Here is what you should have on server2:
admplat rw, map=root
In the above example I assume ACLs are being pushed to server2 from the app server, which will contain the 'nouser' entry. This will block all other users from accessing server2 that are not in the list of ACLs.
You could also configure the ACLs in RBAC so that admplat maps to root without manually configuring the users.local file.
Is it, this new line "server1 rw" compatible with "* ro" in the exports file ?
I want to acces on the RSCD agent from "server1" server using "admplat" user in NSH only, but I want to access from App Server and CM console too.
ro" grants all hosts read-only access to the server. "server1 rw" grants only server1 read-write access. I believe your exports file should look like this:
And your users.local file should look like this:
Are you still pushing ACLs from the app server to "server1"?