ACP Security on a Microsoft NT Server
To setup ACP security on a Windows NT Server, you can use native NT user accounts. Each user must have local logon access rights and belong to a group that has global authentication. The NT server must also have access to the domain’s Primary Domain Controller (PDC).
ACP Security on a UNIX Server
To setup ACP security on a UNIX server, perform the following:
1.Log on to the UNIX server as superuser.
2.Create the password file /usr/annex/acp_passwd. The format for acp_passwd is the same as /etc/passwd.
3.To add a user’s password enter username:: and then run ch_passwd.
Authentication Setup
Set up RAC to authenticate on the security server:
1.Log on to the RAC as superuser and run admin. Enable security on the RAC by typing:
admin: set annex enable_security y
2.Set the RAC’s ACP host.
admin: set annex pref_secure1_host <ip addr of ACP host>
3.Leave cli security off so you can access the RAC from the console. admin: set port cli_security n
4.Set vcli security.
admin: set annex vcli_security y
5.Reset the RAC for the configuration changes to take effect. admin: reset annex all
6.After the RAC is reset, try to log on to the RAC through a telnet session. If security is working you may go ahead and set cli security using the following admin command:
admin: set port cli_security y
11 |
