When you install the Tivoli® Storage Manager Backup-Archive Client, any user can use Tivoli Storage Manager. You can restrict access to Tivoli Storage Manager by non-administrative users (users other than root) by creating a user group and allowing only users in that group to perform Backup-Archive Client operations.
Before using this procedure, log on as root and set the client passwordaccess option to generate. Setting passwordaccess to generate stores the password locally so users in the group that you create can log on without needing to know the node password.
While logged on as root, create a user group to contain all users (other than root) that you want to allow to perform Backup-Archive Client operations. See the documentation for the operating system for instructions to create user groups.
This procedure uses a user group called trustedusers as the name of the user group that contains all accounts that can perform backup-archive operations. When you perform this procedure in your environment, specify a valid group name.