Installing and Managing HP-UX Virtual Partitions (includes A.03.03)

ManualsBrandsHP ManualsSoftwareHP-UX 11i v3 Integrity Virtual Machines Host Per Core License LTU

211

212

213

214

215

216

217

218

219

220

Primary-Admin vPars Security (vPars A.03.03)

Security Commands

Chapter 8

220

Security Commands

The security commands are:

• monadmin executed from the vPars Monitor (MON>)

• vparadmin executed from the HP-UX shell

MON> monadmin

monadmin is a vPars Monitor command that allows you to

• set or reset the security mode

• specify a virtual partition to be added or deleted to or from the primary-admin virtual partition list

• list which virtual partitions are currently in the primary-admin virtual partition list (in other words, are

set as primary-admin virtual partitions)

Basic Syntax and Usage

monadmin [-S on|off] | [-a|-d partition_name] | [-l]

-S on|off

Sets the security mode either ON or OFF (ON and OFF are not case-sensitive). The security mode can be

set only at the Monitor prompt (MON>).

When the mode is set to ON, the list of primary virtual partitions is empty, regardless of any previous

settings. Therefore, when the security mode is set to ON, all virtual partitions become secondary-admin

virtual partitions regardless of whether it is running or not and regardless of its state during the previous

time the mode was set to ON.

Because the primary-admin virtual partition list is empty when the mode is set to ON, you will need to

add any virtual partitions you wish to be primary-admin virtual partitions to the primary-admin virtual

partition list every time you set the mode to ON. You can add or delete virtual partitions to or from the

primary-admin virtual partition list from either the Monitor prompt (MON> monadmin) or the HP-UX Shell

prompt (# vparadmin). vparadmin is discussed later.

This process allows you to change the mode at the MON> prompt and maintain a deterministic setting for

the virtual partition even if virtual partitions are running.

When the mode is set to ON, the command will prompt for a new password. (If the mode is already ON,

you will receive an error message stating that you are already in secure mode.)

When the mode is set to OFF, the above restrictions of the vPars command execution are turned off. It will

appear that all virtual partitions are considered to be primary-admin virtual partitions. The password

entry is deleted from the vPars database (vpdb).

Once you set the mode to OFF, the primary-admin virtual partition list is deleted as well as the security

password.

By default, the mode is OFF.