# SAP

Transaction Code Cheat-Sheet
Transaction Code	Purpose
AL08	User List (Global)
PFCG	Role Maintenance
RZ04	Maintain Operations Modes
RZ10	Maintain Profiles
RZ11	View Profile Params, with documentation
RZ20	(Cross-system) Monitoring
SE38	RSUSR* (User Admin Reports)
SE38	RSUSR070 (Show Roles and their Long Text Descriptions)
SM02	Send System Message
SM04	User List (Local System)
SM12	Administer Lock Entries
SM13	Administer Update Records
SM21	View System Log
SM37	Display/Monitor Background Jobs
SM50/SM66	Administer Work Processes
SM51	Show Application Servers
SM59	RFC Connections
SMLG	Define/Maintain Logon Groups
SNOTE	Note Browser
STMS	Transports
SU53	Display Auth Data: "Why did my last transaction fail?"
SU56	Show me my authorizations
SUIM	System User Information

Info on how to lock and unlock from the Oracle level.
 
To lock a single user called test in client 600
 
SQL>  update sapr3.usr02
           set uflag=64 where bname='TEST' and mandt=600;
 
To unlock the same user
 
SQL>  update sapr3.usr02
          set uflag=0 where bname='TEST' and mandt=600;
 
To lock all users in client 600
 
SQL>  update sapr3.usr02
          set uflag=64 where bname in 
          (select bname from sapr3.usr02)
          and mandt=600
 
To unlock all user in client 600  
 
    
SQL>  update sapr3.usr02
          set uflag=0 where bname in 
          (select bname from sapr3.usr02)
          and mandt=600
 
If you wanted to modify this to include multiple clients
 
SQL>  update sapr3.usr02
          set uflag=0 where bname in 
          (select bname from sapr3.usr02)
          and mandt in (100,120,600)
 

# MySQL

The most important thing to remember about installing MySQL is that there are two accounts with no passwords created by default with root privs on some databases. These accounts can only connect from localhost. Also, there are two built-in root accounts that have no passwords. These have to be fixed.

Run the following commands:

		# mysql -u root
		mysql> SET PASSWORD FOR 'root'@'localhost' = PASSWORD('newpwd');
		mysql> SET PASSWORD FOR 'root'@'%' = PASSWORD('newpwd');
		mysql> delete from mysql.user where User="";
		mysql> FLUSH PRIVILEGES;
	

Dump table "hosts" to a text file:

• select * from hosts into OUTFILE '/tmp/blah' FIELDS TERMINATED BY ',' OPTIONALLY ENCLOSED BY '"';

Load data into table "hosts" from a text file:

• load data infile "blah" into table hosts FIELDS TERMINATED BY ',' OPTIONALLY ENCLOSED BY '"';

# OS X

• Installing UW IMAP Server on OS X

Refresh the disk arbitration daemon:
# disktool -r

# OpenSSL

• Dump the text out of an SSL certificate from the command line:
  • openssl x509 -in server.crt -noout -text

Note: "server.crt" could also be a .pem file.

# Jumpstart

• May have to set timehost = localhost in Sysidcfg file for non-interactive to work.
• add_install_client syntax:
  • ./add_install_client -c 192.168.1.103:/export/home/remote/jumpstart -p 192.168.1.103:/export/home/remote/jumpstart/Sysidcfg/e10k myhost sun4u

    Where 192.168.1.103 is the Jumpstart Server and myhost is the client being Jumpstarted

# OBP

• Key default sequence to drop to OBP on Cyclades terminal server is ~break (literally type "~" "b" "r" "e" "a" "k").
• Break sequence can be changed in pslave.conf with the all.break_sequence directive.
• Key sequence to drop to OBP during a SF15k "console" session is ~#

  If you are ssh'ed into one of the above, you have two options:

  1. Use ~~. or ~~# to avoid your ssh client itself responding to these.
  2. Add the line "EscapeChar [" to ~/.ssh/config to change your SSH client's escape character to [ from ~

     This is what I do. If I want to drop my SSH connection, I can issue [. and I don't have to worry about it.

