Hi Michas,
Quote:
They use Serviceguard to provide different packages, which are treated as if they where seperate systems.
I think this might not be true. MCSG is a HA product. Kinda like you have few servers clustered together to ensure if one goes down, the other remains up. Yes, it has packages but, you do not have operating systems in packages. We have applications on packages. So, the server fails, all the packages (applications) move to the other node. Not the system itself!
Quote:
Therefore people log into packages instead of Host
Yes, we assign an (relocatable) IP to the package so the application users directly login to the applications instead of server. To say it simple, they use the application IP to access it. So, the users are not exactly aware on which server is running it. They need not know either.
Quote:
They "solved" the problem by either creating a single user on each package where everyone logs in, or by creating one passwd entry per user and package, to allow specifying the correct home directory on each package, which leads to me having a different name on each package.
Are you referring to a System user or a Application user? Both are different.
Again, the question here is on security than on MCSG. I assume it works as expected.
If we are talking about application logins and application security, its better we talk to DB/Application team and get more information.
All the best!
-DB