NET/MASTER Management Services (MS) System Management Guide

ManualsBrandsHP ManualsServerHP NonStop G-Series

141

142

143

144

145

146

147

148

149

150

Using UMS to Manage User Access

Managing User Access and Privileges

115414 NonStop NET/MASTER MS System Management Guide 4–29

Note The GUID active in the user’s OCS profile does not control DSNM commands; DSNM commands always

execute under the GUID used to start DSNM. If the NonStop NET/MASTER MS control process (NCP)

started the DSNM processes, DSNM commands execute under the GUID with which the NCP was

started.

You must specify at least one GUID for a user, and you can specify up to eight

different GUIDs. The first GUID specified becomes the default GUID active in the

user’s OCS profile. Users can switch among the defined GUIDs by using the PROFILE

GUID command. Only one GUID is active in the operator’s profile at a given time. If

you do not specify any GUID, your user ID operates with the GUID that is the

NonStop NET/MASTER MS system user ID.

Caution Enter GUIDs with caution. The PROFILE GUID command enables a user to switch to a GUID without

requiring the user to log on with the Guardian user ID and use the password. This includes the super ID

(255, 255).

Tandem recommends that a GUID be associated with no more than one NonStop

NET/MASTER MS user ID. Such a practice preserves accountability by creating a

direct relationship between NonStop NET/MASTER MS user IDs and GUIDs; such a

relationship preserves the user’s accountability for the operation of utility commands.

The practice also enables you to use the TACL STATUS *, USER nnn,nnn command to

monitor use of external, conversational-mode utilities.

GUIDs entered in the Guardian ID field must be defined to the Guardian environment;

otherwise, attempts to use the conversational-mode utility are rejected. (UMS does not

check to determine whether the GUID is defined to the Tandem system.)

See the discussion of the PARAM SWGUID command in Section 3, “Configuring

NonStop NET/MASTER MS,” for a discussion of the command that causes all users to

operate with the GUID used to start NonStop NET/MASTER MS. If you are assigning

a GUID to a user who will perform operations on a network, see the discussion of

GUIDs and remote passwords in “Using UMS to Support Operations on a Network,”

earlier in this section.

Suspend Date Field You can specify a date after which the user ID is denied access to NonStop

NET/MASTER MS. Use the Suspend Date field, which appears on the UMS : User

Details panel, to specify an access cut-off date. The suspension date does not force an

automatic logoff if someone is logged on with the user ID at 00:00 on the specified

suspension date.

Multiple Signon Authority

Field

You can control the ability to log on with the same user ID at more than one terminal

simultaneously. Use the Multiple Signon Authority field on the UMS : User Attributes

panel to either enable or disable concurrent logon privileges.