The set access command gives users at other nodes access to your backup versions or archived copies.
You can also use the set access command to give users at other nodes access to your backup images.
You can give another user access to a specific file or image, multiple files or images, or all files in a directory. When you give access to another user, that user can restore or retrieve your objects. Specify in the command whether you are giving access to archives or backups.
For VMware virtual machines, you can give a user at another node access to the backups of a specific virtual machine.
For VMware vCloud vApps, you can give another user at another node access to backups of one or more VMware vApps. That user can then restore or retrieve a backed up vCloud vApp, including all of the virtual machines that comprise the vApp.
When a node is exported to another Tivoli® Storage Manager server, the access rules can change on the importing server. If an access rule is applied to all file spaces on the exporting server, the access rule on the importing server is restricted to only those file spaces that are imported. The file spaces are restricted in the access rule on the importing server for security reasons. Additionally, the access rules do not recognize the first occurrence of a wildcard character in the file specification when you restore or retrieve. This means that if you restore or retrieve with a wildcard character in the file specification, subdirectories are ignored.
When an existing file space is renamed during Unicode conversion, any access rules that are defined for the file space remain applicable to the original file space. However, new access rules must be defined to apply to the new Unicode file space.
This command is valid for all clients.
>>-SET Access--+- --Archive-+-----------------------------------> '- --Backup--' >--+- --filespec-------------------------------------------------------------------+--> +- --{--filespacename--}--filespec----------------------------------------------+ +-image-fs----------------------------------------------------------------------+ +-TYPE=VM-- --vmname------------------------------------------------------------+ +-TYPE=VAPP--"--ORG=--org_name--,--ORGVDC=--orgvdc_name--,--VAPP=--vapp_name--"-+ '- --ASNODEname=--provider_vdc_name---------------------------------------------' >-- --node--+---------+---------------------------------------->< '- --user-'
If you give access to a branch of the current working directory, you only need to specify the branch. If you give access to objects that are not in a branch of the current working directory, you must specify the complete path. The file spec to which you gave access must have at least one backup version or archive copy object (file or directory) on the server.
To specify all files in a named directory, enter /home/mine/proj1/* on the command line.
To give access to all objects below a certain level, use an asterisk, directory delimiter, and an asterisk at the end of your file spec. For example, to give access to all objects below home/test, use file spec home/test/*/*.
The rules are essentially the same when considering the root directory. Enter /* on one set access command and /*/* on another if you want another user to have access to all files and directories in and below the root directory. The first /* gives access to all directories and all files in the root directory. The second /* allows access to all directories and files below the root directory.
For example:
set access backup /home/sub1/sub2/* * *
set access backup /home/* * *
set access backup /home/* * *
set access backup /home/*/* * *
If you give access to a branch of the current working directory, you only need to specify the branch. If you give access to objects that are not in a branch of the current working directory, you must specify the complete path. The file spec to which you gave access must have at least one backup version or archive copy object (file or directory) on the server.
To specify all files in a named directory, enter d:\test\mine\proj1\* on the command line.
To give access to all objects below a certain level, use an asterisk, directory delimiter, and an asterisk at the end of your file spec. For example, to give access to all objects below d:\test use file spec d:\test\*\*.
The rules are essentially the same when considering the root directory. Enter \* on one set access command and \*\* on another if you want another user to have access to all files and directories in and below the root directory. The first \* gives access to all directories and all files in the root directory. The second \* allows access to all directories and files below the root directory.
For example:
set access backup d:\test\sub1\sub2\* * *
set access backup d:\test\* * *
set access backup d:\test\* * *
set access backup d:\test\*\* * *
set access backup -TYPE=VAPP "ORG=orgname,ORGVDC=orgvdcname,
VAPP=vappname" node user -ASNODEname=providerVdcNode
set access backup -TYPE=VAPP "ORG=orgname,ORGVDC=orgvdcname,
VAPP=vappname" node -ASNODEname=providerVdcNode
The ORG= and ORGVDC= values specify the organization and organization virtual datacenter to which a vApp belongs.
The VAPP= value can specify an individual vApp name or you can specify an asterisk (*) character, or you can omit the name; either notation permits access by the node to all vApps in the specified organization and organization virtual datacenter. The specified node has access to all of the virtual machines that comprise the vApp.
The -ASNODEname= parameter specifies the node that is associated with the vCloud provider that the organization virtual datacenter belongs to.
set access backup -TYPE=VAPP "ORG=XYZ,ORGVDC=VDC2,VAPP=*"
NODE1 JONES -ASNODE=ABC
set access backup -TYPE=VAPP "ORG=XYZ,ORGVDC=VDC2,VAPP=*"
NODE1 -ASNODE=ABC
set access backup c:\devel\proja\*.c node_2
set access backup /home/user/budget node_2
set ac archive /home/devel/proja/ node_3
set access archive c:\devel\* node_3
set ac b "{project}/*" "*bldgb"
set ac b {project}\*\* *bldgb
set access archive /home/devel/projb/ node1 root
set acc backup "home/devel/proja/*/*" node_5 serena
set access backup -TYPE=VM myTestVM myOtherNode