OSF DCE Administration Guide--Core Components
DCE Application Administration
ACLs on individual ERAs can prevent unauthorized principals from creating, reading,
changing, or deleting ERA information. The following example shows permissions
established for the objfamily ERA. In this example, the c permission has no effect
because it was not assigned when the ERA was created with the xattrschema create
operation. All users can query and test the ERA. Only the user named appl_admin can
also update and delete the ERA.
dcecp> acl show /.:/hosts/silver/config/xattrschema/srvrconf/objfamily
{user appl_admin crwd}
{unauthenticated cr}
{any_other cr}
This ACL takes its default values from the container’s Initial Object ACL. You can
operate on the Initial Object ACL by using the -io option to acl operations. The
following example shows the Initial Object ACL for the xattrschema container on host
silver:
dcecp> acl show /.:/hosts/silver/config/xattrschema -io
{unauthenticated cr}
{any_other cr}
10.1.8 Changing Server Configurations
Sometimes you might want to change a server’s configuration information. For instance,
you want to change the -starton attribute from boot to explicit so that you can control
the server manually.
To change the normal server configuration attributes, you must first delete all of the
existing attributes and then create new ones. Avoid losing the current information by
first using a server show operation to display it on your screen.
The steps are illustrated in the following example which uses a server show operation to
capture the current server configuration information. The server delete operation
removes the configuration information, and a server create operation inserts the new
-starton attribute along with the remaining server configuration information.
124243 Tandem Computers Incorporated 10− 13