skip book previous and next navigation links
go up to top of book: HP OpenVMS System Manager's Manual, Volume 2:... HP OpenVMS System Manager's Manual, Volume 2:...
go to beginning of chapter: OpenVMS Cluster Considerations OpenVMS Cluster Considerations
go to previous page: Understanding SYSMAN and OpenVMS Cluster Management Understanding SYSMAN and OpenVMS Cluster Management
go to next page: Using the SYSMAN Command DO to Manage an OpenVMS ClusterUsing the SYSMAN Command DO to Manage an OpenVMS Cluster
end of book navigation links

Using SYSMAN to Manage Security  



You can manage security data for an OpenVMS Cluster system with SYSMAN CONFIGURATION commands. SYSMAN CONFIGURATION Commands summarizes these CONFIGURATION commands and their functions.

Table 4   SYSMAN CONFIGURATION Commands
Command Function
CONFIGURATION SET CLUSTER_AUTHORIZATION
Modifies the group number and password in a local area cluster
CONFIGURATION SHOW CLUSTER_AUTHORIZATION
Displays the group number and multicast address of a local area cluster

Modifying the Group Number and Password  

The group number identifies the group of nodes in the cluster, and the associated Ethernet address is used to send messages to all nodes in the cluster. The OpenVMS Cluster password protects the integrity of the cluster membership.

Using the CONFIGURATION SET CLUSTER_AUTHORIZATION command modifies the group number and password, as recorded in SYS$SYSTEM:CLUSTER_AUTHORIZE.DAT. Normally, you do not need to alter records in the CLUSTER_AUTHORIZE.DAT file.

If your configuration has multiple system disks, SYSMAN automatically updates each copy of CLUSTER_AUTHORIZE.DAT, provided that you have defined the environment as a cluster with the SET ENVIRONMENT/CLUSTER command.


CautionIf you change either the group number or password, you must reboot the entire cluster.

You cannot display the cluster password for security reasons, but you can display the group number and group multicast address with the CONFIGURATION SHOW CLUSTER_AUTHORIZATION command.

Examples

  1. The following command example sets the environment to a specific cluster, sets privilege to SYSPRV, and modifies the cluster password:
    SYSMAN> SET ENVIRONMENT/CLUSTER/NODE=NODE21 
    SYSMAN> SET PROFILE/PRIVILEGE=SYSPRV 
    SYSMAN> CONFIGURATION SET CLUSTER_AUTHORIZATION/PASSWORD=GILLIAN
    %SYSMAN-I-CAFOLDGROUP, existing group will not be changed
    %SYSMAN-I-GRPNOCHG, Group number not changed
    SYSMAN-I-CAFREBOOT, cluster authorization file updated.
    The entire cluster should be rebooted.
  2. The following command example displays the group number and multicast address for NODE21. Because the group number and password on other nodes in the cluster are identical, no further information is displayed.
    SYSMAN> CONFIGURATION SHOW CLUSTER_AUTHORIZATION
    Node NODE21: Cluster group number 65240
    Multicast address: AB-00-04-01-F2-FF 

go to previous page: Understanding SYSMAN and OpenVMS Cluster Management Understanding SYSMAN and OpenVMS Cluster Management
go to next page: Using the SYSMAN Command DO to Manage an OpenVMS ClusterUsing the SYSMAN Command DO to Manage an OpenVMS Cluster