Solved

Installing Client Access

Posted on 2006-10-31
9
278 Views
Last Modified: 2009-12-16
Hi Experts,

I have to send a CA install CD to one of our other sites, but I dont want give them the posibility to instal the "transfer to as/400" option.
does somone know what .CAB  file I have to remove to make this installation impossible????

(The version I will send them is CA 5.0)

Thanks,
Murph
0
Comment
Question by:theo kouwenhoven
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
  • 2
  • +1
9 Comments
 
LVL 13

Expert Comment

by:_b_h
ID: 17842249
The best way to do this is to create a tailored installation image, which can exclude components and include things like a service pack:
http://www-912.ibm.com/s_dir/slkbase.NSF/515a7ef1f8deef8c8625680b00020380/a234aab72cd4247386256b6d0008424b?OpenDocument

Barry
0
 
LVL 27

Expert Comment

by:tliotta
ID: 17844139
Minor note (very minor)...

Excluding the option doesn't exclude the capability. As long as the host servers are accessible from the network, the capability remains. The capability can be stopped/blocked in at least three general ways:

1. Block connections to the port(s) via firewall (either on the network or using the native firewall).
2. Ensure that object authority and user profile settings inhibit such activity.
3. Exit programming for the host servers.

The reason this is "minor" is that few users would ever know how to get it done if the iSeries Access option isn't available.

Tom

p.s. This comment isn't for points. It's purely FYI.
0
 
LVL 16

Author Comment

by:theo kouwenhoven
ID: 17844350
Hi Barry & Tom,

Yes I know about the tailored installation image, but it's to much work because they need it very fast
and I'm in the middle of a project.
And yes I know it is still possible to upload without this option, but I only want to make it not
to simple for the user overthere to be able to upload the stuff from Excel.
bij removing the right .CAB file, I will to force them to skip that part of the installation.
Some of our our local power users can upload data to the AS/400 so closing the port is no option.

Thanks anyway for your response.
0
Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

 
LVL 27

Expert Comment

by:tliotta
ID: 17847514
Murph:

An interface is available if (1) you are recent enough in your OS/400 and iSeries Access, and (2) you have enough authority.

Open up iSeries Navigator. Right-click on the iSeries that you want to administer and select <Application Administration> from the context menu. Select the 'Client Applications' tab. Expand the 'iSeries Access for Windows' tree. Expand 'Data Transfer'. Expand 'Upload to Server'.

Then have fun.

This can work very well, but it doesn't matter since you don't have much time. It's all you really have and it might be all you really need for this.

Tom


0
 
LVL 13

Expert Comment

by:_b_h
ID: 17847663
If time is of the essence, then consider sending them a Mochasoft 5250 emulation install. It has a small footprint, is easy to install, does not include data transfer, and can be used for now in demo mode. When you have time, you can then send them the tailored image
0
 
LVL 3

Expert Comment

by:Mind_nl
ID: 17849107
Like Tom said: prevent the users to upload data by setting the authority as needed thru iSeries Navigator. Preventing users from doing certain things should not be achieved by controlling what is installed on the users PC, as they could always log onto the system thru a different PC or maybe find a way to install the stuff anyways. Keep your security secure by maintaining it on the iSeries!
0
 
LVL 16

Author Comment

by:theo kouwenhoven
ID: 17866090
Yeah yeah yeah,
but that was not my question, the security is out of my hands.....
0
 
LVL 27

Accepted Solution

by:
tliotta earned 50 total points
ID: 17871966
Murph:

The iSeries Navigator Application Administration controls whether or not a user can run the transfer function from their PC to your AS/400. It doesn't change the authority on any of your AS/400 objects. In effect, it acts like an exit program.

Barry linked to tailoring an install image which was the "correct" answer.

If you attempt to remove a .CAB file or other object from the install without updating the install configuration, there's no way to predict what errors will be caused that might abort the install nor whether the install will complete with a working product. Even if we knew what .CAB _might_ be targeted, we couldn't make the install work with any reasonable guarantee. There probably are related objects that need to be changed. That's perhaps why IBM gave the tailored install option in the first place -- because it's not a straightforward process.

It wasn't clear that you were looking for help in getting around standard procedures without sufficient authority. Please understand that it can potentially put responders in a difficult position.

Tom
0

Featured Post

[Webinar] Learn How Hackers Steal Your Credentials

Do You Know How Hackers Steal Your Credentials? Join us and Skyport Systems to learn how hackers steal your credentials and why Active Directory must be secure to stop them. Thursday, July 13, 2017 10:00 A.M. PDT

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Microsoft is moving in-place eDiscovery & hold from ECP to EOP console under Content Search in Search and Investigation Options.  In this post, I will be showing you how to export emails to a PST file using the Content Search Options.
In this blog post, we’ll look at how ClickHouse performs in a general analytical workload using the star schema benchmark test.
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question