP documentation.

Note

NetApp BlueXP isn't supported for scale-out file systems.

Using NetApp System Manager with BlueXP

You can manage your Amazon FSx for NetApp ONTAP file systems using System Manager directly from BlueXP. BlueXP lets you use the same System Manager interface that you’re accustomed to using, so you can manage your hybrid multi-cloud infrastructure from a single control plane. You also have access to BlueXP's other functionality. For more information, see the System Manager integration with BlueXP topic in the NetApp ONTAP documentation.

Note

NetApp System Manager isn't supported for scale-out file systems.

Using the NetApp ONTAP CLI

You can manage your Amazon FSx for NetApp ONTAP resources using the NetApp ONTAP CLI. You can manage resources at the file system (analogous to NetApp ONTAP cluster) level, and at the SVM level.

Managing file systems with the NetApp ONTAP CLI

You can run NetApp ONTAP CLI commands on your FSx for ONTAP file system, analogous to running them on a NetApp ONTAP cluster. You access the NetApp ONTAP CLI on your file system by establishing a secure shell (SSH) connection to the file system's management endpoint. You use the fsxadmin password you created when you created the file system to log in. You can find the file system's management endpoint DNS name and IP address in the Amazon FSx console, in the Administration tab of the FSx for ONTAP file system details page, shown in the following graphic.


      The Administration tab of the FSx for ONTAP console with arrows pointing to DNS name and IP address.

To connect to the file system's management endpoint with SSH, use the user fsxadmin and the password that you set when you created the file system. You can SSH into the file system from a client that is in the same VPC as the file system, using the management endpoint IP address or DNS name.

ssh fsxadmin@file-system-management-endpoint-ip-address

The SSH command with sample values:

ssh fsxadmin@198.51.100.0

The SSH command using the management endpoint DNS name:

ssh fsxadmin@file-system-management-endpoint-dns-name

The SSH command using a sample DNS name:

ssh fsxadmin@management.fs-abcdef01234567892.fsx.us-east-2.aws.com
Password: fsxadmin-password This is your first recorded login. FsxIdabcdef01234567892::>

The fsxadmin user has a view at the file system level, which includes all SVMs and volumes in the file system, equivalent to that of a NetApp ONTAP cluster administrator. However, you cannot perform most NetApp ONTAP CLI cluster commands.

Managing SVMs using the NetApp ONTAP CLI

You can run NetApp ONTAP CLI commands on your FSx for ONTAP SVM by establishing a secure shell (SSH) connection to the SVM's management endpoint. You can use the fsxadmin user name and password you created on the SVM's file system, or the vsadmin user name and password, if you specified one when you created the SVM. You can find the SVM's management endpoint DNS name and IP address in the Amazon FSx console, in the Endpoints panel of the Storage virtual machines details page, shown in the following graphic.

The Endpoints panel of the Storage virtual machines details page with arrows pointing to Management DNS name and Management IP address.

To connect to the SVM's management endpoint with SSH, use user name vsadmin and the vsadmin password that you set when you created the SVM. If you did not set a vsadmin password, use user name fsxadmin and the fsxadmin password. You can SSH into the SVM from a client that is in the same VPC as the file system, using the management endpoint IP address or DNS name.

ssh vsadmin@svm-management-endpoint-ip-address

The command with sample values:

ssh vsadmin@198.51.100.10

The SSH command using the management endpoint DNS name:

ssh vsadmin@svm-management-endpoint-dns-name

The SSH command using a sample DNS name:

ssh vsadmin@management.svm-abcdef01234567892fs-08fc3405e03933af0.fsx.us-east-2.aws.com
Password: vsadmin-password This is your first recorded login. FsxIdabcdef01234567892::>

Amazon FSx for NetApp ONTAP supports the NetApp ONTAP CLI commands.

For a complete reference of NetApp ONTAP CLI commands, see the ONTAP Commands: Manual Page Reference.

Using the NetApp ONTAP REST API

When accessing your Amazon FSx for NetApp ONTAP using the NetApp ONTAP REST API with the fsxadmin login, do one of the following:

  • Disable TLS validation.

  • Trust the Amazon certificate authorities (CAs) – The certificate bundle for the CAs in each region can be found at the follow URLs:

    • https://fsx-aws-certificates.s3.amazonaws.com/bundle-aws-region.pem for Public Amazon Web Services Regions

    • https://fsx-aws-us-gov-certificates.s3.us-gov-west-1.amazonaws.com/bundle-aws-region.pem for AmazonGovCloud Regions

    • https://fsx-aws-cn-certificates.s3.cn-north-1.amazonaws.com.cn/bundle-aws-region.pem for Amazon China Regions

For a complete reference of NetApp ONTAP REST API commands, see the NetApp ONTAP REST API Online Reference.