Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: NIM - mksysb of remote server
Top Forums UNIX for Advanced & Expert Users NIM - mksysb of remote server Post 302121805 by rhfrommn on Monday 18th of June 2007 01:24:05 PM
Old 06-18-2007
I'm no expert on NIM configuration, but I believe the error is you need to have rsh and/or rlogin enabled on your target server. NIM uses the old "r" protocols, but most shops disable them for security reasons. Since your error is a permission denied from the rsh daemon I'd take a look at that.

Also, a good site for info on AIX error messages and codes is here:
http://publib.boulder.ibm.com/infoce...v5r3/index.jsp
Click on "AIX message center" in the left pane, then go to seven-digit error numbers to search for your code.

Here is the first few lines listed for error 0826-813. Since it mentions .rhosts that is even more evidence it is your "r" protocol config that needs fixing.

0826-813
Permission is denied.
Problem Determination:
The host or user is not listed in the /etc/hosts.equiv file.

User Response:
Add the host or the user to the /etc/hosts.equiv or $HOME/.rhosts file.

Problem Determination:
The host or user is denied access in the /etc/hosts.equiv or $HOME/.rhosts file on the server.

User Response:
Add access for host or user in the /etc/hosts.equiv or $HOME/.rhosts file.
 

10 More Discussions You Might Find Interesting

1. AIX

NIM mksysb recovery

I have multiple LPARS on p650 with mix of AIX5.2 and AIX5.1 with different rml level My understanding is creating mksysb nim on NIM server is for new installation of LPARS Then; How do I do mksysb backup on existing lpars for recovery purpose or how do I do all mksysb to a NFS mounted Filesystem... (1 Reply)
Discussion started by: melindaj
1 Replies

2. Shell Programming and Scripting

script to automate mksysb via nim in AIX 5.3

#!/bin/ksh # # nim_mksysb # get mksysb from each client machine specified with -m. If no # machines specified, get mksysb from ALL machines. -r flag says # remove oldest existing mksysb for the machines being backed up. # use -n no_make flag with -r to remove a generation of mksysb, #... (0 Replies)
Discussion started by: barkath
0 Replies

3. AIX

NIM client mksysb restore

Can a NIM client mksysb restore be performed via NIM (smitty nim) without the NIM client machine having the NIM server's IP and hostname in its /etc/hosts file? (10 Replies)
Discussion started by: kah00na
10 Replies

4. AIX

nim mksysb buffer overflow error

Hi, I am trying to backup a system ("client") through a slow network using "nim mksysb" on a nim server ("master") The backup starts, but doesn't success. Thanks if you can help me to resolve this problem : Creating information file (/image.data) for rootvg... Creating list of files to... (2 Replies)
Discussion started by: astjen
2 Replies

5. AIX

how to create a package from mksysb via nim ?

Hello, I need to install "bos.adt.libm 5.3.0.0" on a server (AIX5.3 power 5). How to install it from a nim mksysb of an another partition ? Thank you (3 Replies)
Discussion started by: astjen
3 Replies

6. AIX

savevg/tar/mksysb of server-A on remote tape drive possible ?

Every 3 months we have to do backups (smitth mksysb/lsmksysb + tar) on at least 30 workstations. We have to carry around 2 external tape drives to connect to them. It is a pain to do because it takes at least 3 days to do (evening/night shift) and users sometimes complain that there desk is not put... (1 Reply)
Discussion started by: Browser_ice
1 Replies

7. AIX

AIX 5L nim mksysb command

Hi All, Please excuse the possibly naive question but I'm trying to clone/install a new AIX 5.3 LPAR on a p570 from a mksysb image file using nim. Has anyone done this before and if so, what would the exact command look like? Does it even remotely resemble something like nim -o... (1 Reply)
Discussion started by: combustables
1 Replies

8. AIX

mksysb restoration using NIM

Hi, I just want to ask whether anyone has experience on restoring mksysb backup in NIM. We have taken the mksysb backup and the SPOT has been configured on NIM also. I just want to know the checkpoints before doing this. Is there any checkpoints we need to do? Do we need to unmirrorvg? This... (12 Replies)
Discussion started by: depam
12 Replies

9. AIX

mksysb using NIM

I am implementing mksysb backups using NIM. I am using nimsh as client communication and mksysb backup are working fine, but this requires remote logon to be enabled for root. Any thoughts on how can I implement mksysb backups using NIM without enabling remote logon for "root" ? (1 Reply)
Discussion started by: mk8570
1 Replies

10. AIX

VIOS backupios -mksysb - does it need to be served by a NIM server ?

working through VIOS backup options. Generally, we store mksysb's on a server and then NFS mount them from it to copy to a VIO optical library, etc. In the case of a VIO backup, I see the -mksysb option to backupios and understand that it doesn't include the NIM resources in the backup. ... (3 Replies)
Discussion started by: maraixadm
3 Replies

LEARN ABOUT SUNOS

rhosts

hosts.equiv(4)							   File Formats 						    hosts.equiv(4)

NAME

       hosts.equiv, rhosts - trusted remote hosts and users

DESCRIPTION

       The  /etc/hosts.equiv  and .rhosts files provide the "remote authentication" database for rlogin(1), rsh(1), rcp(1), and rcmd(3SOCKET). The
       files specify remote hosts and users that are considered  "trusted".  Trusted users are allowed to access the local system without  supply-
       ing  a  password.  The  library	routine  ruserok()  (see  rcmd(3SOCKET))  performs  the authentication procedure for programs by using the
       /etc/hosts.equiv and .rhosts files. The	/etc/hosts.equiv file applies to the entire system, while individual users can maintain their  own
       .rhosts files in their home directories.

