Managing SNAplus2 from NetView
Using UCF
In this case, the
UCF Security
Because the UCF enables a remote operator to issue commands on the
The SNAplus2 configuration includes a specific
It is intended that you use the normal security features provided by
•The UCF user name should be one that is used solely for UCF; you should not use an existing login that is also used for other purposes. This makes it easier to define the privileges of this user to include only those that are reasonable for UCF; it also enables you to identify processes that were started using UCF.
•You may need to restrict the users and groups for which the UCF user can change a user ID or group ID. In particular, the UCF user must not be permitted to do the following:
•Become root or superuser.
•Use the group ID sna, which enables access to the snapadmin program. (The functions of this program should be accessed using SPCF, as described earlier in this chapter, instead of UCF.)
Chapter 10 | 247 |