E.3 Cautionary notes on using an AJS administrator account
-
An AJS administrator can control the processes that are executed with superuser privileges. Manage the AJS administrator account very carefully, treating it as if it were the superuser account (root user).
-
During JP1/AJS3 operations, do not delete the JP1 administrators group or AJS administrator account. If you accidentally delete the JP1 administrators group, create it again and restart the JP1/AJS3 service. The following settings of the JP1 administrators group that you create must be the same as those of the original JP1 administrators group that you deleted:
-
Name of the OS user group for the JP1 administrators group
-
Group ID of the OS user group for the JP1 administrators group
If you accidentally delete the AJS administrator account, create it again and restart the JP1/AJS3 service. The following settings of the AJS administrator account that you create must be the same as those of the AJS administrator that was specified when JP1/AJS3 was installed:
-
OS user name for the AJS administrator
-
User ID of the OS user for the AJS administrator
-
Primary group of the OS user for the AJS administrator
Note that you can use the jajsshowadminusr command to check the information for the JP1 administrators group and AJS administrator account that were specified during the JP1/AJS3 installation. For details about the jajsshowadminusr command, see jajsshowadminusr (UNIX only) in 3. Commands Used for Normal Operations in the JP1/Automatic Job Management System 3 Command Reference.
-