• show-devs
• show-disks
• show-nets
• Don't forget to use devunalias to remove aliases. Assigning a new device to an existing alias name does NOT overwrite the old one!
• On OBP > 3.0 you can:

  ok> boot net:dhcp - install

• Some network cards will allow you to do this:

  ok> boot net:speed=100,duplex=full - install

# VxVM/LSM

• Manually Encapsulate/UnEncapsulate a root disk

  Per Veritas Document ID 230661

  To Manually Un-Encapsulate:

  1. touch /etc/vx/reconfig.d/state.d/install-db
  2. modify /etc/vfstab to show original Solaris partitions before Volume Manager was installed (vfstab.prevm)
  3. modify /etc/system so that the following lines show as:
     *rootdev:/pseudo/vxio@0:0
     *set vxio:vol_rootdev_is_volume_=1
  4. Break the root mirror
  5. Reboot
  
  You can also perform most of this operation if you boot from CD or Network, and mount your boot drive under /a. For instance, if you hose you are patching a system, and split the root mirror before you start, you can manually unencapsulate your root mirror copy, appropriately edit the vfstab on the root mirror, then (hopefully) boot from the root mirror.

• Fix a disk that won't encapsulate (also from Veritas Document ID 230661).
  1. Remove partitions that are tagged with a 14 and 15 from the disk. I usually accomplish this by the following:
     # vxdisk list | grep rootdisk c0t8d0s2 auto:sliced rootdisk rootdg online # prtvtoc /dev/rdsk/c0t8d0s2 * /dev/rdsk/c0t8d0s2 partition map * * Dimensions: * 512 bytes/sector * 424 sectors/track * 24 tracks/cylinder * 10176 sectors/cylinder * 14089 cylinders * 14087 accessible cylinders * * Flags: * 1: unmountable * 10: read-only * * Unallocated space: * First Sector Last * Sector Count Sector * 0 10176 10175 * 4202688 18446744073705379456 30527 * 143349312 18446744073570404992 4202687 * * First Sector Last * Partition Tag Flags Sector Count Sector Mount Directory 0 2 00 4202688 139146624 143349311 1 3 01 30528 4172160 4202687 2 5 00 0 143349312 143349311 3 14 01 30528 143318784 143349311 4 15 01 10176 20352 30527
  2. You can save the output of the prtvtoc command to a file. Then delete the last two entries (the ones that have 14 and 15 in the second column.
  3. Perform the following:
     # cat <vtoc file> | fmthard -s - /dev/rdsk/c0t8d0s2 # reboot
  4. Once the system is rebooted, use vxdiskadm to remove rootdisk from the rootdg.

• Tru64's Logical Storage Manager (LSM) is Veritas Volume Manger. All of the normal vx* commands in VxVM use vol* instead.

  ex.
  vxprint on VxVM == volprint on LSM.
  vxdg on VxVM == voldg on LSM.

• Resize a volume:
  # /etc/vx/bin/vxresize -g <dg> -F ufs <vol> +<size> [ device to allocate from ]

  examples:

  # /etc/vx/bin/vxresize -g sapdg -F ufs sapdata3 +2g # /etc/vx/bin/vxresize -g sapdg -F ufs sapdata4 +12345678 sapdg09
• Print VxVM configuration for all disk groups:
  # vxprint -htA

• Create a VxVM Volume:
  # vxassist -g make

  ex.
  vxassist -g rootdg make scratch 5G
  vxassist -g ora-dg make vol01 32712m nstripe=2 (Striping the volume across 2 disks)
  vxassist -g miscdg make scratchvol 14g layout=mirror miscdg01 miscdg03
  (mirrored on disks miscdg01 and miscdg03)

• Mirror the rootdg:
  # vxrootmir -a target

  ex.
  vxrootmir -a dsk1

• "Un-Fail" a drive:
  # vxedit -g sm1sapdg set failing=off

• List disk groups:
  # vxdg list

• When you get disks showing up in vxdg list that you KNOW you have removed, you'll need to:
  # vxdisk rm disk

• Rename a dg:
  # vxdg -n deport
  # vxdg import

• Delete a volume:
  # vxvol -g dg stop volume # vxvol on VxVM
  # vxedit -g dg -r rm volume # vxedit on VxVM

