Re: Newbie: Can't get amanda user to work
On Tue, 11 Dec 2001 at 10:02am, KEVIN ZEMBOWER wrote > Thank you to all the generous folks who have given me suggestions. > Unfortunately, I still can't get it to work. I still get the same error > massage with "[access as amanda not allowed from > [EMAIL PROTECTED]]". > > Here's some clarification on my system. I'm trying to backup the > tapeserver. My tape is on a machine called admin.jhuccp.org. The userID > for both client and server is "amanda", group is "disk". I thought there was only one machine -- what do you mean "for both client and server"? > I've tried all these variations in the /home/amanda/.amandahosts and > /var/lib/amanda/.amandahosts files (one at a time; the comments are how > I kept track of what I tried): > admin:/home/amanda # cat .amandahosts > #admin.jhuccp.org amanda.admin.jhuccp.org > #admin amanda.admin.jhuccp.org > admin [EMAIL PROTECTED] > #admin amanda > #admin.jhuccp.org [EMAIL PROTECTED] > admin:/home/amanda # You still haven't hit the write one. The format is 'machinename user' So, /home/amanda/.amandahosts should include: admin.jhuccp.orgamanda Other questions -- are you sure that /home/amanda is the home directory of the amanda user? It's listed in /etc/passwd. > As an aside, is it still necessary to have both > /var/lib/amanda/.amandahosts and /home/amanda/.amandahosts files? Do > they have to be the same? AFAIK, it never was necessary. The only .amandahosts you need resides in ~amanda. > Any additional suggestions? What OS/distro are you using -- that's helpful info. -- Joshua Baker-LePain Department of Biomedical Engineering Duke University
Re: Newbie: Can't get amanda user to work
Try changing .amandahosts on the client (which appears to be the same as the server in this case) to: admin amanda On Mon, 10 Dec 2001, KEVIN ZEMBOWER wrote: - I'm trying to get my first setup of amanda working. Running amcheck - gives me: - admin:/home/amanda # su amanda -c "/usr/local/sbin/amcheck DailySet1" - Amanda Tape Server Host Check - - - Holding disk /var/amanda: 5807968 KB disk space available, that's - plenty - NOTE: skipping tape-writable test - Tape DailySet101 label ok - NOTE: info dir /var/log/amanda/DailySet1/curinfo/admin/sdb1: does not - exist - NOTE: info dir /var/log/amanda/DailySet1/curinfo/admin/sda1: does not - exist - NOTE: info dir /var/log/amanda/DailySet1/curinfo/admin/sda3: does not - exist - Server check took 16.516 seconds - - Amanda Backup Client Hosts Check - - ERROR: admin: [access as amanda not allowed from - [EMAIL PROTECTED]] amandahostsauth failed - Client check: 1 host checked in 0.029 seconds, 1 problem found - - (brought to you by Amanda 2.4.3b1) - admin:/home/amanda # - - Yet, I have a .amandahosts file with what I think are the proper - contents and permissions: - admin:/home/amanda # ll /home/amanda/.amandahosts - -rw-r--r--1 amanda disk 30 Dec 10 16:36 - /home/amanda/.amandahosts - admin:/home/amanda # cat /home/amanda/.amandahosts - admin [EMAIL PROTECTED] - admin:/home/amanda # - - I'm stumped. I've tried or checked all the suggestions in the - FAQ-a-matic for this topic. It's probably something simple, that I don't - see because I'm new to amanda. Any suggestions? - - Thanks for your help. - - -Kevin Zembower - - - - E. Kevin Zembower - Unix Administrator - Johns Hopkins University/Center for Communications Programs - 111 Market Place, Suite 310 - Baltimore, MD 21202 - 410-659-6139 - -- -- Stephen Carville UNIX and Network Administrator Ace Flood USA 310-342-3602 [EMAIL PROTECTED]
Re: Newbie: Can't get amanda user to work
Hi Kevin: It seems to be a problem with the .amandahosts file. As amcheck detects an error while verifying client access. > > I've tried all these variations in the /home/amanda/.amandahosts and > /var/lib/amanda/.amandahosts files (one at a time; the comments are how > I kept track of what I tried): > admin:/home/amanda # cat .amandahosts > #admin.jhuccp.org amanda.admin.jhuccp.org > #admin amanda.admin.jhuccp.org > admin [EMAIL PROTECTED] > #admin amanda > #admin.jhuccp.org [EMAIL PROTECTED] > admin:/home/amanda # > I would try with the fully qualified host name, and then just amanda as follows: admin.jhuccp.orgamanda > Both files are owned by amanda:disk and have 0600 permissions. > > As an aside, is it still necessary to have both > /var/lib/amanda/.amandahosts and /home/amanda/.amandahosts files? Do > they have to be the same? > The only one that you need is the one located at the amanda user´s home directory. > > Any additional suggestions? The only other one that I can think of is if you have a .rhosts file, in which case you must add the same line you have in the .amandahosts file. Can you verify if the .amandahosts file is accessed each time you run amcheck? Did you configured and installed amanda yourself or was it preinstalled in your system? This info may help also to find oout a solution. Good luck to you ... Ana Maria
RE: Newbie: Can't get amanda user to work
Which machine(s) is your .amandahosts file on? It is supposed to be on the client machine (it can also be on the server machine if the server gets backed up also). Make sure that you have an amandahosts file on each client, and that it is in the amanda home directory. Look at the /etc/passwd file to find amanda's home directory. (on my AIX boxes it is /home/amanda, on my Linux box it is /var/lib/amanda). My amandahosts files look like this: SERVER: My tapeserver is called sbs.sbs.com (it is also a client): sbs.sbs.com amanda CLIENTS: My client machines: sbs.sbs.com amanda I hope that this helps. Anthony -Original Message- From: KEVIN ZEMBOWER [mailto:[EMAIL PROTECTED]] Sent: Tuesday, December 11, 2001 6:03 AM To: [EMAIL PROTECTED] Subject: Re: Newbie: Can't get amanda user to work Thank you to all the generous folks who have given me suggestions. Unfortunately, I still can't get it to work. I still get the same error massage with "[access as amanda not allowed from [EMAIL PROTECTED]]". Here's some clarification on my system. I'm trying to backup the tapeserver. My tape is on a machine called admin.jhuccp.org. The userID for both client and server is "amanda", group is "disk". I've tried all these variations in the /home/amanda/.amandahosts and /var/lib/amanda/.amandahosts files (one at a time; the comments are how I kept track of what I tried): admin:/home/amanda # cat .amandahosts #admin.jhuccp.org amanda.admin.jhuccp.org #admin amanda.admin.jhuccp.org admin [EMAIL PROTECTED] #admin amanda #admin.jhuccp.org [EMAIL PROTECTED] admin:/home/amanda # Both files are owned by amanda:disk and have 0600 permissions. As an aside, is it still necessary to have both /var/lib/amanda/.amandahosts and /home/amanda/.amandahosts files? Do they have to be the same? My /etc/inetd.conf and /etc/services were patched by 'patch-system': admin:/home/amanda # grep amanda /etc/services amanda 10080/udp amanda 10080/tcp kamanda 10081/udp amandaidx 10082/tcp admin:/home/amanda # grep amanda /etc/inetd.conf # amanda backup server with indexing capabilities # amandaidx stream tcp nowait root /usr/lib/amanda/amindexd amindexd # amidxtape stream tcp nowait root /usr/lib/amanda/amidxtaped amidxtaped # amanda backup client # amandadgram udp waitamanda /usr/lib/amanda/amandad amandad amandadgram udp wait amanda /usr/local/libexec/amandad amandad amandaidx stream tcp nowait amanda /usr/local/libexec/amindexd amindexd amidxtape stream tcp nowait amanda /usr/local/libexec/amidxtaped amidxtaped admin:/home/amanda # Any additional suggestions? Thanks for continuing to think about this. -Kevin Zembower - E. Kevin Zembower Unix Administrator Johns Hopkins University/Center for Communications Programs 111 Market Place, Suite 310 Baltimore, MD 21202 410-659-6139 >>> Ana Maria Escalante <[EMAIL PROTECTED]> 12/10/01 08:32PM >>> Hi Kevin: I am not sure if I understood everything from your message, but it is not clear to me, which user will be doing the backups from the server (amanda is the default user) and whether your client machine is the same as your server. You must have a .amandahosts file in the client amanda home directory, that gives access to amanda user from the server machine. In my setup, my backup admin acount is amanda, my server is server.domain.mx and my client is client.domain.mx. I have an .amandahosts file in amanda s home directory in the client with the following line: server.domain.mxamanda You will also need an .amandahosts file in the server s amanda s home directory, with the client machines name and root as the authorized user, in order to recover from the clients, but that is another story. If you have a .rhosts file in your clients amanda s home directory, it must have this same line. I have heard about it :) Hope this helps. Good luck ... Ana Maria On Mon, 10 Dec 2001, KEVIN ZEMBOWER wrote: > I'm trying to get my first setup of amanda working. Running amcheck > gives me: > admin:/home/amanda # su amanda -c "/usr/local/sbin/amcheck DailySet1" > Amanda Tape Server Host Check > - > Holding disk /var/amanda: 5807968 KB disk space available, that's > plenty > NOTE: skipping tape-writable test > Tape DailySet101 label ok > NOTE: info dir /var/log/amanda/DailySet1/curinfo/admin/sdb1: does not > exist > NOTE: info dir /var/log/amanda/DailySet1/curinfo/admin/sda1: does not > exist > NOTE: info dir /var/log/amanda/DailySet1/curinfo/admin/sda3: does not > exist > Server check took 16.516 seconds > > Amanda Backup Client Hosts Check > > ERROR: admin: [access as amanda not allowed from > [EMAI
Re: Newbie: Can't get amanda user to work
Hi, your .amandahosts has to read admin.jhuccp.orgamanda admin.jhuccp.orgroot no more, no less, first line is for backup, second for restore hope it helps Christoph KEVIN ZEMBOWER schrieb: > > Thank you to all the generous folks who have given me suggestions. > Unfortunately, I still can't get it to work. I still get the same error > massage with "[access as amanda not allowed from > [EMAIL PROTECTED]]". > > Here's some clarification on my system. I'm trying to backup the > tapeserver. My tape is on a machine called admin.jhuccp.org. The userID > for both client and server is "amanda", group is "disk". > > I've tried all these variations in the /home/amanda/.amandahosts and > /var/lib/amanda/.amandahosts files (one at a time; the comments are how > I kept track of what I tried): > admin:/home/amanda # cat .amandahosts > #admin.jhuccp.org amanda.admin.jhuccp.org > #admin amanda.admin.jhuccp.org > admin [EMAIL PROTECTED] > #admin amanda > #admin.jhuccp.org [EMAIL PROTECTED] > admin:/home/amanda # > > Both files are owned by amanda:disk and have 0600 permissions. > > As an aside, is it still necessary to have both > /var/lib/amanda/.amandahosts and /home/amanda/.amandahosts files? Do > they have to be the same? > > My /etc/inetd.conf and /etc/services were patched by 'patch-system': > admin:/home/amanda # grep amanda /etc/services > amanda 10080/udp > amanda 10080/tcp > kamanda 10081/udp > amandaidx 10082/tcp > admin:/home/amanda # grep amanda /etc/inetd.conf > # amanda backup server with indexing capabilities > # amandaidx stream tcp nowait root > /usr/lib/amanda/amindexd amindexd > # amidxtape stream tcp nowait root > /usr/lib/amanda/amidxtaped amidxtaped > # amanda backup client > # amandadgram udp waitamanda /usr/lib/amanda/amandad > amandad > amandadgram udp wait amanda /usr/local/libexec/amandad > amandad > amandaidx stream tcp nowait amanda /usr/local/libexec/amindexd > amindexd > amidxtape stream tcp nowait amanda /usr/local/libexec/amidxtaped > amidxtaped > admin:/home/amanda # > > Any additional suggestions? > > Thanks for continuing to think about this. > > -Kevin Zembower > > - > E. Kevin Zembower > Unix Administrator > Johns Hopkins University/Center for Communications Programs > 111 Market Place, Suite 310 > Baltimore, MD 21202 > 410-659-6139 > > >>> Ana Maria Escalante <[EMAIL PROTECTED]> 12/10/01 08:32PM > >>> > Hi Kevin: > I am not sure if I understood everything from your message, but it > is > not clear to me, which user will be doing the backups from the server > (amanda is the default user) and whether your client machine is the > same > as your server. > You must have a .amandahosts file in the client amanda home > directory, that gives access to amanda user from the server machine. > In my setup, my backup admin acount is amanda, my server is > server.domain.mx and my client is client.domain.mx. I have an > .amandahosts > file in amanda s home directory in the client with the following > line: > > server.domain.mxamanda > > You will also need an .amandahosts file in the server s amanda > s home > directory, with the client machines name and root as the authorized > user, > in order to recover from the clients, but that is another story. > If you have a .rhosts file in your clients amanda s home > directory, > it must have this same line. I have heard about it :) > Hope this helps. Good luck ... Ana Maria > > On Mon, 10 Dec 2001, KEVIN ZEMBOWER wrote: > > > I'm trying to get my first setup of amanda working. Running amcheck > > gives me: > > admin:/home/amanda # su amanda -c "/usr/local/sbin/amcheck > DailySet1" > > Amanda Tape Server Host Check > > - > > Holding disk /var/amanda: 5807968 KB disk space available, that's > > plenty > > NOTE: skipping tape-writable test > > Tape DailySet101 label ok > > NOTE: info dir /var/log/amanda/DailySet1/curinfo/admin/sdb1: does > not > > exist > > NOTE: info dir /var/log/amanda/DailySet1/curinfo/admin/sda1: does > not > > exist > > NOTE: info dir /var/log/amanda/DailySet1/curinfo/admin/sda3: does > not > > exist > > Server check took 16.516 seconds > > > > Amanda Backup Client Hosts Check > > > > ERROR: admin: [access as amanda not allowed from > > [EMAIL PROTECTED]] amandahostsauth failed > > Client check: 1 host checked in 0.029 seconds, 1 problem found > > > > (brought to you by Amanda 2.4.3b1) > > admin:/home/amanda # > > > > Yet, I have a .amandahosts file with what I think are the proper > > contents and permissions: > > admin:/home/amanda # ll /home/amanda/.amandahosts > > -rw-r--r--1 amanda disk 30 Dec 10 16:36 > > /home/amanda/.amandahosts > > admin:/home/amanda # cat /home/amanda/.amandahosts > > admin [EMAIL PROTECTED] > > admin:/home/amanda # > > > > I'm stumped. I've tried or che
RE: Newbie: Can't get amanda user to work
Take a look in /tmp/amanda/amandad/debug. The config/defs section at the beginning has a bunch of flags in it. Look for "BSD_SECURITY" and "USE_AMANDAHOSTS". If you have the former and not the latter, everything that's been said about .amandahosts really applies to .rhosts, and no amount of fiddling with .amandahosts will make it work. This is based on my install of 2.4.2-19991216, and only took me two days to track down. I think I'll go put something in FoM. > -Original Message- > From: KEVIN ZEMBOWER [mailto:[EMAIL PROTECTED]] > Sent: Tuesday, December 11, 2001 10:03 AM > To: [EMAIL PROTECTED] > Subject: Re: Newbie: Can't get amanda user to work > > > Thank you to all the generous folks who have given me suggestions. > Unfortunately, I still can't get it to work. I still get the > same error > massage with "[access as amanda not allowed from > [EMAIL PROTECTED]]". > > Here's some clarification on my system. I'm trying to backup the > tapeserver. My tape is on a machine called admin.jhuccp.org. > The userID > for both client and server is "amanda", group is "disk". > > I've tried all these variations in the /home/amanda/.amandahosts and > /var/lib/amanda/.amandahosts files (one at a time; the > comments are how > I kept track of what I tried): > admin:/home/amanda # cat .amandahosts > #admin.jhuccp.org amanda.admin.jhuccp.org > #admin amanda.admin.jhuccp.org > admin [EMAIL PROTECTED] > #admin amanda > #admin.jhuccp.org [EMAIL PROTECTED] > admin:/home/amanda # > > Both files are owned by amanda:disk and have 0600 permissions. > > As an aside, is it still necessary to have both > /var/lib/amanda/.amandahosts and /home/amanda/.amandahosts files? Do > they have to be the same? > > My /etc/inetd.conf and /etc/services were patched by 'patch-system': > admin:/home/amanda # grep amanda /etc/services > amanda 10080/udp > amanda 10080/tcp > kamanda 10081/udp > amandaidx 10082/tcp > admin:/home/amanda # grep amanda /etc/inetd.conf > # amanda backup server with indexing capabilities > # amandaidx stream tcp nowait root > /usr/lib/amanda/amindexd amindexd > # amidxtape stream tcp nowait root > /usr/lib/amanda/amidxtaped amidxtaped > # amanda backup client > # amandadgram udp waitamanda > /usr/lib/amanda/amandad > amandad > amandadgram udp wait amanda /usr/local/libexec/amandad > amandad > amandaidx stream tcp nowait amanda /usr/local/libexec/amindexd > amindexd > amidxtape stream tcp nowait amanda /usr/local/libexec/amidxtaped > amidxtaped > admin:/home/amanda # > > Any additional suggestions? > > Thanks for continuing to think about this. > > -Kevin Zembower > > - > E. Kevin Zembower > Unix Administrator > Johns Hopkins University/Center for Communications Programs > 111 Market Place, Suite 310 > Baltimore, MD 21202 > 410-659-6139 > > >>> Ana Maria Escalante <[EMAIL PROTECTED]> 12/10/01 08:32PM > >>> > Hi Kevin: > I am not sure if I understood everything from your > message, but it > is > not clear to me, which user will be doing the backups from the server > (amanda is the default user) and whether your client machine is the > same > as your server. > You must have a .amandahosts file in the client amanda home > directory, that gives access to