Jump to content United States-English
HP.com Home Products and Services Support and Drivers Solutions How to Buy
» Contact HP
More options
HP.com home

Managing Systems and Workgroups: A Guide for HP-UX System Administrators
» 

Technical documentation

Complete book in PDF
» Feedback
Content starts here

 » Table of Contents

 » Index

spacerspacerspacer
spacer
spacer
   
 

HP Part Number: B2355-90950

Edition 9

E0306

© Copyright 1997-2006 Hewlett-Packard Development Company, L.P.

Table of Contents

Preface
HP-UX 11i Release Names and Release Identifiers
Changes in System Management Tools at HP-UX 11i Version 2
SAM X-Window-Based Interface
SCM Web-Based Interface
SCR and DMI Replaced by New SIM Tool at 11i v2
Distributed Systems Administration Utilities
Finding HP-UX Information
What’s in This Document
1 Systems and Workgroups
Workgroup Focus
How We Are Using the Terms “System” and “Workgroup
System
Workgroup
Types of System
Single-User versus Multiuser
Server versus Client
Partitioned Systems (The Partitioning Continuum)
Hardware
Operating Systems
Types of Workgroup
NFS Diskless
Multiuser
Client-Server
2 Planning a Workgroup
Choosing a File-Sharing Model
Multiuser Model
NFS Diskless Model
Client-Server Model
Distributing Applications and Data
HP-UX File-Sharing Model (V.4)
What To Distribute; What To Keep Local
Servers for Specific Purposes
A Sample Workgroup / Network
The MSW Network (Overview)
The MSW Network (System by System)
Setting Disk-Management Strategy
Distributing Disks
Capacity Planning
Disk-Management Tools
Planning to Manage File Systems
Introduction to Managing File Systems
Journaled File System, the File System Default
Frequently Asked Questions about the Journaled File System
Managing Users Across Multiple Systems
Guidelines
Should You Share Users’ Home and Mail Directories?
Planning your Printer Configuration
LP Spooler
HP Distributed Print Service (HPDPS)
For More Information on Printer-Related Tasks
Distributing Backups
Using HP OpenView OmniBack II for Backup
Services for Data Exchange with Personal Computers
File Transfer Tools
Terminal Emulators
Versions of UNIX-like Operating Systems
Versions of the X Window System for PCs
Versions of the PC Windows Systems for HP-UX Systems
NFS Mounts
Network Operating Systems
Electronic Mail
Possible Problems Exchanging Data Between HP-UX and PCs
ASCII End-of-Line Problems
The Endian Difference Problem
Internet Protocols and IPv6
IPv6 Information
3 Configuring a System
Starting A Preloaded System
Using the CDE Desktop
Using System Administration Manager (SAM)
Using SAM versus HP-UX Commands
Starting SAM
Using SAM with an X Window System
Using SAM with a Text Terminal
Using SAM for Remote System Administration
Granting Users Limited Access to SAM
Displaying Device Information in SAM
Using Distributed Systems Administration Utilities
Introduction to Configuration Synchronization
Configuring cfengine
cfengine Troubleshooting
Introduction to syslog
Log Consolidation Overview
Log Consolidation Configuration
Disabling Log Consolidation
Securing Consolidated Logs
Viewing Consolidated Logs
Introduction to Command Fanout
Controlling Access to a System
Adding a User to a System
Controlling File Access
Controlling Usage and Processes with Run-Levels
Adding Peripherals
Setting Up Non-HP Terminals
Troubleshooting Problems with Terminals
Setting Up the Online Manpages
Making Adjustments
Setting the System Clock
Manually Setting Initial Information
Customizing System-Wide and User Login Environments
Setting Up Mail Services
Components of an Electronic Mail System
Configuring a System to Send Electronic Mail
Configuring a System to Receive Electronic Mail
Reconfiguring the Kernel
(Prior to HP-UX 11i Version 2)
Steps to Reconfigure the Kernel
If the New Kernel Fails to Boot
Managing Dynamically Loadable Kernel Modules
Reconfiguring the Kernel
(HP-UX 11i Version 2)
Introduction
Common Behavior for Kernel Configuration Commands
Managing Kernel Modules with kcmodule
Managing Kernel Modules with kcweb
Managing Kernel Tunable Parameters with kctune
Managing Kernel Tunable Parameters with kcweb
Monitoring Kernel Resource Usage
Managing the Running Configuration using kconfig
Managing Saved Configurations with kconfig
Managing Configurations with System Files
Managing Device Bindings
The Kernel Configuration Log File
Parsing Command Output
Recovering from Errors
Kernel Configuration Example
Kernel Configuration Quick Reference Tables
Transition from Previous HP-UX Releases
4 Configuring a Workgroup
Installing New Systems
Configure New Systems into the Network
Configure New Systems into a Workgroup
Adding Users to a Workgroup
Accessing Multiple Systems
Sharing Remote Work Directories
Local versus Remote Home Directories
Adding a User to Several Systems: A Case Study
Exporting a Local Home Directory
Implementing Disk-Management Strategy
Sharing Files and Applications via NFS and ftp
Exporting a File System (HP-UX to HP-UX)
Importing a File System (HP-UX to HP-UX)
Importing HP-UX Directories to NT
Troubleshooting NFS
Recovering Network Services after a Power Failure
Moving or Reusing an Exported Directory
Configuring Anonymous ftp
Troubleshooting ftp login
Adding PC/NT Systems into the Workgroup
Hardware Connections
Configuring HP-UX Systems for Terminal Emulation
Configuring HP-UX Systems for File Transfer
Mounting File Systems Between HP-UX and PCs
Configuring Printers for a Workgroup
Configuring Printers to Use the LP Spooler
Configuring Printers to Use HPDPS
Compatibility Between HP-UX Releases 10.x and 11.x
HP-UX 10.x to 11.0 Compatibility
Exchanging Data Between 32-bit and 64-bit Applications
Large File Compatibility
To Configure Large File Support with NFS
Large File Support and NFS Protocol Compatibility
5 Administering a System: Booting and Shutdown
Booting Systems
The Boot Sequence:  Starting an HP-UX System
Booting HP-UX on HP Integrity Servers: Details and Variations
Booting HP-UX on HP 9000 (PA-RISC) Systems: Details and Variations
Speeding the Boot: SpeedyBoot
Setting Initial System Information
Customizing Start-up and Shutdown
Shutting Down Systems
Overview of the Shutdown Process
Types of Shutdown
Special Considerations for Shutting Down Certain Systems
Avoiding a Shutdown When Possible
Abnormal System Shutdowns
Overview of the Dump / Save Cycle
Preparing for a System Crash
What Happens When the System Crashes
What to Do After the System Has Rebooted
6 Administering a System: Managing Disks and Files
Managing Disks
Current Disk Management Facts
The Logical Volume Manager (LVM)
Planning for the Use of Logical Volumes
LVM Naming Conventions
Managing Logical Volumes Using SAM
Managing Logical Volumes Using HP-UX Commands
Tasks That You Can Perform Only with HP-UX Commands
LVM Procedures
LVM Troubleshooting
Managing File Systems
Creating a File System
Mounting File Systems
Unmounting File Systems
Extending the Size of a File System Within a Logical Volume
Copying a File System Across Devices
Dealing with File System Corruption
Replacing an Existing File System with a Smaller One
Managing Disk Space Usage with Quotas
Managing Mirrored File Systems
Defragmenting a JFS File System
Converting Existing File Systems to JFS
Resizing a JFS File System
Examples and Cookbook Procedures
Managing Large Files
Managing FTP
Managing Swap and Dump
Types of Swap Space
Primary and Secondary Swap
Designing Your Swap Space Allocation
Adding, Modifying, or Removing File System Swap
Configuring Primary and Secondary Swap
Configuring Dump
Backing Up Data
Choosing the Type of Storage Device
Choosing a Backup/Recovery Utility
Determining What Data to Back Up
Determining How Often to Back Up Data
Backing Up Your Data Using the fbackup Command
Examples of fbackup Commands
Backing Up Files on a Remote System
Setting Up an Automated Backup Schedule
Creating an Automated Backup Schedule
Displaying an Automated Backup Schedule
Activating an Automated Backup Schedule
Backing Up If You Are Using LVM
Backing Up Large Files
Backing Up a JFS Snapshot File System
Restoring Your Data
Determining What Data to Restore
Before Restoring Your Data
Restoring Your Data Using SAM
Restoring Your Data Using HP-UX Commands
Recovering From a System Crash
7 Administering a System: Managing Printers, Software, and Performance
Managing Printers
Administering the LP Spooler
Administering HP Distributed Print Service (HPDPS)
Managing Software
Software Distributor (SD-UX)
Software Package Builder (SPB)
About Patches
Recommended Patches - Extension Software
Removing Patches
Managing System Performance
Performance Bottlenecks
Guidelines
Measuring Performance
Making Changes
Other Performance Management Tools
8 Administering a System: Managing System Security
Standard System Security
Planning System Security
Common Security Practices
Maintaining System Security
Basic Guidelines
Security Choices
Obtaining HP-UX Security Bulletins and Patches
Managing Standard Passwords and System Access
Criteria of a Good Password
Password File
Eliminating Pseudo-Accounts and Protecting Key Subsystems
System Access by Modem
Protecting Programs from Illegal Execution
Managing Access to Files and Directories
Using HFS Access Control Lists (ACLs)
Using JFS Access Control Lists (ACLs)
Comparison of JFS and HFS ACLs
ACLs in a Network Environment
Setting Default Permissions
Protecting Directories
Protecting User Accounts
Security Considerations for Device Files
Protecting Disk Partitions and Logical Volumes
Guidelines for Running a Secure System
Guidelines for Handling Setuid and Setgid Programs
Guidelines for System Initialization
Guidelines for Trusted Backup and Recovery
Guidelines for Mounting and Unmounting a File System
Guidelines for Handling Security Breaches
Tracking Root
Controlling Security on a Network
Controlling an Administrative Domain
Verifying Permission Settings on Network Control Files
Understanding Network Services
Using inetd.sec to Restrict Outside Access
Denying Access with /etc/ftpd/ftpusers
Files Mounted in an NFS Environment
Link-Level Access
Trusted System Security
Setting Up Your Trusted System
Auditing a Trusted System
Streamlining Audit Log Data
Self-Auditing Programs
Audit Log Files
Viewing Audit Logs
Guidelines for Administering Your Auditing System
Performance Considerations
Using Auditing in an NFS Diskless Environment
Managing Trusted Passwords and System Access
Criteria of a Good Password
Password Files
Password Selection and Generation
Password Aging
Password History and Password Reuse
Time-Based Access Control
Device-Based Access Control
Manipulating the Trusted System Databases
Configuring NFS Diskless Clusters for Trusted Systems
Choice 1: Clusters with Private Password Databases
Choice 2: Clusters with Shared Password Databases
HP-UX Bastille
Overview
Installing Bastille
Security Considerations
Predefined Configuration Files
Configuring Bastille
Interactive Configuration
Applying Bastille
Rerunning Bastille
Reverting Bastille
Uninstalling Bastille
Interactions with Other Software
Documentation
Command Execution
Configuration and Log Files
Other Security Packages
HP-UX Host Intrusion Detection System
HP-UX Shadow Passwords
Features and Benefits
Programming APIs
Other Software Support
Documentation
Network Information Service Plus (NIS+)
Documentation
Using SAM with NIS+
Setting up NIS+ with Trusted Mode
NIS+ Trusted Table and the ttsyncd Daemon
Pluggable Authentication Modules (PAM)
Using SAM with PAM
System-Wide Configuration
Per-User Configuration
The pam.conf Configuration File
The pam_user.conf Configuration File
How PAM Works: A Login Example
Secure Internet Services (SIS)
Environment
Operating with Secure and Nonsecure Systems
Security Patch Check
Requirements
Working with a Firewall
Documentation
9 Administering a Workgroup
Managing Disks
Examples
How To:
Determining What Version of the HP-UX Operating System is Running
Backing Up and Recovering Directories: Quick Reference for tar
Breaking Out of the Boot Screen
Checking the System’s Run Level
Managing Groups of Distributed Systems or Serviceguard Clusters
Diagramming a System’s Disk Usage
Finding Large Files
Examining File System Characteristics
Moving a Directory (within a File System)
Moving a System
Popping the Directory Stack
Scheduling a cron Job
Continuing to Work During a Scheduled Downtime
Troubleshooting
Tips on Interpreting HP-UX Error Messages
Enabling Internet Services Governed by inetd
Adding Software to a Workgroup
Installing and Managing Software For an Enterprise
Setting up a Network Host (Building a Depot)
Other Workgroup Management Tools
10 Setting Up and Administering an HP-UX NFS Diskless Cluster
What Is an NFS Diskless Cluster?
Reasons for Creating an NFS Diskless Cluster
Terminology
Planning Your Cluster Policies
Policies for the Location of User and Group Data
Policies for the Location of Home Directories
Policies for Electronic Mail
Setting Up NFS Cluster Hardware
Peripherals
Local Area Network (LAN)
Disk Storage
Obtaining Information About Your Server and Client
Getting the Hardware (Station) Address
Installing Diskless Software
Installing a Series 700 Client on a Series 800 Cluster Server
Configuring a Relay Agent
Setting Up the Cluster Server
A Preview of What You Will Need to Do
Help Information for NFS Diskless Clusters
Setting the Policies for a Cluster
Adding Clients to a Cluster
Booting New Clients
What To Do Next
Adding a Local Disk
Administering Your NFS Diskless Cluster
NFS Diskless Questions and Answers
Cluster Configuration
Performance
Single Point Administration
A Using High Availability Strategies
Using Software Mirroring as a Disk Protection Strategy
Using Disk Arrays
Disk Arrays Using RAID Data Protection Strategies
Mirroring (RAID Level 1)
Disk Striping (RAID Level 0)
RAID 3
RAID 5
What is AutoRAID?
Pros and Cons of AutoRAID
Recommended Uses of AutoRAID
HP SureStore E Disk Array
Using Hot Spared Disks
Using High Available Storage Systems (HASS)
Pros and Cons of HASS
Recommended Uses of HASS
Using Serviceguard
Pros and Cons of Serviceguard
Serviceguard Features
Other High Availability Products and Features
High Availability Monitors
Enterprise Cluster Master Toolkit
MetroCluster
ContinentalClusters
HP ServiceControl
B Configuring HP-UX Bastille: Interview
Bastille Configuration Questions and Explanations for HP-UX
Index

List of Figures

2-1 Managing Systems and Workgroups Example Network Diagram
2-2 Line Printer Spooler “Plumbing” Diagram
2-3 Sample HPDPS Basic Environment
2-4 Sample HPDPS Extended Environment
2-5 Distributing Backups with HP OmniBack II
2-6 A 32-bit example of “Big Endian” architecture
2-7 A 32-bit example of “Little Endian” architecture
3-1 cfengine Overview
3-2 syslog-ng Log-Forwarding Configuration
3-3 syslog-ng Log Consolidator Configuration
3-4 pdsh Architecture
3-5 DLKM Procedural Flowchart
3-6 Sample kcweb Display
3-7 kcweb modules
3-8 kcweb module details
3-9 kcweb modify module state
3-10 kcweb tunables
3-11 kcweb tunables details
3-12 kcweb modify tunable
3-13 kcweb alarms
3-14 kcweb alarms detail
3-15 kcweb modify alarm
3-16 kcweb change log viewer
4-1 Adding a User to Several Systems
4-2 32-bit Operating System and Large Files
4-3 64-bit Operating System and Large Files
5-1 Overview of the Dump/Save Cycle
6-1 Disk Space Partitioned into Logical Volumes
6-2 Physical Extents and Logical Extents
6-3 File System Space Components
6-4 Interleaving Disks Among Buses
6-5 Example LVM Disk Layout on HP Integrity Server
7-1 Sample CD-ROM Certificate
7-2 SD-UX Roles
8-1 Pseudo- and Special System Accounts
8-2 Bastille Title Screen
8-3 Bastille Security Patch Check (long)
8-4 Bastille Security Patch Check (short)
8-5 Bastille Check Boxes
8-6 Bastille End Screen
8-7 Bastille Save Changes
8-8 Bastille Finishing Up
9-1 Diagram of a System’s Disk Usage

