2.4.4 Setting up the prerequisite product
Associate a JP1 user registered in the manager host to an OS user on the agent host so that the JP1 user can access OS resources on the agent host.
To execute a job in JP1/AJS3, a JP1 user accesses OS resources, such as executable files, by using permissions of an OS user associated with the JP1 user, and then performs processing. Therefore, the JP1 user must be associated with an OS user on the host on which the job is to be executed. This association is called user mapping.
The following figure shows an overview of user mapping.
In this figure, a job executed by the JP1 user user01 on the JP1/AJS3 - View host is executed by the OS user MAN_OSuser on the manager host. If the job is transferred to the agent host, the job is executed by the OS user AGT_OSuser on the agent host.
- Tip
-
Note that for a new installation of JP1/Base, the following information is automatically set as initial settings. If you perform operations using the users in the initial settings, you do not need to set up JP1/Base.
No.
Setting item
Initial settings
1
Setting up an authentication server
Authentication server name
Local host name
2
Registering JP1 users in the authentication server
JP1 user name
jp1admin
3
Password
jp1admin
4
Setting JP1 user operating permissions
JP1 resource group
* (asterisk)
5
Granted permissions
All administrator roles
6
Setting user mapping
JP1 user name to be mapped
jp1admin
7
OS user to be mapped
OS user entered in the window for entering the OS user name and password
8
Server host name
* (asterisk)
- Note:
-
Items for Nos. 1 to 5 are JP1/Base settings required on the manager host. You do not specify these items on the agent host.
Related topics
- Organization of this subsection
(1) Setting user mapping
Map a JP1 user to an OS user on the agent host so that the JP1 user can access the OS resources on the agent host.
Prerequisites
Log in to the agent host as an OS user with superuser privileges.
Procedure
-
Use a text editor such as vi to create a new text file.
The created file will be used as the user mapping definition file for the agent host. You can use any file name.
-
Set user mapping.
Edit the user mapping definition file to set user mapping.
The following shows the coding format of the user mapping definition file:
JP1-user-name:host-name-from-which-to-accept-job-execution-requests:OS-user-name
To map the JP1 user user01 to the OS user AGT_OSuser on the agent host, specify as follows:
user01:*:AGT_OSuser
-
Save and close the file.
-
Execute the following command.
jbsmkumap -f user-mapping-definition-file-path
Result
The JP1 user and the OS user on the agent host are mapped.
Postrequisites
Install JP1/AJS3 - View on a JP1/AJS3 - View host, and install JP1/AJS3 - Web Console on the Web Console Server. Note that you cannot install JP1/AJS3 - View on a Linux host. Install JP1/AJS3 - View on a Windows host.
If you operate JP1/AJS3 - Agent with the default settings, you do not need to set up JP1/AJS3 - Agent.
Related topics
(2) Coding format of the user mapping definition file
You can set user mapping by editing the user mapping definition file and then executing the jbsmkumap command.
The following describes the coding format of the user mapping definition file.
File path
You can create the user mapping definition file for the agent host at any location.
Format
JP1-user-name:host-name-from-which-to-accept-job-execution-requests:OS-user-name
-
For JP1-user-name and OS-user-name, specify the users to be mapped.
-
For host-name-from-which-to-accept-job-execution-requests, specify the host that accepts job execution requests.
- Tip
-
Specify an asterisk (*) for host-name-from-which-to-accept-job-execution-requests to accept job execution requests from all hosts.
Example
The following shows an example of setting user mapping for the JP1 users user01 and user02.
-
An agent host executes jobs requested from the JP1 user user01 on the manager host MAN01.
-
An agent host executes jobs requested from the JP1 user user02 regardless of the manager host.
-
All agent hosts use the OS user name AGT_OSuser to execute jobs.
- File editing example
user01:MAN01:AGT_OSuser user02:*:AGT_OSuser