amanda user from the server machine. > In my setup, my backup admin acount is amanda, my server is > server.domain.mx and my client is client.domain.mx. I have an > .amandahosts > file in amanda s home directory in the client with the following > line: > > server.domain.mx amanda > > You will also need an .amandahosts file in the server s amanda > s home > directory, with the client machines name and root as the authorized > user, > in order to recover from the clients, but that is another story. > If you have a .rhosts file in your clients amanda s home > directory, > it must have this same line. I have heard about it :) > Hope this helps. Good luck ... Ana Maria > > On Mon, 10 Dec 2001, KEVIN ZEMBOWER wrote: > > > I'm trying to get my first setup of amanda working. Running amcheck > > gives me: > > admin:/home/amanda # su amanda -c "/usr/local/sbin/amcheck > DailySet1" > > Amanda Tape Server Host Check > > - > > Holding disk /var/amanda: 5807968 KB disk space available, that's > > plenty > > NOTE: skipping tape-writable test > > Tape DailySet101 lab
Re: Newbie: Can't get amanda user to work
Have you tried: admin.jhuccp.orgamanda in ~amanda/.amandahosts Frank --On Tuesday, December 11, 2001 10:02:36 -0500 KEVIN ZEMBOWER <[EMAIL PROTECTED]> wrote: > Thank you to all the generous folks who have given me suggestions. > Unfortunately, I still can't get it to work. I still get the same error > massage with "[access as amanda not allowed from > [EMAIL PROTECTED]]". > > Here's some clarification on my system. I'm trying to backup the > tapeserver. My tape is on a machine called admin.jhuccp.org. The userID > for both client and server is "amanda", group is "disk". > > I've tried all these variations in the /home/amanda/.amandahosts and > /var/lib/amanda/.amandahosts files (one at a time; the comments are how > I kept track of what I tried): > admin:/home/amanda # cat .amandahosts ># admin.jhuccp.org amanda.admin.jhuccp.org ># admin amanda.admin.jhuccp.org > admin [EMAIL PROTECTED] ># admin amanda ># admin.jhuccp.org [EMAIL PROTECTED] > admin:/home/amanda # > > Both files are owned by amanda:disk and have 0600 permissions. > > As an aside, is it still necessary to have both > /var/lib/amanda/.amandahosts and /home/amanda/.amandahosts files? Do > they have to be the same? > > My /etc/inetd.conf and /etc/services were patched by 'patch-system': > admin:/home/amanda # grep amanda /etc/services > amanda 10080/udp > amanda 10080/tcp > kamanda 10081/udp > amandaidx 10082/tcp > admin:/home/amanda # grep amanda /etc/inetd.conf ># amanda backup server with indexing capabilities ># amandaidx stream tcp nowait root > /usr/lib/amanda/amindexd amindexd ># amidxtape stream tcp nowait root > /usr/lib/amanda/amidxtaped amidxtaped ># amanda backup client ># amandadgram udp waitamanda /usr/lib/amanda/amandad > amandad > amandadgram udp wait amanda /usr/local/libexec/amandad > amandad > amandaidx stream tcp nowait amanda /usr/local/libexec/amindexd > amindexd > amidxtape stream tcp nowait amanda /usr/local/libexec/amidxtaped > amidxtaped > admin:/home/amanda # > > Any additional suggestions? > > Thanks for continuing to think about this. > > -Kevin Zembower > > - > E. Kevin Zembower > Unix Administrator > Johns Hopkins University/Center for Communications Programs > 111 Market Place, Suite 310 > Baltimore, MD 21202 > 410-659-6139 > Ana Maria Escalante <[EMAIL PROTECTED]> 12/10/01 08:32PM > Hi Kevin: > I am not sure if I understood everything from your message, but it > is > not clear to me, which user will be doing the backups from the server > (amanda is the default user) and whether your client machine is the > same > as your server. > You must have a .amandahosts file in the client amanda home > directory, that gives access to amanda user from the server machine. > In my setup, my backup admin acount is amanda, my server is > server.domain.mx and my client is client.domain.mx. I have an > .amandahosts > file in amanda s home directory in the client with the following > line: > > server.domain.mx amanda > > You will also need an .amandahosts file in the server s amanda > s home > directory, with the client machines name and root as the authorized > user, > in order to recover from the clients, but that is another story. > If you have a .rhosts file in your clients amanda s home > directory, > it must have this same line. I have heard