List of Tables

HP-UX 11i Releases
Finding HP-UX Information and Documents
1-1 nPartitions Manpages:
1-2 Vpars Manpages:
2-1 Managing Systems and Workgroups Example Network
2-2 Sampling Swap Usage
2-3 File System Limits of HP-UX Releases
2-4 HP-UX File System Types
2-5 Model Files and Corresponding Printers and Plotters
2-6 Disk Requirements for Installation of HPDPS
2-7 Values stored in the /etc/rc.config.d/pd file
2-8 Products Supporting X Window Displays On PCs
2-9 Products Supporting PC Windows Displays on HP-UX
2-10 Operating System End-of-Line Characters
3-1 syslog Priority Levels
3-2 syslog Facilities Messages
3-3 Start-Up Files
3-4 useradd Options
3-5 set_parms Options
3-6 useradd Options
3-7 DLKM Topical Sections
3-8 Important Terms and Concepts
3-9 Kernel Configuration Tool Set
3-10 Dynamically Configured Loadable Module Procedures
3-11 Statically Configured Loadable Modules Procedures
3-12 Options Shared by Kernel Configuration Commands
3-13 Exit Status Codes
3-14 Module Details Fields
3-15 kcweb modify module state Fields
3-16 kcweb tunables details
3-17 kcweb tunables details Fields
3-18 kcweb alarms detail Fields
3-19 kcweb modify alarm Fields
3-20 Making System File Entries with Kernel Configuration Commands
3-21 Working with Kernel Configurations
3-22 Working with System Files
3-23 Working with Changes Held for Next Boot
3-24 Working with Tunables
3-25 Working with Kernel Modules
3-26 Working with the Kernel Configuration Log File
3-27 Kernel Configuration File Locations
3-28 Methodology
3-29 Commands and Options
3-30 Files and Directories
4-1 Deciding Which type of NFS Mount to Use
4-2 Title not available (Troubleshooting NFS)
4-3 32-bit and 64-bit Compatibility
4-4 NFS Protocol Compatibility and Large File Support
5-1 How autoboot and autosearch Flag Settings Affect the Boot Sequence
5-2 SpeedyBoot Tests
5-3 SpeedyBoot Status Table Headers
5-4 System Parameters
5-5 Versions of adb That Support Compressed Dumps
6-1 Disk Interface Types and LVM Support
6-2 Commands Needed for Physical Volume Management Tasks
6-3 Commands Needed for Volume Group Management Tasks
6-4 Commands Needed for Logical Volume Management Tasks
6-5 Solving Mounting Problems
6-6 fsck Results
6-7 HFS vs. JFS File Checking after System Failure
6-8 HP-UX Commands Needed to Create and Configure Mirroring
6-9 File System Conversion Methods Comparison
6-10 FTP Configuration Files
6-11 Criteria for Selecting Media
6-12 A Comparison of HP-UX Backup/Recovery Utilities
7-1 Additional Printing Tasks
7-2 Printer Problems and Solutions
7-3 LP Spooler User Commands
7-4 LP Administrator Commands
7-5 HPDPS User Commands (summary)
7-6 HPDPS Administrator Commands (summary)
7-7 SD-UX Command Summary
7-8 Example Tasks and Commands
8-1 HFS and JFS ACL Equivalents
8-2 Access Verification for Network Services
8-3 Audit Event Types and System Calls
8-4 Audit Event Types and System Commands
8-5 Predefined Configuration Files
8-6 HOST.config: Host-Based Security Settings
8-7 MANDMZ.config: Additional Security Settings
8-8 DMZ.config:  Additional Security Settings
9-1 Troubleshooting
10-1 Task List
10-2 Calculation for a Cluster Server’s /export Directory Tree
10-3 Where to Perform Tasks
10-4 Tasks Required by Specific Events