• Remove plexes from a mirror:
  # vxplex -g dg -v volume dis plex_name
  # vxedit -g dg -r rm plex_name

• Remove a disk quickly (make sure no sub-disks are in use first):
  # vxdg -g dg rmdisk disk_name

• Quickly break the root-mirror for patching. This assumes that your mirrored plex is called "rootvol-02" which is the default.
  # vxprint -htg rootdg | egrep '^v|^pl' | grep root
  # vxplex -g rootdg -v rootvol dis rootvol-02

• Reattach "rootvol-02" plex to rootvol after patching:
  # vxplex -g rootdg att rootvol rootvol-02

# Tru64/Alpha

• Force interfaces to 100 FDX from SRM console:
  
  >>> set ewa0_mode FastFD
  >>> set ewb0_mode FastFD

• RPM borks when system is booted w/ AutoFS daemon enabled. Older automount daemon seems to work fine. You can over-ride installs with rpm --ignore-size, but there doesn't seem to be a work-around for rpm --erase

• You have to allow the CPQ snmp agent to use public on the primary interface for Performance Manager to actually work. You should be able to limit access to locahost maybe??

• Blow away and re-create partitions on a disk:
  
  # disklabel -z
  # disklabel -rw

• View disk label:
  # disklabel -r

  **NOTE** running disklable w/o the -r will show you a CACHED COPY OF THE LABEL!!!

• Grow an LSM+ADVFS volume:
  1. Create a new LSM volume w/ volassist make command...
  2. addvol /dev/vol//

• hsxterm notes:
  lives in /usr/lbin?!
  # hwmgr -view devices | grep -i hsz | awk '{print $2}'
  # hsxterm5 -F

• Deleting a RAID set:
  > show raidsets Name Storageset Uses Used by ------------------------------------------------------------------------------ R1 raidset DISK10000 D100 DISK20000 DISK30000 DISK40000 DISK50000 R2 raidset DISK10100 D200 DISK20100 DISK30100 DISK40100 DISK50100 > delete D100 > delete R1

• Create a RAID set:
  > add raidset R1 DISK&tl;BLAH> DISK&tl;BLAH2> DISK&tl;...> > add units D100 R1 > set D101 WRITEBACK_CACHE > set R1 RECONSTRUCT=FAST (optional. If you enable this, be sure to disable it after the reconstruct is done.)

• Set HSZ time:
  
  > set this time=16-Jul-2003:hh:mm:ss

• DEC SWXRC controllers:
  To configure the array, you need to copy ra200rcu.exe from the firmware CD to a DOS formatted floppy. Stop the console at the SRM boot prompt, type ARC[enter] to run the ARC console, then run
  a:\ra200rcu.exe

• Setting up AUTOMOUNT daemon:
  
  [root@spiderman autofs]# /usr/sbin/rcmgr -c set AUTOMOUNT 1
  [root@spiderman autofs]# rcmgr -c set AUTOMOUNT_ARGS "-m -f /etc/auto.master"

• Making/Removing AdvFS domains:
  
  # rmfdmn nsr-domain3
  # mkfdmn /dev/vol/ora-dg/vol01 ora-domain
  # mkfset ora-domain oracle
  # mkfset ora-domain home

# Solaris

When root's password expires, cron jobs stop working.

• Enabling stats recording on Solaris machines:
  # cd /etc/init.d
  
  
  # vi perf
  
  Remove comments from /etc/init.d/perf as directed in the file

  # crontab -e sys
  Add the following line to crontab for user sys:
  

  0-59 * * * 0-6 /usr/lib/sa/sa1
  # /etc/init.d/perf start

  After about 2 minutes, run the sar command. It should look like this:

  		# sar
  
  		SunOS myhost 5.9 Generic_112233-08 sun4u    07/26/2004
  
  		14:44:00    %usr    %sys    %wio   %idle
  		14:44:07        unix restarts
  		14:45:00       2       1       1      96
  		14:46:00       2       2       1      96
  		14:47:00       2       1       1      96
  		14:48:00       2       1       1      96
  
  		Average        2       1       1      96
  	

• Copy the partition table of one drive to another drive (for mirroring w/ SVM)
  
