Assigning user privileges (secure clusters only)

In order to enable remote cluster operations you must configure a VCS user with the same name and privileges in each cluster.

When assigning privileges in secure clusters, you must specify fully-qualified user names, in the format username@domain. You cannot assign or change passwords for users when VCS is running in secure mode.

You must assign service group rights to the application service group as well as any dependent service groups except for the RVG service group.

See the Cluster Server Administrator's Guide.

To assign user privileges at the primary site

  1. Set the configuration to read/write mode:
    haconf -makerw
  2. Add the user. Specify the name in the format username@domain.
    hauser -add user [-priv <Administrator|Operator>]
  3. Modify the attribute of the service group to add the user. Specify the application service group and any dependent service groups except for the RVG service group.
    hauser -add user [-priv <Administrator|Operator> 
    [-group service_groups]]
  4. Reset the configuration to read-only:
    haconf -dump -makero

To assign user privileges at the secondary site

  1. Set the configuration to read/write mode:
    haconf -makerw
  2. Add the user. Specify the name in the format username@domain.
    hauser -add user [-priv <Administrator|Operator>]
  3. Reset the configuration to read-only:
    haconf -dump -makero