OSF DCE Administration Guide--Core Components
OSF DCE Administration Guide—Core Components
Once you have created a new attribute, use a server modify operation, as explained
Section 10.1.8, to insert the necessary data. More information about ERAs is provided in
Chapter 32.
You can review the attributes associated with an ERA by using an xattrschema show
operation as shown in the following example:
dcecp> xattrschema show
/.:/hosts/silver/config/xattrschema/srvrconf/objfamily
{aclmgr {srvrconf {{query r} {update w} {test r} {delete d}}}}
{annotation {object family}}
{applydefs no}
{encoding uuid}
{intercell reject}
{multivalued yes}
{reserved no}
{scope {}}
{trigbind {}}
{trigtype none}
{unique no}
{uuid 1bef2222-e687-11cd-b74a-0000c08adf56}
ERAs in server configuration information are protected by two levels of ACLs. One
ACL type protects the container in which the ERA resides. The second ACL type
protects the individual ERA.
The ERA Container ACL is named as follows:
/.../cellname/hosts/hostname/config/xattrschema
The ERA Container ACL has the following permissions:
c (control) Modify the Container ACL
r (read) Read the ERA in the container
i (insert) Create new ERA information
I (Insert) Although the I permission is present, it does not apply to ERA items.
The permission applies to server control facilities, which are explained
in Section 10.1.1.3.
Use the dcecp acl object to view or modify the Container ACL. For example, the
following operation views the ERA Container ACL on host silver:
dcecp> acl show /.:/hosts/silver/config/xattrschema
{user appl_admin criI}
{unauthenticated r}
{any_other r}
The ACL for an individual ERA is named as follows:
/.../cellname/hosts/hostname/config/xattrschema/srvrconf/ERA_name
10 − 12 Tandem Computers Incorporated 124243