Software Distributor Administration Guide for HP-UX 11i
SD-UX Security
Security Use Models
Chapter 9 295
Security Use Models
The use models below use the swadm group that is provided in the default
host ACLs, which are installed at SD-UX install-time. This group is not a
part of the default HP-UX configuration, but can be easily added. First,
add the swadm group and the appropriate group members by using the
HP-UX System Administration Manager product. Next, provide the
/etc/logingroup link to /etc/group to activate HP-UX supplementary
groups.
NOTE /etc/logingroup is an HP-UX utility to support both SVR2/3 and BSD
group semantics selectively. When /etc/logingroup is linked to
/etc/group, HP-UX gives BSD (and SVR4) semantics.
If the file /etc/logingroup does not exist on systems targeted as SD-UX
Controllers, execute the following command (as superuser) on each
appropriate system:
ln -s /etc/group /etc/logingroup
Security in Remote Distributions
A common use of SD-UX remote operations capabilities is for a software
administrator to push software from a local depot out to numerous
remote targets.
You can set up of this kind of configuration:
1. Establish the group swadm on the controller host as described above.
2. Edit the three host ACLs on each target system. If you used the
suggested setup discussed in “Setting Up Remote Operations” on
page 199 to install the agents on the target systems, you may edit the
three host ACLs on the Targets as superuser on the system from
which you performed setup: