Administration hosts are specified in the /etc/hosts.equiv file.
You use one of the following formats to specify an administration host:
- hostname_or_ip [username] or hostname_or_ip ["user name"] for a user on a host
- +@netgroup [username] for a group of hosts
Note: If you access the storage system using RSH from an administration host listed in the /etc/hosts.equiv file, you have root privileges because this access method bypasses user authentication mechanisms. In addition, the /etc/auditlog program displays the user running the commands as root.
The following rules apply to entries in the /etc/hosts.equiv
- If multiple users on the same host require access to the storage system through a Remote Shell, you specify each user’s entry for a single host using hostname_or_ip [username].
You can also specify a group of hosts using +@netgroup [username] to allow a particular user to access the storage system from a group of hosts.
- If hostname_or_ip specifies an NFS client, or if +@netgroup specifies a group of NFS hosts, the user name is optional.
If you do not specify a user name, you must be the root user on that NFS client or the root user on the host in the host group to execute a Data ONTAP command through a Remote Shell connection.
- If hostname_or_ip specifies a CIFS client, you must enter the user name for that CIFS client.
The following example shows the contents of an /etc/hosts.equiv file:
+@sysadmins joe smith
For more information, see the na_hosts.equiv(5) man page.