HP Archive Backup System for OpenVMS Guide to Operations

06.11.2014 Views
5 Security The security model used by ABS and MDMS is designed to provide flexibility in both the level of security and ease-of-use. ABS uses the MDMS security model, which is based on two main elements: • Rights - The assignment of individual rights to particular users or classes of users that allow them to perform specific operations across the domain. Rights allow users to perform operations on all objects or certain object classes across the domain. This is a task-based form of security. • Access Control - The assignment of access control is on a per-object basis, and allows specific users to perform specific types of operations on the object. This is an object-based form of security. In addition, you can assign your MDMS domain one of three levels of access-control based security as follows: • No Access Control - As the name implies, MDMS and ABS perform no access control based checking, even if individual objects have access control entries defined. However, rights continue to be checked. • Loose Access Control - This option supports access control checking on objects, but only on those objects that have at least one access control entry. If there is at least one entry, access to the object is restricted to users with access control entries supporting the requested access. With objects with no access control entries, access to the object is implicitly granted. • Tight Access Control - Designed for secure environments, this option supports access control checking on all objects. If there is at least one access control entry on an object, access to the object is restricted to users with access control entries supporting the requested access. With objects with no access control entries, access to the object is implicitly denied.This basically requires that all objects have appropriate access controls to be defined for the object to be used. Certain domain users may access normally inaccessible objects to prevent accidental lock-out due to insufficient access controls. In general, the security model requires that both rights and access control are applied to users wanting to perform operations. In other words, having the “super” right MDMS_ALL_RIGHTS does not necessarily mean that you can do anything - any access control restrictions must also be satisfied. This chapter discusses the security model in more detail. Security 5–1

Page 1 and 2: HP Archive Backup System for OpenVM

Page 3 and 4: Contents Preface . . . . . . . . .

Page 5 and 6: 3.6.1 Agent Qualifiers . . . . . .

Page 7 and 8: 4.11.7 Previous and Next Volumes .

Page 9 and 10: 9.3 Defining the Logical MDMS$SBT_T

Page 11 and 12: B.2 SLS/MDMS V2.x to ABS/MDMS V4.x

Page 13: Tables Table 3-1 Logical Names Avai

Page 17 and 18: Preface Intended Audience This docu

Page 19 and 20: 1 Introduction The Archive Backup S

Page 21 and 22: 2 Overview This chapter provides an

Page 23 and 24: Overview 2.2 ABS Objects Figure 2-1

Page 25 and 26: 2.2.6 Schedules 2.3 ABS Catalogs Ov

Page 27 and 28: Overview 2.5 Media, Device and Mana

Page 29 and 30: 2.8.3 Groups 2.8.4 Jukeboxes Overvi

Page 31 and 32: 2.8.8 Nodes 2.8.9 Pools 2.8.10 Volu

Page 33 and 34: 3 Saving and Restoring Data 3.1 Arc

Page 35 and 36: 3.1.5 Destination 3.1.6 Drives 3.1.

Page 37 and 38: 3.1.12 Volume Sets Saving and Resto

Page 39 and 40: 3.2.5 Staging 3.2.6 Catalog Save En

Page 41 and 42: • Save Type - Copied from related

Page 43 and 44: Example 3-4 Staging Information in

Page 45 and 46: 3.4.3 Compression 3.4.4 Data Safety

Page 47 and 48: Saving and Restoring Data 3.4 Envir

Page 49 and 50: Saving and Restoring Data 3.5 Saves


Page 53 and 54: Table 3-3 Disk, File, Path and Data



Page 59 and 60: • First disk/file specification p

Page 61 and 62: 3.5.17.1 HOLIDAYS.DAT Record Format

Page 63 and 64: Saving and Restoring Data 3.6 Selec

Page 65 and 66: 3.7.2 Command 3.7.3 Restriction Sav

Page 67: 3.7.5 Include and Exclude 3.7.6 Tim

Page 70 and 71: Media Management 4.2 Domain 4.2.1 A

Page 72 and 73: Media Management 4.2 Domain 4.2.15

Page 74 and 75: Media Management 4.3 Drives 4.3.5 D

Page 76 and 77: Media Management 4.3 Drives 4.3.15

Page 78 and 79: Media Management 4.5 Jukeboxes 4.5.

