Use this command to prevent a client node from accessing the server. A locked client node cannot perform any IBM® Tivoli® Storage Manager operations, even if the operations are scheduled.
After configuring an LDAP directory server for password authentication, you can lock nodes to force them to use passwords that authenticate with an LDAP server.
Privilege class
To issue this command, you must have system privilege, unrestricted policy privilege, or restricted policy privilege for the policy domain to which the client node belongs.
Syntax
>>-LOCK Node--+-*---------+--+------------------------------+-->< '-node_name-' '-AUTHentication--=--+-LOcal-+-' '-LDap--'
Parameters
- node_name
- Specifies the name of the client node to lock out. You can use a wildcard character instead of a node name if you want to lock all of the nodes according to their method of authentication.
- AUTHentication
- Specifies the method of password authentication that is needed
to log into a node.
- LOcal
- Specifies to lock nodes that authenticate with the Tivoli Storage Manager server.
- LDap
- Specifies to lock nodes that authenticate with an LDAP directory server.
Example: Lock a specific client node
Lock the client node SMITH.lock node smithExample: Lock all nodes that authenticate to the local Tivoli Storage Manager database
Issue the following command to lock all nodes that authenticate with the Tivoli Storage Manager server:lock node * authentication=localRelated commands
| Command | Description |
|---|---|
| QUERY NODE | Displays partial or complete information about one or more clients. |
| UNLOCK NODE | Enables a locked user in a specific policy domain to access the server. |