HP Visualize J5000 hp enterprise file system: planning and configuring hp DCE/ - Page 149
The DFS/NFS Secure Gateway
View all HP Visualize J5000 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 149 highlights
The DFS/NFS Secure Gateway Configuring Gateway Server Machines 5 Authenticate to DCE as a principal who has the following ACL permissions on entries in the registry database: • The i permission on the directory hosts/hostname. • For the first Gateway Server process, the i permission on the directory subsy/dce. • The m, a, u, and g permissions on the principal hosts/hostname/dfsgw-server. The principal is created during the configuration steps. • The t and M permissions on the group subsys/dce/dfsgw-admin. The group is created during the configuration steps. • The R, t, and M permissions on the organization none. • The r permission on the registry Policy object for the DCE cell. This requirement is most easily met by authenticating to a privileged DCE identity (for example, cell_admin or a principal who is a member of the group acct-admin). 6 Invoke the dcecp command: $ dcep 7 For the first Gateway Server process, create the group subsys/dce/dfsgw-admin in the registry database. Use the following dcecp command to create the group: dcecp> group create subsys/dce/dfsgw-admin 8 Create the principal hosts/hostname/dfsgw-server, and create an account for the principal. The Gateway Server process communicates as the principal hosts/hostname/dfsgw-server. Use the following dcecp commands to create the principal and account in the registry database. In the commands, password is the password of the DCE identity to which you are authenticated. dcecp> principal create hosts/hostnamedfsgw-server dcecp> account create hosts/hostname/dfsgw-server \ > -group susbsys/dce/dfsgw-admin -org none \ > -password password -mypwd password dcecp> exit 9 Use the su command to become the local root user on the machine: $ su Password: root_password 149