8.1.4 Copying settings from the primary authentication server

When using a secondary authentication server, you must set it up with the same information set on the primary authentication server. After completing the setup for the primary authentication server, therefore, you must copy the settings from the primary authentication server to the secondary authentication server.

To copy the settings from the primary authentication server to the secondary authentication server:

1. On the primary authentication server, complete the settings for JP1 users and operating permissions.

   For details on how to set up JP1 users, see 8.1.2 Setting JP1 users (standard users) or 8.2.1(2) Setting JP1 users (linked users).

   For details on the settings of the JP1 user operating permissions, see 8.1.3 Setting JP1 user operating permissions.

2. Start the secondary authentication server.

   Start the JP1/Base service to start the secondary authentication server. You can use the jbs_spmd_status command to verify that the secondary authentication server has started. The secondary authentication server is running if the information shown by the command contains jbssessionmgr.

3. Use FTP, a floppy disk, or other method to copy the settings files from the primary authentication server.

   Using FTP, a floppy disk, or other method, copy the settings file from the primary authentication server to the secondary authentication server. Copy the following files: JP1_AccessLevel, JP1_Group, JP1_Passwd, and JP1_UserLevel. These files are stored in the following folder:

   installation-folder\conf\user_acl\

   Copy the files to the same folder on the local host. For a logical host, the files are stored in the following folder:

   shared-folder\jp1base\conf\user_acl\

4. Use the jbs_spmd_reload command to apply the settings.

   Execute the jbs_spmd_reload command to apply the contents of the copied settings files. The settings take effect when the command terminates normally.

For details on the commands, see 15. Commands.

Notes

• Ensure that the same version of JP1/Base is running on the primary and secondary authentication servers.

• If the secondary authentication server has not started, make sure that the local host is specified as the secondary authentication server. In the Authentication Server page of the JP1/Base Environment Settings dialog box, make sure that the local host is specified in the Order of authentication server area, and that the JP1 user and Authority level for JP1 resource group areas are available. If these areas are available, starting the JP1/Base service also starts the secondary authentication server.

• The settings files are text files. When transferring the files between different platforms, be careful about the character set. If you transfer them by FTP, be sure to use the ASCII transfer mode.

• Ensure that the same password save format is set for the primary and secondary authentication servers. Because the default format has been changed from hash level 1 to hash level 2 in JP1/Base version 12-00 and later, the settings on the two authentication servers might not match. To check the password save format, check message KAVA1692-I, which appears when the authentication server host is started. For details on how to set the password save format, see 3.4.6 Setting the password save format.

To Page Top