about it :) > Hope this helps. Good luck ... Ana Maria > > On Mon, 10 Dec 2001, KEVIN ZEMBOWER wrote: > >> I'm trying to get my first setup of amanda working. Running amcheck >> gives me: >> admin:/home/amanda # su amanda -c "/usr/local/sbin/amcheck > DailySet1" >> Amanda Tape Server Host Check >> - >> Holding disk /var/amanda: 5807968 KB disk space available, that's >> plenty >> NOTE: skipping tape-writable test >> Tape DailySet101 label ok >> NOTE: info dir /var/log/amanda/DailySet1/curinfo/admin/sdb1: does > not >> exist >> NOTE: info dir /var/log/amanda/DailySet1/curinfo/admin/sda1: does > not >> exist >> NOTE: info dir /var/log/amanda/DailySet1/curinfo/admin/sda3: does > not >> exist >> Server check took 16.516 seconds >> >> Amanda Backup Client Hosts Check >> >> ERROR: admin: [access as amanda not allowed from >> [EMAIL PROTECTED]] amandahostsauth failed >> Client check: 1 host checked in 0.029 seconds, 1 problem found >> >> (brought to you by Amanda 2.4.3b1) >> admin:/home/amanda # >> >> Yet, I have a .amandahosts file with what I think are the proper >> contents and permissions: >> admin:/home/amanda # ll /home/amanda/.amandahosts >> -rw-r--r--1 amanda disk 30 Dec 10 16:36 >> /home/amanda/.amandahosts >> admin:/home/amanda # cat /home/amanda/.amandahosts >> admin [EMAIL PROTECTED] >> admin:/home/amanda # >> >> I'm stumped. I've tried or checked all the suggestions in the >> FAQ-a-matic for this topic. It's probably something simple, tha
Re: Newbie: Can't get amanda user to work
On Tue, 11 Dec 2001 at 10:02am, KEVIN ZEMBOWER wrote > Thank you to all the generous folks who have given me suggestions. > Unfortunately, I still can't get it to work. I still get the same error > massage with "[access as amanda not allowed from > [EMAIL PROTECTED]]". > > Here's some clarification on my system. I'm trying to backup the > tapeserver. My tape is on a machine called admin.jhuccp.org. The userID > for both client and server is "amanda", group is "disk". I thought there was only one machine -- what do you mean "for both client and server"? > I've tried all these variations in the /home/amanda/.amandahosts and > /var/lib/amanda/.amandahosts files (one at a time; the comments are how > I kept track of what I tried): > admin:/home/amanda # cat .amandahosts > #admin.jhuccp.org amanda.admin.jhuccp.org > #admin amanda.admin.jhuccp.org > admin [EMAIL PROTECTED] > #admin amanda > #admin.jhuccp.org [EMAIL PROTECTED] > admin:/home/amanda # You still haven't hit the write one. The format is 'machinename user' So, /home/amanda/.amandahosts should include: admin.jhuccp.orgamanda Other questions -- are you sure that /home/amanda is the home directory of the amanda user? It's listed in /etc/passwd. > As an aside, is it still necessary to have both > /var/lib/amanda/.amandahosts and /home/amanda/.amandahosts files? Do > they have to be the same? AFAIK, it never was necessary. The only .amandahosts you need resides in ~amanda. > Any additional suggestions? What OS/distro are you using -- that's helpful info. -- Joshua Baker-LePain Department of Biomedical Engineering Duke University
Re: Newbie: Can't get amanda user to work
Thank you for your clarifying question, Jon. Yes, the machine name is "admin" and the user name is "amanda". I tried: admin amanda admin.jhuccp.org amanda admin [EMAIL PROTECTED] admin.jhuccp.org [EMAIL PROTECTED] So far, no joy. Oddly enough, I've gone ahead and added two other hosts. When I run amcheck now, it says: Amanda Backup Client Hosts Check ERROR: admin: [access as amanda not allowed from [EMAIL PROTECTED]] amandahostsauth failed Client check: 3 hosts checked in 0.049 seconds, 1 problem found >From this, I take it that the other two hosts are okay. Is this a good assumption? Thanks, again, for taking the time to write. -Kevin Zembower >>> Jon LaBadie <[EMAIL PROTECTED]> 12/11/01 11:30AM >>> On Tue, Dec 11, 2001 at 10:02:36AM -0500, KEVIN ZEMBOWER wrote: > Thank you to all the generous folks who have given me suggestions. > Unfortunately, I still can't get it to work. I still get the same error > massage with "[access as amanda not allowed from > [EMAIL PROTECTED]]". > > Here's some clarification on my system. I'm trying to backup the > tapeserver. My tape is on a machine called admin.jhuccp.org. The userID > for both client and server is "amanda", group is "disk". > > I've tried all these variations