7.11.2 Changing the hosts that are permitted to access JP1/AJS3
To change the hosts that are permitted to access JP1/AJS3, change the settings in the connection permission configuration file. The connection permission configuration file is stored in the following environment settings file storage folders:
- In Windows:
-
- Physical host:
-
-
JP1/AJS3 - Manager
JP1/AJS3-Manager-installation-folder\conf
-
JP1/AJS3 - Agent
JP1/AJS3-Agent-installation-folder\conf
-
- Logical host:
-
shared-folder\jp1ajs2\conf
- In UNIX:
-
- Physical host:
-
/etc/opt/jp1ajs2/conf
- Logical host:
-
shared-directory/jp1ajs2/conf
- Organization of this subsection
(1) Changing the settings in the manager connection permission configuration file
Changes to the settings in the manager connection permission configuration file take effect when the following conditions are satisfied:
- Physical host:
-
-
After JP1/AJS3 service is started
-
If the following command is executed while the JP1/AJS3 service is running:
jajs_pmtcon -m -u
-
- Logical host:
-
-
After JP1/AJS3 service is started
-
If the following command is executed while the JP1/AJS3 service is running:
jajs_pmtcon -h logical-host-name -m -u
-
The following describes how to change the settings for if, for example, you want to permit connections from a new host whose IP address is 192.168.31.3 while the JP1/AJS3 service is running.
-
Change the manager connection permission configuration file.
Add the IP address (192.168.31.3) of the new host whose connection you want to permit to the manager connection permission configuration file.
-
Execute the jajs_pmtcon command.
Execute the following command:
jajs_pmtcon [-h logical-host-name] -m -u
The settings in the manager connection permission configuration file take effect, and the host with IP address 192.168.31.3 is now able to connect to the manager host.
(2) Changing the settings in the agent connection permission configuration file
Changes to the settings in the agent connection permission configuration file take effect when the following conditions are satisfied:
- Physical host:
-
-
If, while both the JP1/AJS3 service and the JP1/AJS3 Queueless Agent service are not running, either service is started
-
If the following command is executed while either of the above services is running:
jajs_pmtcon -a -u
-
- Logical host:
-
-
If the JP1/AJS3 service is started or the logical host is attached to the queueless agent service while the JP1/AJS3 service is not running and the logical host is not attached.
-
If the following command is executed while the JP1/AJS3 service is running or the logical host is attached to the queueless agent service:
jajs_pmtcon -h logical-host-name -a -u
-
- Cautionary notes
-
-
If you change the settings while either the JP1/AJS3 service or the JP1/AJS3 Queueless Agent service is running, and then start the other service, the changes do not take effect. In that case, for the changes to take effect, you must execute the jajs_pmtcon command.
-
If a job is running, do not delete the IP address of the requester manager host from the agent connection permission configuration file.
You can check whether a job is running by using one of the following methods:
- The Search window of JP1/AJS3 - View
- The jpoagtjobshow command
- The jpqjobshow command
-
Suppose that, while the JP1/AJS3 service is running, you want to change the hosts that are permitted to connect to JP1/AJS3 - Agent as follows:
-
Deny connection of the permitted host whose IP address is 192.168.31.2.
-
Permit connection of a new host whose IP address is 192.168.31.3.
To do so, do the following:
-
Change the agent connection permission configuration file.
Delete 192.168.31.2 from the agent connection permission configuration file and add 192.168.31.3.
-
Confirm that the manager host with IP address is 192.168.31.2 (the host whose connection you want to deny) is not running any jobs.
Use one of the following methods to confirm that this host is not running any jobs:
-
The Search window of JP1/AJS3 - View
-
The jpoagtjobshow command
-
The jpqjobshow command
-
-
Execute the jajs_pmtcon command.
Execute the following command:
jajs_pmtcon [-h logical-host-name] -a -u
The settings in the agent connection permission configuration file take effect, and the host with IP address 192.168.31.2 is no longer able to connect to the agent host, and the host with IP address is 192.168.31.3 is now able to the agent host.
You can specify the same settings for multiple agent hosts by executing a jobnet that performs the following two processes:
-
Transfers the agent connection permission configuration file to the agent host.
-
Executes the following command:
jajs_pmtcon [-h logical-host-name] -a -u