Home > Veritas Storage Foundation™ File System Manual Pages

CSF_RESOLV.CONF (4)
Devices

Table of contents

NAME

csf_resolv.conf - stores host and security information used by Veritas Storage Foundation Management Server (SF Management Server) commands and scripts.

SYNOPSIS

{{[Section] parameter}}

DESCRIPTION

csf_resolv.conf stores host and security information used by Veritas Storage Foundation Management Server (SF Management Server) commands and scripts.

[DOMAIN_CONTROLLER]

domain = VSFMShost_name;
Defines the SF Management Server host. VSFMShost_name must be the fully-qualified host name for the Management Server.

[SECURITY]

BROKER_HOST = ABhost_name;
Defines the Symantec Product Authentication Service Authentication Broker being used by SF Management Server. ABhost_name must be the fully-qualified host name for the Authentication Service broker host.
DOMAIN_NAME = domain_name;
domain_name is a valid authentication domain for the broker host and the name of the domain to which the user (if specified) belongs.

domain_name can be either localhost (in case of a standalone install) or the NIS, NISplus, or NT domain names. For unixpwd domains, domain_name will be the name of the Authentication Broker host.

DOMAIN_TYPE = domain_type;

domain_type is the type of authentication domain for the broker host, and can be the following: vx, nisplus, nis, nt, and unixpwd.

PROTOCOL_TYPE = protocol_level;
protocol_level can be one of the following values: high, medium, and low.
USER = user-id;
user-id is a valid account for the broker host.

The typical user-id is vea_guest. It is important that a valid credential certificate issued by BROKER_HOST exist on the system for USER. It is recommended that user-id not be an account with administrative privileges on non-trusted hosts in the domain. Command line interfaces will accept the user-id declared in csf_resolv.conf and not prompt users for credentials.

NOTES

csf_resolv.conf resides on the Veritas Storage Foundation Management Server host in: /etc/default

It is possible to override the default csf_resolv.conf by specifying the environment variable: CSF_RESOLV_CONF. In this manner you can manage domain settings for multiple users. CSF_RESOLV_CONF should point to a file that uses the conventions defined in this man page.

A semi-colon (;) must follow each line added to csf_resolv.conf. No comments are allowed in csf_resolv.conf.

csf_resolv.conf assumes that the certificate used to authenticate the user resides on the local host. If this is not the case, you must use the Authentication Service command-line interface, vssat, to authenticate the user. For example:

vssat authenticate --domain nis:my_broker@mycompany.com --prplname TomSawyer --password LetTomIn --broker MyHost:2821

For more information, see vssat(1M).

SEE ALSO

gridcli(1M), veaconfig(1M), veainfo(1M), vssat(1M), vxini(1M), vxpal(1M)

COPYRIGHTS

Copyright (c) 2006 Symantec Corporation. All rights reserved.

Last updated: 13 Apr 2006
Copyright ©2009 Symantec Corporation
All rights reserved.