  # prtvtoc /dev/rdsk/c1t0d0s2 | fmthard -s - /dev/rdsk/c1t1d0s2

• Search for FibreChannel Enclosures on a Sun Fire v880:
  
  # luxadm probe

• Show FibreChannel disk drive status on Sun Fire v880 internal disks:
  
  # luxadm display FCloop

• Other interesting luxadm commands include:
  led_blink
  insert_device
  remove_device
  inquiry

• Sun's Notes for Replacing Hot Plug Disks

• dtlogin session choices are in:
  • /usr/dt/config/C/Xresources.d/
  • /etc/dt/config/C/Xresources.d/

  and look like this:

  # [steelmi1@batman tmp]$ cat /etc/dt/config/C/Xresources.d/Xresources.kde
  Dtlogin*altDtsIncrement: True
  Dtlogin*altDtName: K Desktop Environment (KDE)
  Dtlogin*altDtKey: /usr/local/kde/bin/startkde
  Dtlogin*altDtStart: /usr/local/kde/bin/startkde
  Dtlogin*altDtLogo: KDElogo

• iostat -nE to see details about the physical disks

• Force eri devices to 100 Full Duplex in /etc/system:
  
  set eri:adv_autoneg_cap=0
  set eri:adv_100T4_cap=0
  set eri:adv_100fdx_cap=1
  set eri:adv_100hdx_cap=0
  set eri:adv_10fdx_cap=0
  set eri:adv_10hdx_cap=0

• Solaris 9 vold needs this line uncommented in /etc/inetd.conf to work:
  100155/1 tli rpc/ticotsord wait root /usr/lib/smedia/rpc.smserverd rpc.smserverd

• grep for all lines that are not comments and are not blank lines from a file:
  $ egrep -v '^$|^#' /etc/inetd.conf

• # Building Sun Packages
  1. Do the
     ./configure; make
     as normal if you are building from source

  2. find -exec ls -ld {} \; > snapshot.pre

  3. Install the program (for example, make install)

  4. find -exec ls -ld {} \; > snapshot.post

  5. diff snapshot.pre snapshot.post | grep ^\> | cut -c59- | awk '{print $1}' | pkgproto | sort > prototype

  6. Add this line to the top of
     ./prototype
     :
     
     i pkginfo=./pkginfo
     1. Change file permissions in
        ./prototype
        if necessary

     2. Change ownerships to
        bin:bin
        in
        ./prototype
        if necessary

     3. Add lines for dependancy files, pre-install, and post-install scripts to
        ./prototype
        if necessary:
        
        i depend=./depend
        i preinstall=./preinstall
        i postinstall=./postinstall

  7. Create ./pkginfo file like the following:
     
     PKG="MYORGssh"
     NAME="OpenSSH"
     ARCH="sparc"
     VERSION="3.7.1p2"
     EMAIL="your_email_address"
     CATEGORY="MYORG"
     PSTAMP="Your Real Name"
     BASEDIR="/"
     CLASSES="none"

     Please try to make your CATEGORY always == MYORG, where MYORG is a name you've chosen to identify your site. i.e. You should always use the same category for all the packages you make, unless you have a good reason not to.

  8. pkgmk:
     
     # pkgmk -r / -f prototype

  9. pkgtrans:
     
     # pkgtrans -s /var/spool/pkg /usr/remote/pkgs/<pkgname>

     Where <pkgname> is a file name equal to <PKG from the .pkginfo file>-<Version>-sol<Version of Solaris>-<ARCH from .pkginfo>-<32 or 64 depending of if the package was compiled as 32 bit or 64 bit, not the OS>-local

     For this package, the package file is named: MYORGopenssh-3.7.1p2-sol8-sparc-32-local

  10. Save the prototype, pkginfo, depend, preinstall, and/or postinstall somewhere useful. When a new version comes out, you may have to rebuild the package.

  11. Test the package. Preferably on a machine other than the one you built on, and definately on a non-production system.

• Package depend files look like this:
  
  [steelmi1@batman openssh-3.7.1p2]$ cat depend
  P MYORGssl OpenSSL
  P MYORGzlib Zlib
  I MYORGssh OpenSSH

• Package pre/post installs look like normal shell scripts. The
  #!/bin/sh
  at the top is not needed, and probably ignored..

