Working with Storage Viewer for Capacity Host Data Collection > Manage Access Control
  
Version 10.0.01
Manage Access Control
For Linux hosts, root-level privileges are required. Data Collectors require read-only access to execute non-intrusive commands on hosts. It is strongly recommended that a separate login account used strictly for Hitachi Storage Viewer be established and using Active Directory for Windows systems and the sudo command for Linux systems, restrict the commands that Hitachi Storage Viewer can issue. To accommodate this security approach, you can optionally specify access control commands like sudo, sesudo, or pbrun.
Files containing sudo commands per operating system can be found on the Portal server in: /opt/aptare/updates. These filenames contain both the OS and the version of the sudo commands file so that you can identify the files that contain the latest updates; for example: hpux_9.1.01, aix_9.1.01, linux_9.1.01, solaris_9.1.01.
Multiple Access Control settings can be created to manage access control commands for Linux hosts. For additional pre-requisite details, see Host Resources Prerequisites and Configurations and Host Inventory Configuration Steps.
To Manage Access Control settings
1. Click Admin > Data Collection > Host Inventory.
2. Click Manage Access Control.
3. Click Add to configure settings and then click OK.
 
Field
Description
Sample Values
Domain*
Select the Storage Viewer Domain from the list; for most environments, only one Domain is displayed. Multiple domains facilitate management for Managed Services Partners (MSPs).
 
Name*
Assign a name to identify this Access Control setting.
 
Command*
Linux hosts only: Provide the full path to the access control command, such as sudo, sesudo, or pbrun. Files containing sudo commands per operating system can be found on the Portal server in: /opt/aptare/updates. These filenames contain both the OS and the version of the sudo commands file so that you can identify the files that contain the latest updates; for example: hpux_9.1.01, aix_9.1.01, linux_9.1.01, solaris_9.1.01.
You can configure sudo to prompt for a password using a custom prompt (the default is “Password”). Storage Viewer expects the prompt to be “Password.” If the hosts have a custom password prompt, you’ll need to specify -p Password: after the path to sudo. See the example to the right.
/usr/bin/sudo
 
/user/local/bin/sudo -p Password:
Use for all command*
Select Yes to have the Data Collector use the access command for all commands.
 
Description
Enter a note to help identify this Access Control setting