VCS has deprecated the AllowNativeCliUsers attribute. To use native OS accounts with VCS, use the halogin command. After you run the halogin command, VCS encrypts and stores your VCS credentials in your home directory for a specific time period. After you run the halogin command, you need not authenticate yourself every time you run a VCS command. In secure clusters, the command also sets up a trust relationship and retrieves a certificate from an authentication broker.
See the Veritas Cluster Server Administrator's Guide for information on assigning user privileges to OS user groups for clusters running in secure mode and clusters not running in secure mode.
Perform the following procedure if you used the AllowNativeCliUsers attribute. Ensure that each native user running VCS commands has a home directory on the system from which the user runs VCS commands.
To set up VCS authentication for clusters running in secure mode
# haconf -makerw
If the user executes VCS commands from a remote host, set the following environment variables:
VCS_HOST: Name of the VCS node on which you run commands. You may specify the virtual IP address associated with the cluster.
VCS_DOMAIN: Name of the VxSS domain to which the user belongs.
VCS_DOMAINTYPE: Type of VxSS domain: unixpwd, ldap, nt, nis, nisplus, or vx.
$ halogin vcsusername password