7 Replies Latest reply on Dec 21, 2010 9:30 AM by Adam Bowen

    Security files mapping on the appserv

    Gerardo Bartoccini

      We usually recommend to the customer the following, on the appserv (Unix):

       

      1) exports file

      <appserv IPs> rw,user=bladmin

      2) users file

      <empty>

      3) users.local file

      <empty>

       

      My customer now is asking if it's possible to map their roles (three) to root, but with limitations for two of them not to use NSH against the appserver.

      Configuration would look as follows:

       

      1) exports file

      <appserv IPs> ro

      2) users file

      <empty>

      3) users.local file

      BLAdmins.* rw,map=root

      <role2>.* rw,map=root,commands:CM

      <role3>.* rw,map=root,commands:CM

       

      Would that work?