Hello, Bonnie;
If you are using NV security so that your users are authenticated by nvsecd,
then you can set an NV
account for the user, make the user a member of the group with the appropriate
access rights, i.e.
no access to xnmsnmpconf. Run nvsec_admin to do this.
If you are not using NV security, create a directory in the user's $HOME
directory and copy any
necessary ARFs therein except xnmsnmpconf. Modify the user's $HOME/.profile
(for ksh) to set
$OVwRegDir variable pointing to that directory. Then there will be no menu item
SNMP Configuration
in the Options menu.
Also, make sure that /usr/OV/conf/ovsnmp.conf cannot be read by the user since
this file is still
used beside ovsnmp.conf_db.
HTH,
Best regards,
Vladimir.
Bonnie Jundt wrote:
>
> I am running Netview V4R1 and have a need to set up a Netview map
> display for a
> user that will only be able to watch for visual status changes of some
> networks.
> The setting will be in a somewhat public area and my immediate concern
> was that
> this user not be able to access the SNMP Configuration Option to see the
> community strings. I have not been able to determine how to restrict
> this
> access and would also appreciate any suggestions regarding other
> security
> concerns and solutions.
--
Vladimir Petr
DATASYS s.r.o.
-----------------------------
|