You have to define them as a ADMIN with no grants.  They will get the query
commands with that by default.  That may be more than you want to give them.

Paul D. Seay, Jr.
Technical Specialist
Naptheon Inc.
757-688-8180


-----Original Message-----
From: Elio Vannelli [mailto:elio.vannelli_external AT WARTSILA DOT COM]
Sent: Tuesday, December 10, 2002 3:58 AM
To: ADSM-L AT VM.MARIST DOT EDU
Subject: Batch Command and security


Hi guys,

I have to build a batch command so a client can query activity log. I
thought to do it processing the "dsmadmc -id=name -password=password"
command. As username and password pass in clear text, I think it's better
having a specific user in TSM server and rights only to read activity log.
Which kind of user have I to set?

Thanks in advance

Elio