HPE GreenLake Administration
- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: how to execute 'cmviewcl' without root
Operating System - HP-UX
1835073
Members
3144
Online
110073
Solutions
Forums
Categories
Company
Local Language
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-27-2007 05:24 PM
02-27-2007 05:24 PM
how to execute 'cmviewcl' without root
user1 is not root.
how to execute cmviewcl with user1?
how to execute cmviewcl with user1?
3 REPLIES 3
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-27-2007 07:05 PM
02-27-2007 07:05 PM
Re: how to execute 'cmviewcl' without root
Which version of ServiceGuard?
With version 11.16 and above, you must define a security policy in either the cluster configuration file or in the package configuration file to allow non-root users to even view the ServiceGuard status. See the newest "Managing ServiceGuard" book (available in docs.hp.com) for details.
With older versions, create a file named /etc/cmcluster/cmclnodelist if it does not exist. The syntax is similar to a .rhosts file, with one added feature: a single plus sign on the last line of the file will allow everyone on that host to use cmviewcl.
Remember also that the cmviewcl command is located in /usr/sbin, which is probably not in the PATH for normal users: you might want to create a symbolic link or a small wrapper script in some location that is in user's PATH that calls the real cmviewcl command.
With version 11.16 and above, you must define a security policy in either the cluster configuration file or in the package configuration file to allow non-root users to even view the ServiceGuard status. See the newest "Managing ServiceGuard" book (available in docs.hp.com) for details.
With older versions, create a file named /etc/cmcluster/cmclnodelist if it does not exist. The syntax is similar to a .rhosts file, with one added feature: a single plus sign on the last line of the file will allow everyone on that host to use cmviewcl.
Remember also that the cmviewcl command is located in /usr/sbin, which is probably not in the PATH for normal users: you might want to create a symbolic link or a small wrapper script in some location that is in user's PATH that calls the real cmviewcl command.
MK
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-27-2007 07:55 PM
02-27-2007 07:55 PM
Re: how to execute 'cmviewcl' without root
Another option is to use sudo and permit for that user/group acess to cmviewcl command as root.
regards,
ivan
regards,
ivan
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-27-2007 11:50 PM
02-27-2007 11:50 PM
Re: how to execute 'cmviewcl' without root
If you have version 11.16 or later of MC/SG.
Go into your cluster ascii file and look for "Access Control Policy section"
You can add a few simple lines here to give other folks different levels of access to MC/SG commands. Say you want the Oracle account (i.e. DBA's) to be able to monitor ONLY the cluster using cmviewcl, you would add the following lines below that section:
USER_NAME oracle
USER_HOST CLUSTER_MEMBER_NODE
USER_ROLE MONITOR
Then run your cmcheckconf, and if it's good you would cmapplyconf your cluster ascii file. You can do this with the cluster up and running.
Rgrds,
Rita
Go into your cluster ascii file and look for "Access Control Policy section"
You can add a few simple lines here to give other folks different levels of access to MC/SG commands. Say you want the Oracle account (i.e. DBA's) to be able to monitor ONLY the cluster using cmviewcl, you would add the following lines below that section:
USER_NAME oracle
USER_HOST CLUSTER_MEMBER_NODE
USER_ROLE MONITOR
Then run your cmcheckconf, and if it's good you would cmapplyconf your cluster ascii file. You can do this with the cluster up and running.
Rgrds,
Rita
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
Company
Events and news
Customer resources
© Copyright 2025 Hewlett Packard Enterprise Development LP