       These  files  bypass the standard password-based user authentication mechanism. To maintain system security, care must be taken in creating
       and maintaining these files.

       The remote authentication procedure determines whether a user from a remote host should be allowed to access  the  local  system  with  the
       identity  of  a local user. This procedure first checks the /etc/hosts.equiv file and then checks the .rhosts file in the home directory of
       the local user who is requesting access. Entries in these files can be of two  forms.  Positive	entries   allow  access,  while   negative
       entries deny access. The authentication succeeds when a matching positive entry is found. The procedure fails when the first matching nega-
       tive entry is found, or if no matching entries are found in either file. The order of entries is important. If the files contain both posi-
       tive and negative entries, the entry that appears first will prevail. The rsh(1) and rcp(1) programs fail if the remote authentication pro-
       cedure fails. The rlogin program falls back to the standard password-based login procedure if the remote authentication fails.

       Both files are formatted as a list of one-line entries.	Each entry has the form:

       hostname [username]

       Hostnames must be the official name of the host, not one of its nicknames.

       Negative entries are differentiated from positive entries by a `-' character preceding either the  hostname or username field.

   Positive Entries
       If the form:

       hostname

       is used, then users from the named host are trusted. That is, they may access the system with the same user name as they have on the remote
       system. This form may be used in both the  /etc/hosts.equiv and .rhosts files.

       If the line is in the form:

       hostname username

       then  the named user from the named host can access the system. This form may be used in individual .rhosts files to allow  remote users to
       access the system as a different local user. If this form is used in the /etc/hosts.equiv file, the named remote user will  be  allowed	to
       access the system as  any local user.

       netgroup(4) can be used in either the  hostname or username fields to match a number of hosts or users in one entry. The form:

       +@netgroup

       allows  access from all hosts in the named netgroup. When used in the username field, netgroups allow a group of remote users to access the
       system as a particular local user.
	The form:

       hostname +@netgroup

       allows all of the users in the named netgroup from the named host to access the system as the local user. The form:

       +@netgroup1 +@netgroup2

       allows the users in netgroup2 from the hosts in netgroup1 to access the system as the local user.

       The special character `+' can be used in place of either hostname or username to match any host or user. For example, the entry

       +

       will allow a user from any remote host to access the system with the same username. The entry

       + username

       will allow the named user from any remote host to access the system. The entry

       hostname +

       will allow any user from the named host to access the system as the local user.

   Negative Entries
       Negative entries are preceded by a `-' sign. The form:

       -hostname

       will disallow all access from the named host. The form:

       -@netgroup

       means that access is explicitly disallowed from all hosts in the named netgroup. The form:

       hostname -username

       disallows access by the named user only from the named host, while the form:

       + -@netgroup

       will disallow access by all of the users in the named netgroup from all hosts.

   Search Sequence
       To help maintain system security, the /etc/hosts.equiv file is not checked when access is being	attempted  for	super-user.  If  the  user
       attempting  access  is not the super-user, /etc/hosts.equiv is searched for lines of the form described above. Checks are made for lines in
       this file in the following order:

       1.  +

       2.  +@netgroup

       3.  -@netgroup

       4.  -hostname

       5.  hostname

       The user is granted access if a positive match occurrs.	Negative entries apply only to /etc/hosts.equiv and may be  overridden	by  subse-
       quent .rhosts entries.

       If no positive match occurred, the .rhosts file is then searched if the user attempting access maintains such a file. This file is searched
       whether or not the user attempting access is the super-user. As a security feature, the .rhosts file must be  owned  by	the  user  who	is
       attempting access. Checks are made for lines in .rhosts in the following order:

       1.  +

       2.  +@netgroup

       3.
	   -@netgroup

       4.  -hostname

       5.  hostname

FILES

       /etc/hosts.equiv        system trusted hosts and users

       ~/.rhosts	       user's trusted hosts and users

SEE ALSO

       rcp(1), rlogin(1), rsh(1), rcmd(3SOCKET), hosts(4), netgroup(4), passwd(4)

WARNINGS

       Positive  entries  in  /etc/hosts.equiv that include a username field (either an individual named user, a netgroup, or `+' sign)  should be
       used with extreme caution. Because  /etc/hosts.equiv applies system-wide, these entries	allow one, or a group of, remote users	to  access
       the  system as any local user.  This can be a security hole. For example, because of the search sequence, an /etc/hosts.equiv file consist-
       ing of the entries

       +
       -hostxxx

       will not deny access to "hostxxx".

SunOS 5.10							    23 Jun 1997 						    hosts.equiv(4)
All times are GMT -4. The time now is 09:04 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy