OpenVMS Cluster Systems - OpenVMS Systems - HP

More documents

Recommendations

Info

Preparing a Shared Environment 5.8 Files Relevant to OpenVMS Cluster Security Table 5–3 (Cont.) Security Files File Name Contains SYSUAF.DAT [required] 5–20 Preparing a Shared Environment The system user authorization file. It is maintained by the OpenVMS Authorize utility and is modifiable via the $SETUAI system service. When more than one copy of this file exists, you must ensure that the SYSUAF and associated $SETUAI item codes are synchronized for each user record. The following table shows the fields in SYSUAF and their associated $SETUAI item codes. Internal Field Name $SETUAI Item Code UAF$R_DEF_CLASS UAI$_DEF_CLASS UAF$Q_DEF_PRIV UAI$_DEF_PRIV UAF$B_DIALUP_ACCESS_P UAI$_DIALUP_ACCESS_P UAF$B_DIALUP_ACCESS_S UAI$_DIALUP_ACCESS_S UAF$B_ENCRYPT UAI$_ENCRYPT UAF$B_ENCRYPT2 UAI$_ENCRYPT2 UAF$Q_EXPIRATION UAI$_EXPIRATION UAF$L_FLAGS UAI$_FLAGS UAF$B_LOCAL_ACCESS_P UAI$_LOCAL_ACCESS_P UAF$B_LOCAL_ACCESS_S UAI$_LOCAL_ACCESS_S UAF$B_NETWORK_ACCESS_P UAI$_NETWORK_ACCESS_P UAF$B_NETWORK_ACCESS_S UAI$_NETWORK_ACCESS_S UAF$B_PRIME_DAYS UAI$_PRIMEDAYS UAF$Q_PRIV UAI$_PRIV UAF$Q_PWD UAI$_PWD UAF$Q_PWD2 UAI$_PWD2 UAF$Q_PWD_DATE UAI$_PWD_DATE UAF$Q_PWD2_DATE UAI$_PWD2_DATE UAF$B_PWD_LENGTH UAI$_PWD_LENGTH UAF$Q_PWD_LIFETIME UAI$_PWD_LIFETIME UAF$B_REMOTE_ACCESS_P UAI$_REMOTE_ACCESS_P UAF$B_REMOTE_ACCESS_S UAI$_REMOTE_ACCESS_S UAF$R_MAX_CLASS UAI$_MAX_CLASS UAF$R_MIN_CLASS UAI$_MIN_CLASS UAF$W_SALT UAI$_SALT UAF$L_UIC Not applicable Caution: Failure to synchronize multiple copies of the SYSUAF files properly may result in unexplained login failures and unauthorized system access. For instructions on maintaining a single copy, refer to Section 5.10.1. Reference: Appendix B discusses creation and management of the various elements of an OpenVMS Cluster common SYSUAF.DAT authorization database. (continued on next page)
Table 5–3 (Cont.) Security Files File Name Contains SYSUAFALT.DAT [required] †VMS$OBJECTS.DAT [required] VMS$PASSWORD_ HISTORY.DATA [recommended] VMSMAIL_PROFILE.DATA [recommended] VMS$PASSWORD_ DICTIONARY.DATA [recommended] †VAX specific Preparing a Shared Environment 5.8 Files Relevant to OpenVMS Cluster Security The system alternate user authorization file. This file serves as a backup to SYSUAF.DAT and is enabled via the SYSUAFALT system parameter. When more than one copy of this file exists, all copies must be updated after any change to any authorization records in this file. Note: This file may not exist in all configurations. Caution: Failure to synchronize multiple copies of this file properly may result in unexplained login failures and unauthorized system access. On VAX systems, this file is located in SYS$COMMON:[SYSEXE] and contains the clusterwide object database. Among the information contained in this file are the security profiles for all clusterwide objects. When more than one copy of this file exists, all copies must be updated after any change to the security profile of a clusterwide object or after new clusterwide objects are created. Clusterwide objects include disks, tapes, and resource domains. OpenVMS Cluster system managers should ensure that the security object database is present on each node in the OpenVMS Cluster by specifying a file name that resolves to the same file throughout the cluster, not to a file that is unique to each node. The database is updated whenever characteristics are modified, and the information is distributed so that all nodes participating in the cluster share a common view of the objects. The security database is created and maintained by the audit server process. Rule: If you relocate the database, be sure the logical name VMS$OBJECTS resolves to the same file for all nodes in a common-environment cluster. To