The only restrictions pertaining to a read-only map are related to what is
shown on that map. You cannot add nor delete objects from it, nor change
their layout. You can only see changes of that sort by doing a refresh,
though the status of existing objects will change. So when you create a
new smartset, for example, with the smartset editor, the smartset exists,
but will not be shown in the smartsets section of the R-O map, because that
would amount to adding a new object. You need a refresh to see new things,
as I said.
But the R-O map does not in itself what can be launched from the GUI or the
command line. Fro some things such as actually modifying trapd.conf using
xnmtrap, you need to be root, else you will not be able to save the file,
though you can look at it. For other commands, you need to enable NetView
security for them, which is covered in exhaustive detail in the NetView
Admin Guide. This is based on creating a NetView login id and profile for
each user (though they can be shared) and then once security is enabled,
folks can only do the NetView commands allowed by their profile after they
login to NetView using the nvauth command.
As for the web client, I recommend every start by looking at the Web Client
If you don't have the latest pubs, you can find them on-line here:
Level 3 Support for Tivoli NetView for UNIX and Windows
Tivoli Software / IBM Software Group
us.ibm.com [nv-l] Netview Security
Please respond to
AIX 5.2 Netview 7.1.4 FP4
First of all thanks for your help on my previous post. I was able to
load the cisco symbols.
I have a couple of questions on security on Netview.
1) I Have a read-only map up and I am able to add/del smartsets, ruleset
editor, snmp configuration, seed file, and traps. Is this normal? How
can I limit access to these options (from a read-only map). I thought
read/write only had this type of access. I can not delete nodes on the
2) How can I turn on security on Netview. Can you point to the right
manual. Plus I also want to enable web console.