Using the halogin command for native OS accounts with VCS


		< Previous \| TOC \| Index \| Next >

Using the halogin command for native OS accounts with VCS

VCS has deprecated the AllowNativeCliUsers attribute. To use native OS accounts with VCS, use the halogin command. Once you run halogin, VCS encrypts and stores your VCS credentials in the your home directory for a specific time period. After running halogin, you do not need to authenticate yourself every time you run a VCS command. In secure clusters, the command also sets up a trust relationship and retrieves a certificate from an authentication broker.

Follow the instructions below if you used the AllowNativeCliUsers attribute.

To set up VCS authentication for clusters running in secure mode

Ensure that each native user running VCS commands must have a home directory on the system from which the user runs VCS commands.

Create VCS user accounts for all users and assign privileges to these users.
If you run VCS commands from a remote host, set these environment variables:
- VCS_HOST—Name of the VCS node on which you run commands. You may specify the virtual IP address associated with the cluster.
- VCS_DOMAIN—Name of the VxSS domain to which the user belongs.
- VCS_DOMAINTYPE—Type of VxSS domain: unixpwd, nt, nis, nisplus, or vx.
Run the halogin command:
# halogin vcsusername password

Perform steps 2 and 3 for each VCS user.

To set up VCS authentication for clusters not running in secure mode

Ensure that each native user running VCS commands must have a home directory on the system from which the user runs VCS commands.

Create VCS user accounts for all users and assign privileges to these users.
For each VCS user, run the halogin command:
# halogin vcsusername password


^ Return to Top	< Previous \| TOC \| Index \| Next >