Manualshelf

ServiceGuard Manager Version A.03.00 Release Notes, December 2002

ManualsBrandsHP ManualsSoftwareHP Serviceguard Manager Software
11121314151617181920
ServiceGuard Manager Version A.03.00 Release Notes
Compatibility Information and Installation Requirements
Chapter 114
To view a cluster, the ServiceGuard Manager operator needs a logon
and password on at least one server on the cluster’s subnets. The
server is a node with ServiceGuard A.11.12 or later.
To administer clusters on the map, these three things must be true:
The user is logged in to the server node as root
The server has ServiceGuard, Version A.11.13 or later installed,
with patches.
The server node has Cluster Object Manager, Version A.01.03.01
or later.
The server node must be allowed to interact with the target
nodes.
Security Considerations
If you are an experienced ServiceGuard user, you may notice that the
way a ServiceGuard Manager user gets information about remote
clusters is similar to the way a ServiceGuard command-line user can
issue the cmviewcl command to get information about a remote
cluster. Using ServiceGuard Manager, certain users can also relay
the most common adminstrative commands to ServiceGuard
clusters, and the effect is the same as logging into the node and
issuing the command on the command line.
Please notice, however, that the permissions and access mechanisms
are not the same. The ServiceGuard Manager user’s permissions
depend on his login to the server, not the cluster node. It is the server
that interacts with theclusternodes on the user’sbehalf, through the
Cluster Object Manager, a ServiceGuard API.
A ServiceGuard Manager user does not need any direct access to the
target nodes that are displayed in the map. The configuration and
status information is collected by his server node and sent back to
the management station.
The server node always accesses other ServiceGuard nodes as
user=root. The server needs access to the nodes. The recommended
access mechanism is to include the server name or IP address in the
target nodes’ cmclnodelist file. A less secure way is to include the
server node in a target node’s .rhosts file. Listing in cmclnodelist
limits contact to ServiceGuard; a listing in .rhosts grants wider
access.