DanGiles
ADSM.ORG Senior Member
TSM 8.1.1.0 on RHEL 6.9
2 TSM servers: TSMSRV1 has the OC installed; TSMSRV2 is a hub server.
I now have both server set up for LDAP integration. I updated the admin: upd admin admin_name auth=ldap, then "notify subscriber". I can issue commands to tsmsrv1, but on tsmsrv2 I get
TSMSRV2> q process
ANR0454E Session rejected by server TSMBUR1, reason: 31 - SSL Required.
Return code 1006.
I suspect it has to do with server-to-server communications. So I want data transfer between the two servers NOT to use SSL as I suspect that would have a negative impact on replication, but I suppose that admin communications needs to be SSL. Exactly what do I set?
Relevant options are as follows:
AdminOnClientPort Yes NORETRIEVEDATE No
LDAP URL ldap://xxx/ou=xx,dc=xx,dc=xx
RunOrphanCleanup No SSLDisableLegacyTLS No
SSLHideLegacyTLS No SSLInitTimeout 2
TCPPort 1500 TcpAdminport 1500
SANdiscovery Off SSLTCPPort 1542
SSLTCPADMINPort 1543 SSLTLS12 Yes
SSLFIPSMODE No
tsm: TSMSRV1>q server tsmsrv2
Server Comm. High-level Low-level Days Server Virtual Allow
Name Method Address Address Since Password Volume Replacement
Last Set Password
Access Set
-------- ------ ------------- --------- ------ ---------- ---------- -----------
TSMBUR1 TCPIP xxx.yyy.com 1500 <1 Yes Yes No
tsm: TSMSRV2> q server tsmsrv1
Server Comm. High-level Low-level Days Server Virtual Allow
Name Method Address Address Since Password Volume Replacement
Last Set Password
Access Set
-------- ------ ------------- --------- ------ ---------- ---------- -----------
TSMTRV1 TCPIP www.yyy.com 1500 <1 Yes Yes No
2 TSM servers: TSMSRV1 has the OC installed; TSMSRV2 is a hub server.
I now have both server set up for LDAP integration. I updated the admin: upd admin admin_name auth=ldap, then "notify subscriber". I can issue commands to tsmsrv1, but on tsmsrv2 I get
TSMSRV2> q process
ANR0454E Session rejected by server TSMBUR1, reason: 31 - SSL Required.
Return code 1006.
I suspect it has to do with server-to-server communications. So I want data transfer between the two servers NOT to use SSL as I suspect that would have a negative impact on replication, but I suppose that admin communications needs to be SSL. Exactly what do I set?
Relevant options are as follows:
AdminOnClientPort Yes NORETRIEVEDATE No
LDAP URL ldap://xxx/ou=xx,dc=xx,dc=xx
RunOrphanCleanup No SSLDisableLegacyTLS No
SSLHideLegacyTLS No SSLInitTimeout 2
TCPPort 1500 TcpAdminport 1500
SANdiscovery Off SSLTCPPort 1542
SSLTCPADMINPort 1543 SSLTLS12 Yes
SSLFIPSMODE No
tsm: TSMSRV1>q server tsmsrv2
Server Comm. High-level Low-level Days Server Virtual Allow
Name Method Address Address Since Password Volume Replacement
Last Set Password
Access Set
-------- ------ ------------- --------- ------ ---------- ---------- -----------
TSMBUR1 TCPIP xxx.yyy.com 1500 <1 Yes Yes No
tsm: TSMSRV2> q server tsmsrv1
Server Comm. High-level Low-level Days Server Virtual Allow
Name Method Address Address Since Password Volume Replacement
Last Set Password
Access Set
-------- ------ ------------- --------- ------ ---------- ---------- -----------
TSMTRV1 TCPIP www.yyy.com 1500 <1 Yes Yes No