Manualshelf

Safeguard Reference Manual (G06.24+, H06.03+ )

ManualsBrandsHP ManualsServerHP Integrity NonStop H-Series
441442443444445446447448449450
Security Group Commands
Safeguard Reference Manual520618-013
13-2
Security Group Access Authorities
RELEASE
SELECT
FREEZE TERMINAL
THAW TERMINAL
The SECURITY-OSS-ADMINISTRATOR security group designates a list of users that
are granted additional OSS security management privileges over normal users for the
operations:
acl(ACL_SET)
chown(2)
chmod(2)
chdir(2)
opendir(3)
Membership in the SECURITY-OSS-ADMINISTRATOR security group are flagged in
the user’s environment during initial logon.
Like the ADD OBJECTTYPE command, the ADD SECURITY-GROUP command can
be used only by super-group members. Once an authorization record for a security
group has been added to the Safeguard database, the record’s primary owner, the
owner’s group manager, and any user with OWNER authority on the ACL can use
other security group commands to manage the security group authorization record.
Security Group Access Authorities
The ACL defined for a security group can grant either of these access authorities to
users and user groups:
Security Group Command Summary
Table 13-1 lists the SECURITY-GROUP commands and gives a brief description of
each.
Note. Only the locally authenticated users who are part of the
SECURITY-OSS-ADMINISTRATOR security group are granted the above specified privileges,
not the remotely authenticated users.
EXECUTE Execute the set of commands restricted to the security group
OWNER Manage the security group authorization record