List of Examples

5-1 Setting the autoboot delay using the EFI Boot Manager’s Boot Options:
5-2 Setting the autoboot delay using the EFI Shell’s autoboot command:
5-3 Enable Autoboot (using EFI Shell’s autoboot command)
5-4 Disable Autoboot (using EFI Shell’s autoboot command)
5-5 Enable Autoboot (using setboot from a running HP-UX system)
5-6 Disable Autoboot (using setboot from a running HP-UX system)
5-7 Booting from an alternate kernel file called testvmunix
5-8 Determining the EFI disk partition of your current boot device
5-9 Enabling the Autoboot Flag Using the BCH
5-10 Disabling the Autoboot Flag Using the BCH
5-11 Enabling the Autosearch Flag Using the BCH
5-12 Disabling the Autosearch Flag Using the BCH
5-13 Enabling the Autoboot Flag Using setboot
5-14 Disabling the Autoboot Flag Using setboot
5-15 Enabling the Autosearch Flag Using setboot
5-16 Disabling the Autosearch Flag Using setboot
5-17 Setting the PRI (Primary Boot Path) Using the BCH
5-18 Setting the HAA (High-Availability Alternate Boot Path) Using the BCH
5-19 Setting the ALT (Alternate Boot Path) Using the BCH
5-20 Boot from the boot device specified in the ALT boot path
5-21 Boot from the boot device specified at hardware address 0/0/2/0/0.14:
5-22 Boot from the boot device specified at path label P2:
5-23 Boot from the default HP-UX install server
5-24 Boot from the HP-UX install server at 192.nn.xx.yyy
5-25 Boot HP-UX in single-user mode on an HP 9000 System:
5-26 Example Single-User HP-UX Boot
5-27 Displaying Current SpeedyBoot Settings for your System (HP 9000 sample output)
5-28 Displaying Current SpeedyBoot Settings for your System (HP Integrity Server sample output)
5-29 Shutdown and Reboot
5-30 Shutdown and Reboot with Wait
5-31 Shutdown and Halt
5-32 Shutdown to Single-User Mode
5-33 Reboot NFS Cluster Server
5-34 Example
5-35 Add fstab Entries to Active Dump List
5-36 Replace Active Dump List with fstab Entries
5-37 Add Specific Devices to Active Dump List
5-38 Replace Active Dump List with Specific Devices
5-39 Example
8-1 Creating an HFS ACL
8-2 Multiple HFS ACL Matches
8-3 Elements in a Minimal JFS ACL
8-4 getacl Output for exfile, a Minimal JFS ACL
8-5 getacl Output for exfile, Showing Effect of chmod
8-6 getacl Output for exfile, Showing Effect of setacl
8-7 getacl Output for exfile, Showing Effect of chmod on Class Permissions
8-8 ls -l Output for exfile with JFS ACL
8-9 A JFS ACL with Default Entries
8-10 Effect of Default Entries on a New File
8-11 Effect of Default Entries on a New Directory
8-12 Example getacl Output for a Minimal JFS ACL
8-13 Example getacl Output after Additions to the ACL
8-14 Example getacl Output Showing Effective Permissions
8-15 A Complex JFS ACL
8-16 Effect of setacl -n, Showing Effective Permissions
   


Preface  
Printable version
Privacy statement Using this site means you accept its terms Feedback to webmaster
© 1997-2006 Hewlett-Packard Development Company, L.P.