Networker
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Networker] Networker 7.5 server with older clients

2009-07-21 19:26:45
Subject: Re: [Networker] Networker 7.5 server with older clients
From: Preston de Guise <enterprise.backup AT GMAIL DOT COM>
To: NETWORKER AT LISTSERV.TEMPLE DOT EDU
Date: Wed, 22 Jul 2009 09:21:32 +1000 
Tim,

On 22/07/2009, at 09:11 , Tim Mooney wrote:
In regard to: Re: [Networker] Networker 7.5 server with older clients,...: 


On 22/07/2009, at 02:18 , Tim Mooney wrote:
In regard to: Re: [Networker] Networker 7.5 server with older clients,...:
The only thing you need to be wary of is the security model. NetWorker 7.3 introduced a new security model. So, for clients older than that you 
need to make sure that you use the old security model.
Is it possible to set the security model on a client-by-client basis? When we ran into this issue when going to 7.4.x, EMC seemed to imply that we must disable the new authentication site-wide, which is what we did. If we could disable it on a client-by-client basis, that would be better.
That's not the case. You can disable/set the authentication model on a client by client basis. I already have several customers who are doing this for various reasons. 

Run up:

nsradmin -s nsrServer -p nsrexec
nsradmin> print type: NSRLA
What you want to change is the "auth methods" option. On any new server it will have a default value of: 

"0.0.0.0/0,nsrauth/oldauth"
The auth methods are processed in order, so say you had a client called cerberus that could only use the old security model - you'd change it to:
nsradmin> update auth methods: "cerberus,oldauth","0.0.0.0/0,nsrauth/oldauth"
Thanks Preston. Since we use FQDN for all our clients I can already see that we're in for a treat maintaining this and a potential resource length 
limitation, but I think we'll want to give this a try anyway.


If you're using Unix, you at least have the option of doing:

nsradmin> print type: NSRLA
nsradmin> edit
And launching into a "vi" editor session to edit the resource information - it makes prepending information much easier, I find. 

Cheers,

Preston.

--
Preston de Guise


"Enterprise Systems Backup and Recovery: A Corporate Insurance Policy":

http://www.amazon.com/Enterprise-Systems-Backup-Recovery-Corporate/dp/1420076396

http://www.enterprisesystemsbackup.com

NetWorker blog: http://nsrd.wordpress.com


To sign off this list, send email to listserv AT listserv.temple DOT edu and type 
"signoff networker" in the body of the email. Please write to networker-request 
AT listserv.temple DOT edu if you have any problems with this list. You can access the 
archives at http://listserv.temple.edu/archives/networker.html or
via RSS at http://listserv.temple.edu/cgi-bin/wa?RSS&L=NETWORKER
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Networker] Networker 7.5 server with older clients, Tim Mooney
Next by Date:  Re: [Networker] The problem of the hung savegroups, David
Previous by Thread:  Re: [Networker] Networker 7.5 server with older clients, Tim Mooney
Next by Thread:  Re: [Networker] Networker 7.5 server with older clients, Anacreo
Indexes:  [Date] [Thread] [Top] [All Lists]