# Linux

• Force eth0 to 100/Full:
  
  # ethtool -s eth0 autoneg off speed 100 duplex full

# EMC/TimeFinder

• Misc. Symmetrix/Timefinder commands:
  syminq -> Disk query. Prints UNIX device and SYM ID. symcfg discover symdg create <dg_name> symdg list symld -g <dg_name> add dev [01A | disk ID] -sid [ SYM ID ] symbcv -g <dg_name> associate dev 1F1 symdg show <dg_name> symmir -g <dg_name> full establish -> (y/n) -> y symmir -g <dg_name> query [ -i seconds [ symmir -g <dg_name> split [ -instant (default, recoverable Oracle) | -consistent (restartable Oracle ] symcfg list symqos symdg vg2dg <source_dg> <dest_dg> -dgtype REGULAR -> copy VxVM dg to SYM dg.

• SYM Identifiers:
  
  65 04D 000
  <SYM SERIAL> <DISK ID> <F/A Port>
  Mx = Mirror Copy x
  BCV = BCV
  Rx = Remote x
  GK = Gate Keeper

• symapi log file:
  
  /var/symapi/log

# Sendmail consolidation

• Put the following into /etc/default/sendmail on Solaris to run in queue-only mode: MODE= QUEUEINTERVAL=15
• Use the following sendmail.mc file on Solaris 9 to create a "Null Client" version of sendmail.conf:
  divert(0)dnl VERSIONID(`@(#)main.mc 1.5 (Sun) 08/10/00') OSTYPE(`solaris8')dnl DOMAIN(`solaris-generic')dnl FEATURE(`nullclient', `myserver')dnl DAEMON_OPTIONS(`Port=smtp,Addr=127.0.0.1, Name=MTA')dnl dnl MAILER(`local')dnl dnl MAILER(`smtp')dnl 1. cd /usr/lib/mail/cf 2. Create a new file called "nullclient.mc" 3. Paste the above lines into nullclient.mc. Make sure there are no leading spaces. The M4 macro language is very snarky. 4. Change myserver to the hostname of your actual mail server. If you are doing this on a Solaris machine behind your cable modem at home, you'd use whatever SMTP server your cable company told you to use for sending email. 5. Run "make nullclient" 6. cp nullclient.cf /etc/mail/sendmail.cf (You DID back up /etc/mail/sendmail.cf first, right? Right?) 7. /etc/init.d/sendmail stop; /etc/init.d/sendmail start
• On Tru64 put
  O DaemonPortOptions=Port=smtp,Addr=127.0.0.1, Name=MTA
  in sendmail.cf to prevent it binding to all network interfaces

  To install locally-compiled sendmail:

  # groupadd -g25 smmsp # useradd -u25 -g25 -c "Sendmail 8.12 Required User" smmsp # cd /usr/remote/Tru64/Tru64/sendmail-8.12.9 # sh Build install

  copy defaults from another Tru64 host:/etc/mail/* and customize

• RedHat Linux 8.0 + only binds sendmail to 127.0.0.1 by default.

# Veritas NBU

• Upgrading Clients:

  Create a file called /tmp/client_list that looks like this:

  Linux RedHat batman.superfriends.com Linux RedHat superman.superfriends.com Linux RedHat aquaman.superfriends.com

  Run:

  # /opt/openv/netbackup/bin/update_clients -ClientList /tmp/client_list

# PGP/GnuPG

Search NASA key server for key: gpg --keyserver=pgpkeys.hq.nasa.gov --search-keys "Michael Steele"

# Compiling KDE on Solaris

• unpack QT source as /usr/local/qt-

• export QTDIR=/usr/local/qt-

• export KDEDIR=/usr/local/kde-

• export PATH=$KDEDIR/bin:$QTDIR/bin:$PATH

• export LD_LIBRARY_PATH=$QTDIR/lib:KDEDIR/lib:$LD_LIBRARY_PATH

• cd $QTDIR

• ./configure -system-zlib -qt-gif -system-libpng -system-libjpeg -plugin-imgfmt-mng -thread -no-stl -no-xinerama -no-g++-exceptions -platform solaris-g++ -fast

• Compile arts with ./configure --prefix=$KDEDIR --with-qt-dir=$QTDIR ; make ; make install

• Compile kdelibs with ./configure --prefix=$KDEDIR --with-qt-dir=$QTDIR ; make ; make install
  (Had to ln -s /usr/local/bin/m4 /opt/sfw/bin/gm4 for some reason) (Also had to go into kioslave/ftp and do a make clean; make for top level make to complete).

