User Guide
Quick-Start Guide
300855-C Rev. 00 11
ACP Security on a Microsoft NT Server
To setup ACP security on a Windows NT Server, you can use native NT user
accounts. Each user must have local logon access rights and belong to a group that
has global authentication. The NT server must also have access to the domain’s
Primary Domain Controller (PDC).
ACP Security on a UNIX Server
To setup ACP security on a UNIX server, perform the following:
1. Log on to the UNIX server as superuser.
2. Create the password file /usr/annex/acp_passwd. The format for
acp_passwd is the same as /etc/passwd.
3. To add a user’s password enter username:: and then run ch_passwd.
Authentication Setup
Set up RAC to authenticate on the security server:
1. Log on to the RAC as superuser and run admin. Enable security on the
RAC by typing:
admin: set annex enable_security y
2.
Set the RAC’s ACP host.
admin: set annex pref_secure1_host
<ip addr of ACP host>
3. Leave cli security off so you can access the RAC from the console.
admin: set port cli_security n
4.
Set vcli security.
admin: set annex vcli_security y
5.
Reset the RAC for the configuration changes to take effect.
admin: reset annex all
6.
After the RAC is reset, try to log on to the RAC through a telnet session.
If security is working you may go ahead and set cli security using the
following admin command:
admin: set port cli_security y