HP Visualize c3600 HP-UX DMI 2.0 Developer's Guide: HP-UX/HP 9000 Computers, - Page 52
Machine List Protection, User Name Check on HP-UX Clients
View all HP Visualize c3600 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 52 highlights
Management Interface Concepts MI Security Machine List Protection This type of security uses knowledge of the DCE/RPC binding to determine the machine making the DMI call. It then checks the machine name against an internal table of allowed machine names. If the machine name or IP address matches, access to attribute values is granted. The system administrator grants access rights to machines by editing the file /var/dmi/dmiMachines. The format of this file is any valid hostname or complete internet address, one entry per line. The SP detects changes to this file when a client gets or sets an attribute value. Any machine on the network may view the data description (attribute names) of the MIF database. The following calls are restricted by the machine list protection. • DmiGetAttribute() / DmiSetAttribute() • DmiGetMultiple() / DmiSetMultiple() • DmiAddRow() / DmiDeleteRow() • DmiAddGroup() / DmiDeleteGroup() • DmiAddComponent() / DmiDeleteComponent() • DmiAddLanguage() / DmiDeleteLanguage() User Name Check on HP-UX Clients This type of security verifies that a client making a DMI call is the root user. This keeps unknown users from accessing the MIF database. Only the following calls are restricted by the user name check. • DmiGetAttribute() / DmiSetAttribute() • DmiGetMultiple() / DmiSetMultiple() • DmiAddRow() / DmiDeleteRow() • DmiAddGroup() / DmiDeleteGroup() • DmiAddComponent() / DmiDeleteComponent() • DmiAddLanguage() / DmiDeleteLanguage() 52 Chapter 7