- Community Home
- >
- Servers and Operating Systems
- >
- HPE ProLiant
- >
- Server Management - Systems Insight Manager
- >
- Re: what permissions does the VCA logon id need?
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-22-2005 04:23 AM
тАО09-22-2005 04:23 AM
what permissions does the VCA logon id need?
The problem is that the login id that I have to give managed server Version control agent doesn't seem to work unless it is an administrator of the Repository server.
I've tried using an id with "Power User" rights and it won't connect, as soon as I add the id to the admins group it works fine so its a permissions problem.
What permissions does the agent need to be able to do its function? Is it change-rights to a folder structure, is it "log on as a service" rights, etc. I can't find any info about it in the docs.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-22-2005 06:53 AM
тАО09-22-2005 06:53 AM
Re: what permissions does the VCA logon id need?
- Jim
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-22-2005 08:04 AM
тАО09-22-2005 08:04 AM
Re: what permissions does the VCA logon id need?
I created a local ID on the central console server and used the id when configuring all of the managed servers. Unfortunately the agent won't connect back to the central server unless the id is added to the administrators group of the central server.
Rereading it, I still don't think its clear - lets try some real names......
SIMSERVER = name of server running the Insight Manager service and containing the repository.
VCA-ID = local id created on SIMSERVER to allow the agents access to the repository.
SERVER1,2,3,4 = servers being managed.
When I update the VCA agent on SERVER3 I tell it to use SIMSERVER and VCA-ID.
The problem is that unless I add VCA-ID to the administrators group on SIMSERVER, the VCA agent won't connect. Putting VCA-ID in the Power-Users group on SIMSERVER won't work.
It seems insecure to require every single server in the enterprise to use an id that has administrative rights over the entire central console.. but thats the only way i could get it to work. I was hoping there was another answer.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-22-2005 08:18 AM
тАО09-22-2005 08:18 AM
Re: what permissions does the VCA logon id need?
In all instances of the latest VCA I have used it requires a username that is not 'administrator' and the id I would create needed to be added to the administrators group otherwise I could not access the VCRM from the selected VCA.
The idea of using a unique user id is so the administrator account one might use wouldn't get locked out.
It might not be clear in the manual. All I could find was: HP recommends that you create an account with administrator privileges to be used specifically
by the Version Control Agent.
If anything requiring admin rights is definitely infered.
- Jim
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-22-2005 08:29 AM
тАО09-22-2005 08:29 AM
Re: what permissions does the VCA logon id need?
My opinion is that requiring an id to have administrative privledges on the entire server when all its doing is *reading* a folder full of files is preposterous.
It looks like we will not be able to use the version control agent in the production network, that will never fly with the security folks.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-22-2005 08:42 AM
тАО09-22-2005 08:42 AM
Re: what permissions does the VCA logon id need?
I highly recommend you give that feedback to Hp. In your console go to Help --> About Hp Systems Insight Manager. Scroll Down and click the Tell Us About Hp Systems Insight Manager. That will bring up a 12 question survey and after the first 8 of general stuff you will be able to provide your input and satisfaction.
Hp does look at this as much of the product has been developed based upon customer feedback.
- Jim
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-22-2005 01:37 PM
тАО09-22-2005 01:37 PM
Re: what permissions does the VCA logon id need?
-Rich
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-23-2005 02:05 AM
тАО09-23-2005 02:05 AM
Re: what permissions does the VCA logon id need?
Let me get this clear, because obviously its not.... it is based upon the SMH assigned group for administrator access to the SMH. So if the customer leaves the default SMH Group (local administrator) then the VCA needs to have an authentication via that group. If they would have done group SMHadmin for administrator access to the SMH then the VCA would need to authenticate thru that group... is that correct? Because the VCA manual sure doesn't spell that out unless I totally missed it. And support totally took my customer down a road of misunderstanding.
- Jim
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-23-2005 02:31 AM
тАО09-23-2005 02:31 AM
Re: what permissions does the VCA logon id need?
My apologies for the bum info.... that is why I like these forums here, the learning (and reproof)never stops.
- Jim
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-23-2005 08:56 PM
тАО09-23-2005 08:56 PM
Re: what permissions does the VCA logon id need?
-Rich