Hello,
We have an internal audit issue. The auditor doesn't want that tsm admin people can access backup data and primary data on the clients. Of course being a tsm admin you need some privileges in tsm and on the os clients win and linux to be able to perform your daily job.
On the client : we need administrator rights to install the tsm baclient and tdp software and to look into logfiles for problem solving, starting backups manually, starting the gui for performing restores if htpp access doesn't work.
On the tsm server : related to be able to touch the backup data, meaning for instance executing delete filesystems to cleanup remaining backup data of decommissioned clients ...
Has sombody else the same issue with internal audit in the company, and could solve it without restricting the daily work.
Thanks
We have an internal audit issue. The auditor doesn't want that tsm admin people can access backup data and primary data on the clients. Of course being a tsm admin you need some privileges in tsm and on the os clients win and linux to be able to perform your daily job.
On the client : we need administrator rights to install the tsm baclient and tdp software and to look into logfiles for problem solving, starting backups manually, starting the gui for performing restores if htpp access doesn't work.
On the tsm server : related to be able to touch the backup data, meaning for instance executing delete filesystems to cleanup remaining backup data of decommissioned clients ...
Has sombody else the same issue with internal audit in the company, and could solve it without restricting the daily work.
Thanks