TS/MP System Management Manual (H06.05+, J06.03+)
Managing the Pathsend Environment
HP NonStop TS/MP System Management Manual—541819-007
6-9
Specifying Security
•
Server-class-level security
Network Level Security
For Pathsend processes to access server processes, this network conditions must be
met:
•
The LINKMON process must be able to open the PATHMON process (to make link
requests).
•
The LINKMON process must be able to open the server processes (to send user
requests).
•
The PATHMON process must be able to open the server processes (to send
startup messages).
All of these opens are performed using the PATHMON process’s user ID. Therefore,
the user ID of the PATHMON process controlling the server class must have
corresponding user IDs on—and remote passwords with—these systems:
•
The system of the Pathsend process
•
The PATHMON process’s system
•
The server class’s system
Server Class Security
To configure servers for access by Pathsend processes, you use the SET SERVER
command to define attributes for the OWNER and SECURITY parameters. Together,
the OWNER and SECURITY parameters define whether a Pathsend process can
access a server class.
LINKMON processes perform authorization checks on each send to make sure that the
user ID of the Pathsend process at the time of the send conforms to the SERVER
OWNER and SERVER SECURITY attributes.
(Note that TCPs running under the Pathway/iTS product ignore these parameters; the
parameters only affect Pathsend process access.)
OWNER
The SERVER OWNER parameter defines the user ID that controls access to the
server class from a Pathsend process.
The user ID you assign must be known to the system in which PATHCOM is running.
You define the user ID either with a system number, group number, and user number,
or with a system name, group name, and user name.