Troubleshooting user access to a specific task or command

Use the information in this topic to troubleshoot problems that you are having with a user attempting to access a specific task or run a specific command.

Problem

A user does not see a specific task listed from the SAN File System console or a user cannot run a specific command from the administrative command-line interface. The user receives authorization errors.

Investigation

Within the SAN File System, authorization to perform tasks or run commands is based on the user role, which is defined in the LDAP server database. There are four valid roles in the SAN File System, ranging from Monitor, which provides a basic level of access, up to Administrator, which provides full access to the system. These roles determine what commands and tasks can be performed.

To resolve this problem, verify that the user's role is sufficient to perform the specified task or run the specified command. You can use the lsadmuser command to verify the roles for each administrative user. If the role is not sufficient, either update the user's role to a higher level of access or use a different user name and password (one that has sufficient authorization) to access the SAN File System.
Note: Use the documentation that came with the LDAP server to understand how to modify a role for a user.

Parent topic: Troubleshooting an administrative server

Related reference
Commands

Terms of use | Feedback
(C) Copyright IBM Corporation 2003, 2004. All Rights Reserved.