Previous Topic: Set Up the DECnet Phase IV Object and a User AccountNext Topic: Set Up the DECnet Phase V Session Control

Chapter 2: Control Data CollectionSupport Real-time Performance AgentsSet Up the DECnet Phase IV Object and a User AccountCreate a DECnet Proxy Account

Create a DECnet Proxy Account

Proxy access is an alternative to the unlimited access provided by the DECnet object with a privileged account. You can use the proxy account to provide limited access. You can allow only specified remote users to start a Real-time Performance Agent on the local node where the Performance Agent is installed.

To create a proxy account

  1. Set your default directory to SYS$SYSTEM and run the Authorize Utility (AUTHORIZE). 
    $ SET DEF SYS$SYSTEM
$ RUN AUTHORIZE
  2. Add a user record to the system user authorization file (UAF) and corresponding identifiers to the rights database with the following command: 
    UAF> ADD PSDC$SERVER /DIR=[PSDC$SERVER] /DEV=device_name-
_UAF> /DEFPRIV=(CMKRNL, SYSNAM, GRPNAM, IMPERSONATE, PSWAPM,-
_UAF> ALTPRI, TMPMBX, WORLD, EXQUOTA, NETMBX,-
_UAF> SYSLCK)/PRIVILEGE=(CMKRNL, SYSNAM, GRPNAM,IMPERSONATE,- 
_UAF> PSWAPM, ALTPRI, TMPMBX, WORLD, EXQUOTA,-
_UAF> NETMBX, SYSLCK)/UIC=[xx,yy]- 
_UAF> /FLAGS=(RESTRICTED,NODISUSER)/LGICMD=NL:-
_UAF> /WSQUO=2048 /WSEXTENt=20000 /PGFLQUO=50000- 
_UAF> /NETWORK/NOBATCH/NOINTERACTIVE 
_UAF> EXIT
$ CREATE/DIR device_name:[PSDC$SERVER] /OWNER_UIC=[xx,yy]

    In the preceding example, you must substitute real entries in place of device name and xx,yy, the UIC.

  3. Create the proxy database if one does not already exist. Enter the following command to create and initialize the network proxy authorization file, NETPROXY.DAT: 
    UAF> CREATE/PROXY
  4. Add the users to the network proxy authorization file: 
    UAF> ADD/PROXY MYNODE::JONES PSDC$SERVER /DEFAULT
UAF> EXIT

    The preceding command provides JONES, the user on the remote node MYNODE, access through the proxy account PSDC$SERVER.

  5. You must define a DECnet task, PSDC$SERVER, associated with object 0. Enter the command as follows: 
    $ RUN SYS$SYSTEM:NCP
NCP> DEFINE OBJECT PSDC$SERVER NUMBER 0 FILE SYS$SYSTEM: -
PSDC$SERVER.COM

    Note: Do not enter any USER or PASSWORD for this object.

    NCP> SET OBJECT PSDC$SERVER ALL

    For more information on the Authorize Utility, see HP's OpenVMS documentation.