reestablish the logical name after each system boot, define the logical in SYSECURITY.COM. Caution: Failure to synchronize multiple copies of this file properly may result in unauthorized access to protected objects. The system password history database. It is maintained by the system password change facility. When more than one copy of this file exists, all copies should be updated after any password change. Caution: Failure to synchronize multiple copies of this file properly may result in a violation of the system password policy. The system mail database. This file is maintained by the OpenVMS Mail utility and contains mail profiles for all system users. Among the information contained in this file is the list of all mail forwarding addresses in use on the system. When more than one copy of this file exists, all copies should be updated after any changes to mail forwarding. Caution: Failure to synchronize multiple copies of this file properly may result in unauthorized disclosure of information. The system password dictionary. The system password dictionary is a list of English language words and phrases that are not legal for use as account passwords. When more than one copy of this file exists, all copies should be updated after any sitespecific additions. Caution: Failure to synchronize multiple copies of this file properly may result in a violation of the system password policy. (continued on next page) Preparing a Shared Environment 5–21
Page 1 and 2:
OpenVMS Cluster Systems Order Numbe
Page 3 and 4:
Contents Preface ..................
Page 5 and 6:
4 The OpenVMS Cluster Operating Env
Page 7 and 8:
6.5.4 Disk Rebuild Operation ......
Page 9 and 10:
10 Maintaining an OpenVMS Cluster S
Page 11 and 12:
D Sample Programs for LAN Control D
Page 13 and 14:
G NISCA Transport Protocol Channel
Page 15 and 16:
Tables 7-3 Clusterwide Generic Prin
Page 17:
F-6 Channel Formation .............
Page 20 and 21:
Appendix C provides troubleshooting
Page 22 and 23:
xxii bold text This typeface repres
Page 24 and 25:
Introduction to OpenVMS Cluster Sys
Page 26 and 27:
Page 28 and 29:
Page 30 and 31:
Page 32 and 33:
Page 34 and 35:
Page 36 and 37:
OpenVMS Cluster Concepts 2.1 OpenVM
Page 38 and 39:
Page 40 and 41:
OpenVMS Cluster Concepts 2.3 Ensuri
Page 42 and 43:
OpenVMS Cluster Concepts 2.3 Ensuri
Page 44 and 45:
OpenVMS Cluster Concepts 2.4 State
Page 46 and 47:
Page 48 and 49:
OpenVMS Cluster Concepts 2.6 Synchr
Page 50 and 51:
OpenVMS Cluster Concepts 2.8 Disk A
Page 53 and 54: 3 OpenVMS Cluster Interconnect Conf
Page 55 and 56: OpenVMS Cluster Interconnect Config
Page 67 and 68: 4 The OpenVMS Cluster Operating Env
Page 69 and 70: Table 4-1 Information Required to P
Page 71 and 72: Table 4-1 (Cont.) Information Requi
Page 73 and 74: Table 4-2 Installing Layered Produc
Page 75 and 76: The OpenVMS Cluster Operating Envir
Page 83 and 84: 5 Preparing a Shared Environment In
Page 85 and 86: Preparing a Shared Environment 5.2
Page 91 and 92: Table 5-2 Alias Collisions and Outc
Page 101: Table 5-3 (Cont.) Security Files Fi
Page 107 and 108: 6 Cluster Storage Devices One of th
Page 109 and 110: Figure 6-1 Dual-Ported Disks Networ
Page 111 and 112: Figure 6-3 Configuration with Clust
Page 113 and 114: Cluster Storage Devices 6.2 Naming
Page 127 and 128: Cluster Storage Devices 6.3 MSCP an
Page 129 and 130: Cluster Storage Devices 6.4 MSCP I/
Page 131 and 132: Cluster Storage Devices 6.5 Managin
Page 133 and 134: Cluster Storage Devices 6.5 Managin
Page 135 and 136: Cluster Storage Devices 6.6 Shadowi
Page 137 and 138: 7.1 Introduction 7 Setting Up and M
Page 139 and 140: Setting Up and Managing Cluster Que
Page 141 and 142: Figure 7-1 Sample Printer Configura
Page 143 and 144: Figure 7-2 Print Queue Configuratio
Page 153:
Setting Up and Managing Cluster Que
