Configuring CA CSM › Configure Mount Parameters for CA CSM File Systems

Configure Mount Parameters for CA CSM File Systems

Depending on your site and environment requirements, you can configure mount parameters for CA CSM product, software catalog, temporary, and deployment file systems. For example, you can decide whether to perform security checks, or how to proceed when the system that owns a file system goes down.

Initially, CA CSM uses the default values of these parameters. You can override the defaults.

Follow these steps:

1. Perform one of the following steps:
   • Manually unmount all file systems.
   • In CA CSM, navigate to the Settings tab, the Mount Point Management page, and select the Unmount at Shutdown check box. Save the changes.
2. Stop the CA CSM application server.
3. Uncomment and update the following line in the RunTimeMVSHLQPrefix.SAMPLIB(MSMLIB) member:

   IJO="$IJO -DADD_MOUNT_DEFAULT_OPTIONS=SETUID|NOSETUID,SECURITY|NOSECURITY,
   AUTOMOVE|NOAUTOMOVE|UNMOUNT"
   

   SETUID|NOSETUID

   Specifies whether the setuid() and setgid() mode bit is supported.

   SETUID

   Supports the setuid() and setgid() mode bit on an executable file. This option is the default.

   NOSETUID

   Disables the setuid() and setgid() mode bit support on an executable file. When the program is executed, the UID or GID are not changed, and the APF and Program Control extended attributes are not honored. The entire HFS is uncontrolled.

   SECURITY|NOSECURITY

   Specifies whether to perform the UNIX permissions checks.

   SECURITY

   Enables the UNIX permissions checks. This option is the default.

   NOSECURITY

   Disables the UNIX permissions checks. Any new files or directories that are created are assigned an owner of UID(0), no matter what UID issued the request. A user can access or change any file or directory.

   AUTOMOVE|NOAUTOMOVE|UNMOUNT

   For a sysplex where systems participate in a shared file system, specifies how to proceed when the system that owns a file system goes down.

   AUTOMOVE

   Automatically changes ownership of the file system to another system that participates in a shared file system. This option is the default.

   NOAUTOMOVE

   Keeps ownership of the file system. As a result, the file system becomes inaccessible.

   UNMOUNT

   Unmounts the file system when the node leaves the sysplex.

   Note: For more information about these options, see the following books:

   • IBM z/OS UNIX System Services Planning
   • IBM z/OS UNIX System Services Command Reference
   • IBM z/OS XL C/C++ Run-Time Library Reference
4. Start the CA CSM application server.

   The mount parameters take effect.

5. If you enabled the Unmount at Shutdown feature in Step 1, navigate to the Settings tab, the Mount Point Management page, and clear the Unmount at Shutdown check box. Save the changes.

To restore the defaults, leave the parameters empty, or comment out the line in the RunTimeMVSHLQPrefix.SAMPLIB(MSMLIB) member.

Example

This example enables setuid() and setgid() mode bit on executable files, disables security checks, and does not allow file systems to change ownership:

IJO="$IJO -DADD_MOUNT_DEFAULT_OPTIONS=NOSECURITY,NOAUTOMOVE"