• Compile kdebase with ./configure --prefix=$KDEDIR --with-qt-dir=$QTDIR ; make ; make install

• Compile kdeutils with ./configure --prefix=$KDEDIR --with-qt-dir=$QTDIR ; make ; make install

• Compile kdenetwork with ./configure --prefix=$KDEDIR --with-qt-dir=$QTDIR ; make ; make install

• Compile kdeartwork with ./configure --prefix=$KDEDIR --with-qt-dir=$QTDIR ; make ; make install

• Compile kdegraphics with ./configure --prefix=$KDEDIR --with-qt-dir=$QTDIR ; make ; make install

• Compile kdegames with ./configure --prefix=$KDEDIR --with-qt-dir=$QTDIR ; make ; make install

• Compile kdemultimedia with ./configure --prefix=$KDEDIR --with-qt-dir=$QTDIR ; make ; make install

• Compile kdeaddons with ./configure --prefix=$KDEDIR --with-qt-dir=$QTDIR ; make ; make install

# Sun StorEdge T3

Reset battery usage/date info:
• .id write bweek u1pcu1 00202004 (where 00202004 is 00 = day# 20 = week# 2004=year)
• .id write byseage u1pcu1 0
• .bat -i u1pcu1 You need to do this for u1pcu1, u1pcu2, u2pcu1, u2pcu2

# CPIO

• Backup syntax:
  cd ; find . -depth -print | cpio -oV -O /dev/
• Restore syntax:
  cd ; cpio -idmuV -I /dev/ *.*
• GNU's cpio seems to barf at 2GB when dumping to a file, even if the file system supports files >2GB. The fix for this is to cat the backup file and pipe that to cpio.
  # cat blah.cpio | cpio -idumV -I - *.*

  (I haven't tested this in a while, may be slightly wrong).

# VIM

• fx => search for next occurence of x on the current line
• Fx => s/next/previous
• qa => Start recording macro "a" ends when you press q again.
• @a => plays back macro "a" that you have already recorded.
• ma => create a mark called "a"
• d`a => delete to mark "a"
• y`a => yank to mark "a"
• :split => split the editing window half
• :split => open a new window with
• CTRL + w => make the next higher editing window active
• CTRL + w => make the next down editing window active
• :q in a split window => close that split
• v => one character at a time visual mode
• V => one line at a time visual mode
• CTRL + v => column at a time visual mode once you have selected something in visual mode, you can use y (not yy) to yank and d (not dd) to delete it.
• gd => searches for local declaration of the variable your cursor is on
• Gd => searches for global declaration of the variable your cursor is on
• K => look for man page on the current word the cursor is on
• :fixdel => if your delete/bs key doesn't do what you think it should it tries to fix it
• :r ! => runs a command and dumps its output into the file you're editing
• :digraphs => shows you what letters to type in order to insert strange characters. ex. ° can be created by typing CTRL + K DG while in insert mode
• "nyy => yank to register "n"
• "*yy => yank to system clip-board. Middle mouse click to paste, as normal
• Range: How to operate over a range of lines in your file
  • n,$ => line n to the last line
  • % => every line ex: :15,$s/blah/doh/g Substitutes the word doh in place of blah for lines 15 - the end.
• :%!sort runs sort on every line in the file
• Getting rid of control characters in your text:
  1. Put your cursor on the character and type "ga"
     This will tell you the ASCII number for the character.
  2. :%s/CTRL+V<ASCII Number>//g

# Shooting

Known "Safe" Commercial .308 Winchester loads for 7.62 NATO chambered rifles:

• Federal 308LR Power Shock
• Remington 308 Core-Lokt PSP "Managed Recoil"