MCSG 11.15 or 11.16 introduced the use of identd as a default option, although it can be disabled. If you don't have identd running, you'll get some errors in syslog until you change it..
From:
http://docs.hp.com/en/B3936-90079/ch05s01.htmlUsername Validation
Serviceguard relies on the ident service of the client node to verify the username of the incoming network connection. If the Serviceguard daemon is unable to connect to the client's ident daemon, permission will be denied.
Root on a node is defined as any user who has the UID of 0. For a user to be identified as root on a remote system, the "root" user entry in /etc/passwd for the local system must come before any other user who may also be UID 0. The ident daemon will return the username for the first UID match. For Serviceguard to consider a remote user as a root user on that remote node, the ident service must return the username as "root".
It is possible to configure Serviceguard to not use the ident service, however this configuration is not recommended. Consult the whitepaper "Securing Serviceguard" for more information.
To disable the use of identd, add the -i option to the tcp hacl-cfg and hacl-probe inetd configurations.
For example, on HP-UX with Serviceguard A.11.16
1.
Change the cmclconfd entry in /etc/inetd.conf to appear as: hacl-cfg stream tcp nowait root /usr/lbin/cmclconfd \ cmclconfd -c -i.
2.
Change the cmomd entry in /etc/inetd.conf to appear as: hacl-probe stream tcp nowait root \ /opt/cmom/lbin/cmomd /opt/cmom/lbin/cmomd -i -f \ /var/opt/cmom/cmomd.log -r /var/opt/cmom.
3.
Restart inetd: /etc/init.d/inetd restart.
