nerdexam
Network_Appliance

NS0-157 · Question #246

Which built-in user can access the system shell?

The correct answer is C. diag. The 'diag' built-in account is the only user in ONTAP that can log into the system shell (also called the diagnostic shell or nodeshell) for low-level diagnostics.

Performance, Troubleshooting, and Security

Question

Which built-in user can access the system shell?

Options

  • Aadmin
  • Broot
  • Cdiag
  • Dvserver-admin

How the community answered

(41 responses)
  • A
    2% (1)
  • B
    5% (2)
  • C
    90% (37)
  • D
    2% (1)

Why each option

The 'diag' built-in account is the only user in ONTAP that can log into the system shell (also called the diagnostic shell or nodeshell) for low-level diagnostics.

Aadmin

The 'admin' account has full clustershell access but is not permitted to enter the system shell directly.

Broot

There is no interactive built-in 'root' user account in clustered ONTAP that can log in and access the system shell.

CdiagCorrect

The 'diag' account is a built-in ONTAP user specifically provisioned to access the system shell, which allows administrators to run diagnostic commands outside the standard clustershell or nodeshell environments. This account requires a password set by the admin and is used only for advanced troubleshooting under NetApp support guidance.

Dvserver-admin

The 'vserver-admin' role is scoped to SVM-level administration within the clustershell and has no access to the system shell.

Concept tested: ONTAP built-in diag user and system shell access

Source: https://docs.netapp.com/us-en/ontap/system-admin/access-system-console-node-task.html

Topics

#system shell#diag user#access control

Community Discussion

No community discussion yet for this question.

Full NS0-157 Practice