You can have the CommCell Console authenticate third party database backup and restore jobs to ensure that the user has the correct credentials and has included a valid token file in the job request.
When you enable privacy for a client, the Commvault software automatically enables third-party job authentication for the client.
Procedure
-
Enable CommCell Console Authentication of Third Party Command Line Jobs.
-
Run the qlogin command with the token file option (-f) to obtain a token file.
-
Create a token parameter text file that specifies the location of the token file that the qlogin command created.
To see the token file contents, on the command line, type the following command, substituting token_paremeter_file with the token parameter text file name.
cat token_parameter_file [CvQcmdTokenFile] token_file_location
Example
cat thirdpartytoken.txt [CvQcmdTokenFile] /tmp/tokenfile
-
Set the file permissions on the token file that the qlogin command created so that application users can read the file.
Example
If the token file name is "tokenfile", on the command line type the following:
chmod 740 /tmp/tokenfile
-
Set the token file in the channel parameters when you perform third-party command line backups and restores.
There are 2 options that you can use:
-
Use the CvSbtOraParams parameter to specify the token file.
Example
RUN { ALLOCATE CHANNEL proxy1 TYPE 'SBT_TAPE' PARMS="SBT_LIBRARY=/commvault/commvault/Base/libobk.so,BLKSIZE=524288,ENV=(CvOraSbtParams=/oracle/oracle11.2.0.3/scripts/sbt_params.txt)"; }
-
Set the CvQcmdTokenFile parameter to the token parameter file location.
Note
Use this option when privacy is enabled for the client.
Example
run { allocate channel ch2 type 'sbt_tape' PARMS="SBT_LIBRARY=/opt/commvault/Base/libobk.so,BLKSIZE=1048576,ENV=(CvQcmdTokenFile=/tmp/example-private,CvClientName=example_client, CvInstanceName=Instance001)"; restore database; recover database; release channel ch2; }
-