About authorizing nonroot users for specific applications on UNIX/Linux

Article:HOWTO33597  |  Created: 2010-10-28  |  Updated: 2011-03-10  |  Article URL http://www.symantec.com/docs/HOWTO33597
Article Type
How To

Product(s)

Environment

Subject

Languages

About authorizing nonroot users for specific applications on UNIX/Linux

Nonroot users can be authorized for a subset of the NetBackup-Java administrator applications.

To authorize users for a subset of the NetBackup-Java administrator applications, use the following identifiers for the ADMIN keyword in the auth.conf file:

ALL

Indicates that the user has administrative privileges for all of the applications that are listed in this table.

AM

Activity Monitor

BMR

Bare Metal Restore

BPM

Backup Policy Management

BAR or JBP

Backup, Archive, and Restore

CAT

Catalog

DM

Device Monitor

HPD

Host Properties

MM

Media Management

REP

Reports

SUM

Storage Unit Management

VLT

Vault Management

For example, to give a user (user1) access only to the Device Monitor and Activity Monitor, add the following entry to the auth.conf file:

user1 ADMIN=DM+AM

In order for a nonroot user to modify the files that the NetBackup-Java Administration Console uses, run the nonroot_admin_nbjava script. The script changes permissions on the following files:

/usr/openv/java/auth.conf
/usr/openv/java/Debug.properties
/usr/openv/java/nbj.conf

Note:

nonroot_admin_nbjava is located in /usr/openv/java/nonroot_admin_nbjava.

See About the NetBackup-Java Administration Console on UNIX/Linux

See About authorizing NetBackup-Java users on UNIX/Linux

See Authorization file (auth.conf) characteristics on UNIX/Linux

Legacy ID



v41641740_v46435089


Article URL http://www.symantec.com/docs/HOWTO33597


Terms of use for this information are found in Legal Notices

Please Sign In

Login using SymAccount.

Knowledge Base Search

Knowledge Base Search

Rate this Article

Help us improve your support experience.

MySymantec

MySymantec

Contacting Support

Contacting Support