Safeguard Reference Manual (G06.24+, H06.03+ )

ManualsBrandsHP ManualsServerHP Integrity NonStop H-Series

301

302

303

304

305

306

307

308

309

310

Disk Volume and Subvolume Security Commands

Safeguard Reference Manual—520618-013

9-4

Volume and Subvolume Security Command

Summary

Table 9-1. Disk Volume and Subvolume Security Command Summary

Command Description

ADD [SUB]VOLUME Adds a volume or subvolume authorization record with the

specified attribute values. The current default volume or

subvolume attribute values are used for any attributes not

specified in the ADD VOLUME or ADD SUBVOLUME

command. Only a local super group user can add a record for

a disk volume unless the default action is overridden with an

ACL for OBJECTTYPE VOLUME or SUBVOLUME.

ALTER [SUB]VOLUME Changes one or more attribute values in a volume or

subvolume authorization record. For all attributes except

ACCESS, ALTER replaces the current value with the specified

value. For ACCESS, ALTER changes the existing ACL to

incorporate access-spec.

DELETE [SUB]VOLUME Deletes an authorization record for a volume or subvolume.

After a volume authorization record is deleted, only attempts to

create disk files on protected subvolumes on the volume are

subject to Safeguard security checks or auditing. After a

subvolume authorization record is deleted, attempts to create

disk files on the subvolume are subject to Safeguard security

checks and auditing only if the volume on which the subvolume

resides is protected. In addition, in either case, disk files with

persistent protection are subject to Safeguard security checks

and auditing.

FREEZE [SUB]VOLUME Temporarily suspends the file-creation authority granted to

users with a volume or subvolume ACL. On any frozen volume

or subvolume, file creation and access authority is granted only

to an owner, the primary owner’s group manager, and the

super ID.

INFO [SUB]VOLUME Displays the existing attribute values in a disk volume or

subvolume authorization record

RESET [SUB]VOLUME Sets one or more default volume or subvolume attribute values

to predefined values

SET [SUB]VOLUME Sets one or more default volume or subvolume attribute values

to specified values. When a volume or subvolume

authorization record is added, the current default attribute

values are used for any attributes not specified in the ADD

command.

SHOW [SUB]VOLUME Displays the current default values of the volume or subvolume

attribute

THAW [SUB]VOLUME For frozen volumes or subvolumes, restores the file-creation

authority granted to users on that volume or subvolume ACL