When you have access to the node's password, TSM assumes you're the
authorized backup person for the node, which is why you can see everything
when you use the VirtualNodeName option and plug in the password. As root,
obviously you have access to all the files, so you can see them then, also.
A question, what kind of access does the "user that can't see the files"
have to the files the user is trying to restore? Does the user own those
files? I did a quick test on my box, and my regular user ID can only
restore things that I own/have access to. I didn't narrow it down to
whether it was own or access, but if you're interested, you can test both.
Alex
-----Original Message-----
From: Jack McKinney [mailto:[EMAIL PROTECTED]]
Sent: Monday, August 13, 2001 10:21 AM
To: [EMAIL PROTECTED]
Subject: dsmc: same vs. different node, root vs. non-root user...
I have a directory ("/foo/bar") on an AIX 4.3.3 box which has files
backed up into a TSM 4.1.3.2 server on the same AIX 4.3.3 box. If I
login as a regular user and run:
dsmc restore /foo/bar/ /tmp/ -inactive -pick -password=baz
I get no files. If I su to root and run it again, I see the files.
My first thought is that TSM is protecting data that might only be
visible to root (which it isn't-- it is world readable), and requiring
root to run dsmc to retrieve the files.
However, if I go to another AIX 4.3.3 box and execute the same command
as above (with -virtualnode=blah), I see the files! If I go to a linux box
and run the same command, I can still see the files!
So, I did an experiment. I have a linux box that has been backing up
into our TSM server for quite some time. I created a new directory on it
and copied some files to it, and then did a backup. I then tried to view
the files as a regular user using dsmc. No go. I then try this as root
and it works (i.e., I see the files). I then go to another linux box and
run the dsmc -virtualnode and see the files.
In summary: Machine A backs up some files. I can get these files as
root on Machine A or any user on Machine B using -virtualnode. I CANNOT
get these files as a non-root user on Machine A. If I try to specify
-virtualnode as a non-root user on Machine A, I get:
ANS1107E Invalid option/value: '-virtualnode=MachineA'
If I copy and paste this command to a shell prompt on Machine B (to
verify the syntax), it works, and I see the files.
What gives?
--
"It's supposed to be hard. If it wasn't hard, Jack McKinney
everyone would do it. It's the hard that [EMAIL PROTECTED]
makes it great." -Jimmy Dugan http://www.lorentz.com
1024D/D68F2C07 4096g/38AEF076
"WorldSecure <Freightliner.com>" made the following
annotations on 08/13/01 10:28:15
------------------------------------------------------------------------------
[INFO] -- Content Manager:
The information contained in this communication is confidential and intended solely
for the use of the individual to whom it is addressed and others authorized to receive
it. If you are not the intended recipient, any disclosure, copying, distribution or
taking of any action in reliance on the contents of this information is prohibited. If
you have received this communication in error, please immediately notify the sender by
phone if possible or via email message.
==============================================================================
