Determine how you will configure Smarts passwords. You can do any or all of the following:
-
Allow the host operating system to validate users.
This method provides the highest level of security and is easy to manage because it relies on the security implementation that is already in place. There are two variations: any valid user can access one of the Smarts levels (All, Monitor, Ping) or specific users can access a specific Smarts security level. Defining specific access requires more maintenance because you must list the usernames in Smarts configuration files (serverConnect.conf and clientConnect.conf). The Smarts System Administration Guide explains methods to configure and to secure access for these files.
-
Specify unique Smarts passwords for individual Smarts users.
Because this method requires a high level of maintenance, consider this method only when there are very few Smarts users. Note that this method is less secure than permitting the host to validate users.
-
Specify a common Smarts username with a common password.
This method is the least secure, but very easy to maintain.
Note that you can combine these methods, for example, you could restrict administration (All) capabilities to specific users validated by the operating system. In addition, you could provide Monitor level abilities to a general Smarts user named “Monitor.”