ADSM-L
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Client login with admin id and password

2003-03-12 12:40:23
Subject: Re: Client login with admin id and password
From: Andrew Raibeck <storman AT US.IBM DOT COM>
To: ADSM-L AT VM.MARIST DOT EDU
Date: Wed, 12 Mar 2003 10:38:04 -0700 
Data backed up by the client can be encrypted via the include.encrypt
option. Unless you know the encryption key, you can not restore the data.

CAUTION: If the user who encrypted the data loses/forgets the key, then
the data can not be restored, and there is nothing IBM can do to help.

Regards,

Andy

Andy Raibeck
IBM Software Group
Tivoli Storage Manager Client Development
Internal Notes e-mail: Andrew Raibeck/Tucson/IBM@IBMUS
Internet e-mail: storman AT us.eyebm DOT com (change eye to i to reply)

The only dumb question is the one that goes unasked.
The command line is your friend.
"Good enough" is the enemy of excellence.




"Cook, Dwight E" <DWIGHT.E.COOK AT SAIC DOT COM>
Sent by: "ADSM: Dist Stor Manager" <ADSM-L AT VM.MARIST DOT EDU>
03/12/2003 10:03
Please respond to "ADSM: Dist Stor Manager"


        To:     ADSM-L AT VM.MARIST DOT EDU
        cc:
        Subject:        Re: Client login with admin id and password



Well, since a "system privileged admin id" could change the node's
password
and then connect without using their admin id & password (use the one they
just set it to) I can see why the straight use of their id & password
would
be allowed.

Just another reason why management should pay their TSM admin's well ;-)

Dwight



-----Original Message-----
From: Gerhard Rentschler [mailto:g.rentschler AT RUS.UNI-STUTTGART DOT DE]
Sent: Wednesday, March 12, 2003 10:01 AM
To: ADSM-L AT VM.MARIST DOT EDU
Subject: Client login with admin id and password


Hello,
I always thought that a tsm admin does not have access to client data. I
think I learned something new.
Calling dsmc or dsm with -node=tarzan and specifying a valid admin id and
password (system privilege) gives access to node tarzan's data. At least
it
is possible to list the files. I haven't tried to restore data. This is
indeed documented. However, I would prefer if there were a message in the
activity log saying that admin id was used.
Am I wrong? Could someone explain this feature in more detail?

Best regards
Gerhard
---
Gerhard Rentschler            email:g.rentschler AT rus.uni-stuttgart DOT de
Regional Computing Center     tel.   ++49/711/685 5806
University of Stuttgart       fax:   ++49/711/682357
Allmandring 30a
D 70550
Stuttgart
Germany
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  AW: fs backup versus database backup, Rupp Thomas (Illwerke)
Next by Date:  Re: can't restore Windows Registry, Francisco Molero
Previous by Thread:  Re: Client login with admin id and password, Cook, Dwight E
Next by Thread:  Re: Client login with admin id and password, Sal Mangiapane
Indexes:  [Date] [Thread] [Top] [All Lists]