Page 80 and 81: Media Management 4.5 Jukeboxes 4.5.

Page 82 and 83: Media Management 4.7 Magazines 4.6.

Page 84 and 85: Media Management 4.8 Media Types 4.

Page 86 and 87: Media Management 4.11 Volumes 4.10.

Page 88 and 89: Media Management 4.11 Volumes Table


Page 92 and 93: Media Management 4.11 Volumes neede

Page 94 and 95: Media Management 4.11 Volumes • R


Page 100 and 101: Security 5.1 MDMS Rights 5.1 MDMS R

Page 102 and 103: Security 5.2 Access Control 5.2 Acc

Page 104 and 105: Security 5.3 Implementing a Securit

Page 106 and 107: User Interfaces 6.1 Graphical User






Page 118 and 119: User Interfaces 6.2 DCL Interface 6

Page 120 and 121: User Interfaces 6.2 DCL Interface 6

Page 122 and 123: User Interfaces 6.3 User Interface

Page 124 and 125: Preparing For Disaster Recovery 7.1




Page 132 and 133: Remote Devices 8.3 Using RDF with M

Page 134 and 135: Remote Devices 8.4 Monitoring and T



Page 140 and 141: Remote Devices 8.6 RDserver Inactiv

Page 143 and 144: 9 System Backup to Tape for Oracle

Page 145 and 146: System Backup to Tape for Oracle Da





Page 155 and 156: 9.6.3 Specifying a Catalog System B





Page 165 and 166: 9.11.4 Using Tape I/O Slaves System




Page 173 and 174: 10 Virtual Library System (VLS) 10.

Page 175 and 176: 11 Architecture 11.1 The Server Pro

Page 177 and 178: 11.1.1.4 Failover of the DB Server

Page 179 and 180: 11.3 Catalogs 11.3.1 Catalog Sizes

Page 181 and 182: 11.4 Coordinator Architecture 11.4

Page 183 and 184: 12 Troubleshooting 12.1Save and Res

Page 185 and 186: 12.2.3 MDMS Requests Troubleshootin

Page 187 and 188: 12.2.5 MDMS Scheduled Activities 12

Page 189 and 190: %%%%%%%%%%% OPCOM 22-APR-2006 21:58

Page 191 and 192: Troubleshooting 12.5 Windows and Un

Page 193: Troubleshooting 12.7 Information Re

Page 196 and 197: Configuration Example Server Versio

Page 198 and 199: Configuration Example * Enter domai

Page 200 and 201: Configuration Example COMP_ROOM_1 I

Page 202 and 203: Configuration Example Jukebox TLZ06

Page 204 and 205: Configuration Example Volume Sets:

Page 206 and 207: Migrating from SLS/MDMS V2.X to ABS


























Page 258 and 259: Prev3 Support C.1 Using SLS/MDMS an

Page 260 and 261: Prev3 Support C.2 Using SLS as the

Page 263 and 264: D Upgrading from ABS V2.X/V3.X to V

Page 265 and 266: Upgrading from ABS V2.X/V3.X to V4.

Page 267 and 268: E ABS/MDMS Support for Fibre Channe

Page 269 and 270: Comment: E.4 Multipathing ABS/MDMS

Page 271: Guidelines for OpenVMSCluster Confi

Page 274 and 275: Date Specifications 3-32 Date Type

Page 276 and 277: RETAIN VERSION 3-29 Retention Days

mdms

volume

restore

volumes

catalog

database

node

archive

specify

jukebox

openvms

operations

HP Archive Backup System for OpenVMS Guide to Operations

HP Archive Backup System for OpenVMS Guide to Operations ... View more HP Archive Backup System for OpenVMS Guide to Operations

Delete template?

Save as template ?

HP Archive Backup System for OpenVMS Guide to Operations HP Archive Backup System for OpenVMS Guide to Operations