ADSM-L

[no subject]

2015-10-04 17:53:22
Wayne,

you could probably achieve this by making the ADSM user account (or whatever
you're going to call it) a member of the local group Backup Operators rather
than Administrators. I'm not sure whether ADSM uses tha SAM in the correct way
to make this work, but I'd at least give it a shot.



Regards,
Henning Kilset Pedersen
IBM Global Services/Managed Operations IBM Account
Phone : +47-66815776      email : pedershk AT no.ibm DOT com



ADSM-L AT VM.MARIST DOT EDU on 30.09.98 07:56:00
Please respond to wayne AT nettrack.com DOT au
To: ADSM-L AT VM.MARIST DOT EDU
cc:
Subject: NT ADSM backup using an API to bypass security.


Howdy All,
I have a curly question that may not be possible to do.
I have a customer that wants to install ADSM on an NT system under an
Administrator that does not have the authority to access the data.
Another piece of software currently being used, uses several NT API's to
side step this security problem. The API's are :-
BackupWrite
BackupRead
BackupSeek
FindFirstFile
FindNextFile
Se_Backup_Name
Se_Restore_Name
No prize for guessing the existing software product that can do this.

It can backup files that the user doesn't have acces to. This may be a
good thing, but from what I understand it goes against the design
philosophy of ADSM & permissions. It would be sad that ADSM would not be
able to measure up to this challenge.

P.S. I know that they could just install the software under a user that
has sufficient authority, but this user runs an audit log & ADSM would
make it impractical to monitor.

Any Clues?

<Prev in Thread] Current Thread [Next in Thread>
  • [no subject], Unknown <=