Removing access to a managed system manually

This topic describes how to remove access to a managed system manually. You can do this by removing the public key for the management server from the managed system.

Complete the following steps to revoke the ability of a management server to access a managed system:

  1. From the managed system, change to the directory where the security information is stored. This is one of the following directories:
    Operating system Directory
    Linux operating systems for AMD64 and 32-bit systems /opt/ibm/director/data
    Linux operating systems for Intel Itanium and IBM iSeries and pSeries /opt/ibm/director/data
    i5/OS /QIBM/UserData/Director/data
    NetWare d:\IBM\Director
    Windows d:\Program Files\IBM\Director\Data
    where d is the drive letter of the hard disk on which IBM Director is installed and IBM Director is installed in the default location.
  2. Using a text editor, view each dsa*.pub file. The first characters in a dsa*.pub file are of the form DSAxxxx, where xxxx is the name of the management server.
  3. Locate the dsa*.pub file for the management server that you want to unauthorize, and delete it.
  4. To stop IBM Director Agent, from a command prompt, type one of the following commands and press Enter:
    For i5/OS /qibm/userdata/director/bin/twgend
    For Linux /opt/ibm/director/twgstop
    For NetWare unload twgipc
    For Windows net stop twgipc
  5. To restart IBM Director Agent, type one of the following commands and press Enter:
    For i5/OS /qibm/userdata/director/bin/twgstart
    For Linux /opt/ibm/director/twgstart
    For NetWare load twgipc
    For Windows net start twgipc
After IBM Director Agent starts, the management server whose public key you removed is no longer able to access the managed system.

Table of Contents

(C) Copyright IBM Corporation 1999,2005. All Rights Reserved.