Media Server Verification Points

Verify the Windows Media Server

For Windows media servers, follow the same procedures as those listed in Media Server Verification Points.

Verify the UNIX Media Server

Check that the machine certificate is issued from the root Authentication broker, found on the Windows master server (win_master). To determine which Authentication broker the media server is authenticated against, run bpnbat -whoami. For example:

Verify that the Server has Access to the Authorization Database

To make sure that the media server is able to access the Authorization database as it needs to perform authorization checks, run bpnbaz -ListGroups -CredFile "/usr/openv/var/vxss/credentials/<hostname>"

For example:

If the media server is not allowed to perform authorization checks, run bpnbaz -allowauthorization on the master server for the media server name in question.

Unable to Load Library Message

Verifying the media server and verifying that the media server has access to the proper database indirectly informs us that the VxSS client libraries for both At and Az are properly installed. If either of these procedures fail with messages pertaining to "unable to load libraries," check to make certain the Authentication and Authorization client libraries are installed. See the VERITAS Security Services Installation Guide on the VxSS installation CD.

Cross Platform Authentication Domains

You may also verify that the Authentication domains are correct by viewing the Access Control host properties for this media server, or by using cat(1)ing the bp.conf file.

Take extra care in mixed environments to ensure that the appropriate domain types point to the correct authentication brokers. In the example below, note that the PASSWD and NIS domains point to unix_media.min.com, which, in this example, is the UNIX Authentication broker: