IBM HPSS 6.2.2. Upgrade Requirements and Limitations, 6.2.3. New Authentication and Authorization Mechan isms

information. New index definition for table. The metadata conversion is performed by the

hpss_51_62_server conversion program.

•New SERVERINTERFACES table. This table is populated by the hpss_51_62_server

conversion with default server interface information.

•Modification of SITE table. In support of new authorization mechanism, elimination of

descriptive and LS group names and addition of site and realm names. The pre-6.2 SITE table

will be renamed to PRE62_SITE but the metadata in the table will not be converted into the

new SITE table since remote sites are no longer supported.

•Modification of STORAGESEGDISK table. In support of new disk storage algorithms, new

index definition for table.

6.2.2. Upgrade Requirements and Limitations

Prior to running any of the conversion programs, be aware of the following:

•HPSS metadata should be at the appropriate level, either HPSS 4.5 or HPSS 5.1.

•Remote site information will not be converted because remote sites are no longer supported.

The conversion will create an empty HPSS 6.2 SITE table in DB2.

•There is no utility provided to convert the local site information from the Locat ion Server

Policy (LS Policy) into LDAP. This must be manually created with the instructions provided

in Section 6.3.3: Install and Configure LDAP on page 191.

•There is utility provided to convert the SSM User Ids from HPSS 4.5 or 5.1 to HPSS 6.2. The

hpssuser utility must be used to create new SSM User Ids for HPSS 6.2.

•For 4.5 upgrades only: DFS must be disabled for the duration of the upgrade.

•For 4.5 upgrades only: SFS and DB2 must be able to run simultaneously. Both databases

must run on the same production server node as it is being upgraded. Therefore, SFS disk

space may not be reclaimed and reused to support DB2 during the conversion process, and

HPSS sites may need to install additional disks.

•For 4.5 upgrades only: A site must have only one PVL server configured. If more than one

PVL is configured, the metadata conversion will be unsuccessful. An HPSS site with multiple

PVLs should delete extraneous PVL servers from HPSS 4.5 prior to conversion

6.2.3. New Authentication and Authorization Mechan isms

Sites must select a new authentication and authorization mechanisms to replace DCE.

HPSS 6.2 replaces DCE by using a new HPSS RPC library, a new authentication mechanism, and a

new authorization service. Sites have several options when choosing the new authentication and

authorization mechanism in HPSS 6.2. Valid combinations include:

•Unix authentication and authorization with system password and group files ( /etc/pas swd,

/etc/group). In this case, the hpss_unix_import program will assist in converting DCE

authentication and authorization information into Unix.

•Unix authentication and authorization with HPSS password and group files (e.g.

/var/hpss/etc/passwd, /var/hpss/etc/group). In this case, the hpss_unix_import program will

assist in converting DCE authentication and authorization information into Unix.

•Kerberos authentication and LDAP authorization. In this case, the site determines on its own

how to convert DCE authentication information into Kerberos. The site will use

HPSS Installation Guide July 2008

Release 6.2 (Revision 2.0) 182