Page 156 and 157:
Configuring an OpenVMS Cluster Syst
Page 158 and 159:
Page 160 and 161:
Page 162 and 163:
Page 164 and 165:
Page 166 and 167:
Page 168 and 169:
Page 170 and 171:
Page 172 and 173:
Page 174 and 175:
Page 176 and 177:
Page 178 and 179:
Page 180 and 181:
Page 182 and 183:
Page 184 and 185:
Page 186 and 187:
Page 188 and 189:
Page 190 and 191:
Page 192 and 193:
Page 194 and 195:
Page 196 and 197:
Page 199 and 200:
9 Building Large OpenVMS Cluster Sy
Page 201 and 202:
Building Large OpenVMS Cluster Syst
Page 203 and 204:
Table 9-3 (Cont.) Checklist for Sat
Page 205 and 206:
Page 207 and 208:
Page 209 and 210:
Table 9-8 (Cont.) Controlling Satel
Page 211 and 212:
Table 9-8 (Cont.) Controlling Satel
Page 213 and 214:
Potential Hot Files Methods to Help
Page 215 and 216:
Page 217 and 218:
Page 219 and 220:
10 Maintaining an OpenVMS Cluster S
Page 221 and 222:
Maintaining an OpenVMS Cluster Syst
Page 223 and 224:
Example 10-1 Sample NETNODE_UPDATE.
Page 225 and 226:
Page 227 and 228:
Page 229 and 230:
• CLUSTER_SHUTDOWN • REBOOT_CHE
Page 231 and 232:
Page 233 and 234:
Page 235 and 236:
Page 237 and 238:
10.12 Restoring Cluster Quorum Main
Page 239 and 240:
Command Purpose Maintaining an Open
Page 241:
Page 244 and 245:
Cluster System Parameters A.1 Value
Page 246 and 247:
Page 248 and 249:
Page 250 and 251:
Page 252 and 253:
Page 254 and 255:
Page 256 and 257:
Page 258 and 259:
Building Common Files B.1 Building
Page 261 and 262:
C.1 Diagnosing Computer Failures C
Page 263 and 264:
Table C-1 (Cont.) Sequence of Booti
Page 265 and 266:
Step Action Cluster Troubleshooting
Page 267 and 268:
Page 269 and 270:
Cluster Troubleshooting C.3 Satelli
Page 271 and 272:
Page 273 and 274:
Table C-2 (Cont.) Alpha Booting Mes
Page 275 and 276:
IF... THEN... The startup procedure
Page 277 and 278:
Possible Bugcheck Causes Recommenda
Page 279 and 280:
Cluster Troubleshooting C.10 Diagno
Page 281 and 282:
Page 283 and 284:
Page 285 and 286:
Table C-5 Informational and Other E
Page 287 and 288:
Entry Description Cluster Troublesh
Page 289 and 290:
Page 291 and 292:
Page 293 and 294:
Table C-6 (Cont.) Port Messages for
Page 295 and 296:
Page 297 and 298:
Page 299 and 300:
Table C-8 (Cont.) OPA0 Messages Har
Page 301 and 302:
D Sample Programs for LAN Control S
Page 303 and 304:
Sample Programs for LAN Control D.3
Page 305 and 306:
Page 307 and 308:
Page 309 and 310:
Location Action Sample Programs for
Page 311:
Page 314 and 315:
Subroutines for LAN Control E.2 Sta
Page 316 and 317:
Subroutines for LAN Control E.3 Sto
Page 318 and 319:
Subroutines for LAN Control E.4 Cre
Page 320 and 321:
Subroutines for LAN Control E.5 Cre
Page 322 and 323:
Subroutines for LAN Control E.7 Sto
Page 324 and 325:
Troubleshooting the NISCA Protocol
Page 326 and 327:
Page 328 and 329:
Page 330 and 331:
Page 332 and 333:
Page 334 and 335:
Page 336 and 337:
Page 338 and 339:
Page 340 and 341:
Page 342 and 343:
Page 344 and 345:
Page 346 and 347:
Page 348 and 349:
Page 350 and 351:
Page 352 and 353:
Page 354 and 355:
Page 356 and 357:
Page 359 and 360:
G NISCA Transport Protocol Channel
Page 361 and 362:
NISCA Transport Protocol Channel Se
Page 363 and 364:
NISCA Transport Protocol Channel Se
Page 365 and 366:
A Access control lists See ACLs ACL
Page 367 and 368:
CLUSTER_AUTHORIZE.DAT files (cont
Page 369 and 370:
Disks system (cont’d) creating du
Page 371 and 372:
HSZ subsystems, 1-4 I Installation
Page 373 and 374:
MODPARAMS.DAT file (cont’d) examp
Page 375 and 376:
Packets capturing data, F-26 maximu
Page 377 and 378:
SAVE_FEEDBACK option, 10-10 SCA (Sy
Page 379 and 380:
System parameters (cont’d) MPDEV_
Page 381:
Voting members, 2-6 adding, 8-10, 8
show all

OpenVMS Cluster Systems - OpenVMS Systems - HP

Create successful ePaper yourself

Delete template?

Save as template?