Is there any way to enable the Secure Attention Key on a p5 LPAR? As
best I can tell, the TCB treats /dev/vty0 as a network terminal, not a
local console.

The LPAR I'm testing on has 5300-05 installed, with TCB enabled.
"tcbck" gives valid output. "sak_enabled = true" is set as default
in /etc/security/login.cfg and "tpath" is set to "on" in
/etc/security/user. When I telnet to the LPAR from another AIX box,
I can "send sak" from the telnet> prompt and it does the right thing,
which seems to indicate that the SAK is correctly configured.

I've tried connecting from the WebSM VTerm running in Windows,
Linux, and another AIX box, and from the HMC command line via vtmenu.
At the login prompt, Ctrl-x,Ctrl-r produces no visual output, but
apparently prepends unprintable characters to the login name, as login
always fails with an invalid login name or password. Ctrl-x,Ctrl-r at
a command line just echoes ^X^R.

I've also tried setting:

/dev/console
synonym = /dev/vty0

in /etc/security/login.cfg, to no effect.


--
Doc Shipley
MDR Consulting, Inc.
Austin, Texas