跳转到主内容

如何为现场工程师创建一个临时帐户以登录以对集群执行维护工作?

Views:
12
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
core
Last Updated:

适用场景

  • FAS 型号
  • AFF 型号
  • ONTAP 9

问题解答

在某些情况下,为现场工程师提供一个专用帐户来处理集群可能会更加精简,而不是共享 " 管理员 " 凭据。

要执行这些操作,请通过 SSH 连接到集群并运行以下命令:

1 )创建名为 field_tech 的用户

::> security login create -user-or-group-name field_tech -application console -authentication-method password -role admin

系统将提示您输入密码

Please enter a password for user 'field_tech':
Please enter it again:

2 )添加对 "service-processor " 应用程序的访问权限

::> security login create -user-or-group-name field_tech -application service-processor  -authentication-method password -role admin

3 )验证是否已正确创建帐户

::> security login show -user-or-group-name field_tech

Vserver: tfmb
                                 Second
User/Group          Authentication          Acct   Authentication
Name       Application Method     Role Name     Locked Method
-------------- ----------- ------------- ---------------- ------ --------------
field_tech    console    password    admin       no    none
field_tech    service-processor
              password    admin       no    none
2 entries were displayed.

维护工作完成后,您可以 " 锁定 " 帐户,使其无法使用

::> security login lock -username field_tech

在未来的维护窗口中,可以使用此命令解除帐户锁定

::> security login unlock -username field_tech

您可以随时使用此命令更改密码:

::>  security login password -username field_tech

追加信息

security login 命令

 

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.