in the /home/amanda/.amandahosts and > /var/lib/amanda/.amandahosts files (one at a time; the comments are how > I kept track of what I tried): > admin:/home/amanda # cat .amandahosts > #admin.jhuccp.org amanda.admin.jhuccp.org > #admin amanda.admin.jhuccp.org > admin [EMAIL PROTECTED] > #admin amanda > #admin.jhuccp.org [EMAIL PROTECTED] > admin:/home/amanda # >>> End of included message <<< I don't use this mechanism myself, but weren't the suggestions for the format "machine_name user_name" I.e. I think the appropriate line might be "admin.jhuccp.org amanda" -- Jon H. LaBadie [EMAIL PROTECTED] JG Computing [EMAIL PROTECTED] 4455 Province Line Road(609) 252-0159 Princeton, NJ 08540-4322 (609) 683-7220 (fax)
Re: Newbie: Can't get amanda user to work
Thank you to all the generous folks who have given me suggestions. Unfortunately, I still can't get it to work. I still get the same error massage with "[access as amanda not allowed from [EMAIL PROTECTED]]". Here's some clarification on my system. I'm trying to backup the tapeserver. My tape is on a machine called admin.jhuccp.org. The userID for both client and server is "amanda", group is "disk". I've tried all these variations in the /home/amanda/.amandahosts and /var/lib/amanda/.amandahosts files (one at a time; the comments are how I kept track of what I tried): admin:/home/amanda # cat .amandahosts #admin.jhuccp.org amanda.admin.jhuccp.org #admin amanda.admin.jhuccp.org admin [EMAIL PROTECTED] #admin amanda #admin.jhuccp.org [EMAIL PROTECTED] admin:/home/amanda # Both files are owned by amanda:disk and have 0600 permissions. As an aside, is it still necessary to have both /var/lib/amanda/.amandahosts and /home/amanda/.amandahosts files? Do they have to be the same? My /etc/inetd.conf and /etc/services were patched by 'patch-system': admin:/home/amanda # grep amanda /etc/services amanda 10080/udp amanda 10080/tcp kamanda 10081/udp amandaidx 10082/tcp admin:/home/amanda # grep amanda /etc/inetd.conf # amanda backup server with indexing capabilities # amandaidx stream tcp nowait root /usr/lib/amanda/amindexd amindexd # amidxtape stream tcp nowait root /usr/lib/amanda/amidxtaped amidxtaped # amanda backup client # amandadgram udp waitamanda /usr/lib/amanda/amandad amandad amandadgram udp wait amanda /usr/local/libexec/amandad amandad amandaidx stream tcp nowait amanda /usr/local/libexec/amindexd amindexd amidxtape stream tcp nowait amanda /usr/local/libexec/amidxtaped amidxtaped admin:/home/amanda # Any additional suggestions? Thanks for continuing to think about this. -Kevin Zembower - E. Kevin Zembower Unix Administrator Johns Hopkins University/Center for Communications Programs 111 Market Place, Suite 310 Baltimore, MD 21202 410-659-6139 >>> Ana Maria Escalante <[EMAIL PROTECTED]> 12/10/01 08:32PM >>> Hi Kevin: I am not sure if I understood everything from your message, but it is not clear to me, which user will be doing the backups from the server (amanda is the default user) and whether your client machine is the same as your server. You must have a .amandahosts file in the client amanda home directory, that gives access to amanda user from the server machine. In my setup, my backup admin acount is amanda, my server is server.domain.mx and my client is client.domain.mx. I have an .amandahosts file in amanda s home directory in the client with the following line: server.domain.mxamanda You will also need an .amandahosts file in the server s amanda s home directory, with the client machines name and root as the authorized user, in order to recover from the clients, but that is another story. If you have a .rhosts file in your clients amanda s home directory, it must have this same line. I have heard about it :) Hope this helps. Good luck ... Ana Maria On Mon, 10 Dec 2001, KEVIN ZEMBOWER wrote: > I'm trying to get my first setup of amanda working. Running amcheck > gives me: > admin:/home/amanda # su amanda -c "/usr/local/sbin/amcheck DailySet1" > Amanda Tape Server Host Check > - > Holding disk /var/amanda: 5807968 KB disk space available, that's > plenty > NOTE: skipping tape-writable test > Tape DailySet101 label ok > NOTE: info dir /var/log/amanda/DailySet1/curinfo/admin/sdb1: does not > exist > NOTE: info dir /var/log/amanda/DailySet1/curinfo/admin/sda1: does not > exist > NOTE: info dir /var/log/amanda/DailySet1/curinfo/admin/sda3: does not > exist > Server check took 16.516 seconds > > Amanda Backup Client Hosts Check > > ERROR: admin: [access as amanda not allowed from > [EMAIL PROTECTED]] amandahostsauth failed > Client check: 1 host checked in 0.029 seconds, 1 problem found > > (brought to you by Amanda 2.4.3b1) > admin:/home/amanda # > > Yet, I have a .amandahosts file with what I think are the proper > contents and permissions: > admin:/home/amanda # ll /home/amanda/.amandahosts > -rw-r--r--1 amanda disk 30 Dec 10 16:36 > /home/amanda/.amandahosts > admin:/home/amanda # cat /home/amanda/.amandahosts > admin [EMAIL PROTECTED] > admin:/home/amanda # > > I'm stumped. I've tried or checked all the suggestions in the > FAQ-a-matic for this topic. It's probably something simple, that I don't > see because I'm new to amanda. Any suggestions? > > Thanks for your help. > > -Kevin Zembower > > - > E. Kevin Zembower > Unix Administrator > Johns Hopkins University/Center for Communications Programs > 111 Market Place, Suite 310 > Baltimore, MD 21202 > 410-659-6139 >
RE: Newbie: Can't get amanda user to work
>Yet, I have a .amandahosts file with what I think are the proper >contents and permissions: >admin:/home/amanda # ll /home/amanda/.amandahosts >-rw-r--r--1 amanda disk 30 Dec 10 16:36 >/home/amanda/.amandahosts >admin:/home/amanda # cat /home/amanda/.amandahosts >admin [EMAIL PROTECTED] >admin:/home/amanda # In .amandahosts on the server, you want an entry that reads: clientname root In .amandahosts on the client, you want an entry that reads: servername amanda Your permissions look fine. (Though I chmod 600 .amandahosts myself) Make sure clientname and servername are fully qualified (i.e. servername.jhuccp.org, clientname.jhuccp.org) Good luck! rap
Re: Newbie: Can't get amanda user to work
Hi Kevin: I am not sure if I understood everything from your message, but it is not clear to me, which user will be doing the backups from the server (amanda is the default user) and whether your client machine is the same as your server. You must have a .amandahosts file in the client amanda home directory, that gives access to amanda user from the server machine. In my setup, my backup admin acount is amanda, my server is server.domain.mx and my client is client.domain.mx. I have an .amandahosts file in amanda´s home directory in the client with the following line: server.domain.mxamanda You will also need an .amandahosts file in the server´s amanda´s home directory, with the client machines name and root as the authorized user, in order to recover from the clients, but that is another story. If you have a .rhosts file in your clients amanda´s home directory, it must have this same line. I have heard about it :) Hope this helps. Good luck ... Ana Maria On Mon, 10 Dec 2001, KEVIN ZEMBOWER wrote: > I'm trying to get my first setup of amanda working. Running amcheck > gives me: > admin:/home/amanda # su amanda -c "/usr/local/sbin/amcheck DailySet1" > Amanda Tape Server Host Check > - > Holding disk /var/amanda: 5807968 KB disk space available, that's > plenty > NOTE: skipping tape-writable test > Tape DailySet101 label ok > NOTE: info dir /var/log/amanda/DailySet1/curinfo/admin/sdb1: does not > exist > NOTE: info dir /var/log/amanda/DailySet1/curinfo/admin/sda1: does not > exist > NOTE: info dir /var/log/amanda/DailySet1/curinfo/admin/sda3: does not > exist > Server check took 16.516 seconds > > Amanda Backup Client Hosts Check > > ERROR: admin: [access as amanda not allowed from > [EMAIL PROTECTED]] amandahostsauth failed > Client check: 1 host checked in 0.029 seconds, 1 problem found > > (brought to you by Amanda 2.4.3b1) > admin:/home/amanda # > > Yet, I have a .amandahosts file with what I think are the proper > contents and permissions: > admin:/home/amanda # ll /home/amanda/.amandahosts > -rw-r--r--1 amanda disk 30 Dec 10 16:36 > /home/amanda/.amandahosts > admin:/home/amanda # cat /home/amanda/.amandahosts > admin [EMAIL PROTECTED] > admin:/home/amanda # > > I'm stumped. I've tried or checked all the suggestions in the > FAQ-a-matic for this topic. It's probably something simple, that I don't > see because I'm new to amanda. Any suggestions? > > Thanks for your help. > > -Kevin Zembower > > - > E. Kevin Zembower > Unix Administrator > Johns Hopkins University/Center for Communications Programs > 111 Market Place, Suite 310 > Baltimore, MD 21202 > 410-659-6139 >