BackBox H4.00 User Manual
Product Description
27 BackBox H4.00 User Manual
Delete Expired Volumes
The free-up of the storage occupied by expired volume is enabled by checking
“Delete Expired Volumes” in the Volume Group configuration.
The cleanup is triggered by the TACL macro BB017_FREE_EXPIRED in the daily batch
OBB017.
The automatic free-up of storage for volumes that become SCRATCH is available only
for DSM/TC, TMF and QTOS catalogs.
If a Delete Script is configured in the Data Store, it is submitted to also delete the
possible copies in an Enterprise Backup infrastructure.
Control of Access to Virtual Volumes
The access to virtual volumes can be secured by checking the Guardian user-id
running the NonStop tape application.
The VT Controller access control is similar to the basic security of the Guardian file-
system. It works better when the Volume Group that are auto-scratch, as the
ownership of a volume is reset each time the volume is rewritten for a new backup.
Security attributes are stored in the BackPak catalog for each virtual volume:
The Guardian owner (Guardian node and Guardian user-id)
Three access authorizations: Read, Write and Control.
Read: to read the volume data
Write: to read, write and delete the volume data
Control: to change the volume security through the Web
interface.
The security attributes are checked at each load and at other volume operations,
against the user. This check is bypassed for a load when the volume is known as
SCRATCH by DSM/TC or TMF and the VT Controller auto-scratch mechanism is
enabled.
Security attributes are reset each time the volume is loaded for output:
The Guardian user becomes the owner.
The access authorizations are initialized by the default values
configured for the Volume Group, then overridden if the Guardian
TAPE/TAPECATALOG DEFINE contains the special keyword BBOX-
SECURE=rwc (Read, Write and Control authorizations).
User/owner identity
To get the identity of the user, the Domain Manager queries the detail
of the mount request in MEDIASRV.