Tivoli Header
Administrator's Reference
Use this command to display information on one or more
administrators.
Privilege Class
Any administrator can issue this command.
Syntax
.-*----------.
>>-Query ADmin--+------------+---------------------------------->
'-admin_name-'
>--+------------------------------+----------------------------->
| .-,------------. |
| V | |
'-CLasses--=----+-SYstem---+-+-'
+-Policy---+
+-STorage--+
+-Analyst--+
+-Operator-+
'-Node-----'
.-Format--=--Standard-----.
>--+-------------------------+---------------------------------><
'-Format--=--+-Standard-+-'
'-Detailed-'
Parameters
- admin_name
- Specifies the name of the administrator for which you want to display
information. This parameter is optional. You can use wildcard
characters to specify this name. If you do not specify a value for this
parameter, all administrators are displayed.
- CLasses
- Specifies that you want to restrict output to those administrators that
have privilege classes that you specify. This parameter is
optional. You can specify multiple privilege classes in a list by
separating the names with commas and no intervening spaces. If you do
not specify a value for this parameter, information on all administrators is
displayed, regardless of privilege class. Possible values are:
- SYstem
- Display information on administrators with system privilege.
- Policy
- Display information on administrators with policy privilege.
- STorage
- Display information on administrators with storage privilege.
- Analyst
- Display information on administrators with analyst privilege.
- Operator
- Display information on administrators with operator privilege.
- Node
- Display information on users with client node privilege.
- Format
- Specifies how the information is displayed. This parameter is
optional. The default value is STANDARD. Possible values
are:
- Standard
- Specifies that partial information is displayed for the specified
administrators.
- Detailed
- Specifies that complete information is displayed for the specified
administrators.
Examples
Task 1
Display partial information on all administrators.
- Command:
- query admin
- Output:
-
+--------------------------------------------------------------------------------+
|Administrator Days Since Days Since Locked? Privilege Classes |
|Name Last Access Password |
| Set |
|------------- ----------- ---------- --------- ------------------ |
|ADMIN <1 <1 No System |
|SERVER_CONSOLE No System |
+--------------------------------------------------------------------------------+
See Task 2 for descriptions.
Task 2
From a managed server, display complete information for the administrator
named ADMIN.
- Command:
- query admin admin format=detailed
- Output:
-
+--------------------------------------------------------------------------------+
| Administrator Name: ADMIN |
| Last Access Date/Time: 1998.06.04 17.10.52 |
| Days Since Last Access: <1 |
| Password Set Date/Time: 1998.06.04 17.10.52 |
| Days Since Password Set: 26 |
| Invalid Sign-on Count: 0 |
| Locked?: No |
| Contact: |
| System Privilege: Yes |
| Policy Privilege: **Included with system privilege** |
| Storage Privilege: **Included with system privilege** |
| Analyst Privilege: **Included with system privilege** |
| Operator Privilege: **Included with system privilege** |
| Client Access Privilege: **Included with system privilege** |
| Client Owner Privilege: **Included with system privilege** |
| Registration Date/Time: 05/09/1998 23:54:20 |
| Registering Administrator: SERVER_CONSOLE |
| Managing profile: |
|Password Expiration Period: 90 Day (s) |
+--------------------------------------------------------------------------------+
where:
- Administrator Name
- Specifies the name of the administrator.
- Last Access Date/Time
- Specifies the date and time that the administrator last accessed the
server.
- Days Since Last Access
- Specifies the number of days since the administrator last accessed the
server.
- Password Set Date/Time
- Specifies the date and time that the administrator's password was
defined or most recently updated.
- Days Since Password Set
- Specifies the number of days since the administrator's password was
defined or most recently updated.
- Invalid Sign-on Count
- Specifies the number of invalid sign-on attempts that have been made since
the last successful sign-on. This count can only be non-zero when an
invalid password limit (SET INVALIDPWLIMIT) is greater than zero. When
the number of invalid attempts equals the limit set by the SET INVALIDPWLIMIT
command, the administrator is locked out of the system.
- Locked?
- Specifies whether the administrator is locked out of the system.
- Contact
- Specifies any contact information for the administrator.
- System Privilege
- Specifies whether the administrator has been granted system
privilege.
- Policy Privilege
- Specifies whether the administrator has been granted unrestricted policy
privilege or the names of any policy domains that the restricted policy
administrator can manage.
- Storage Privilege
- Specifies whether the administrator has been granted unrestricted storage
privilege or the names of any storage pools that the restricted storage
administrator can manage.
- Analyst Privilege
- Specifies whether the administrator has been granted analyst
privilege.
- Operator Privilege
- Specifies whether the administrator has been granted operator
privilege.
- Client Access Privilege
- Specifies that client access authority has been granted to a user with
node privilege.
- Client Owner Privilege
- Specifies that client owner authority has been granted to a user with node
privilege.
- Registration Date/Time
- Specifies the date and time that the administrator was registered.
- Registering Administrator
- Specifies the name of the administrator who registered the
administrator. If this field contains $$CONFIG_MANAGER$$, the
administrator is associated with a profile that is managed by the
configuration manager.
- Managing Profile
- Specifies the profiles to which the managed server subscribed to get the
definition of this administrator.
- Password Expiration Period
- Specifies the administrator's password expiration period.
Related Commands
Table 136. Commands Related to QUERY ADMIN
Command
| Description
|
GRANT AUTHORITY
| Assigns privilege classes to an administrator.
|
QUERY NODE
| Displays partial or complete information about one or more
clients.
|
QUERY STATUS
| Displays the settings of server parameters, such as those selected by the
SET commands.
|
REGISTER ADMIN
| Defines a new administrator without granting administrative
authority.
|
REMOVE ADMIN
| Removes an administrator from the list of registered
administrators.
|
RENAME ADMIN
| Changes a Tivoli Storage Manager administrator's name.
|
REVOKE AUTHORITY
| Revokes one or more privilege classes or restricts access to policy
domains and storage pools.
|
SET INVALIDPWLIMIT
| Sets the maximum number of invalid sign-on attempts allowed before an
administrator is locked out of the system.
|
SET MINPWLENGTH
| Sets the minimum length for client passwords.
|
[ Top of Page | Previous Page | Next Page | Table of Contents | Index ]