permission setting
Moderators: chulett, rschirm, roy
permission setting
Right after install, by default, all AIX users are set to "Developer" category.
My EE server shares its AIX system with many other applications.
Meaning I must disabled, set all non DS groups to "<None>", manually on the Administrator's permission window.
Is there any better mechanism than this manual work?
djoni
My EE server shares its AIX system with many other applications.
Meaning I must disabled, set all non DS groups to "<None>", manually on the Administrator's permission window.
Is there any better mechanism than this manual work?
djoni
-
- Participant
- Posts: 54607
- Joined: Wed Oct 23, 2002 10:52 pm
- Location: Sydney, Australia
- Contact:
By default, the *.adm files aren't present. And you won't see them even if they are, unless you enable listing of hidden files (for example ls -la .*.adm)
The files are brought into use by using the Administrator client's Permissions tab.
Or by using a text editor on the server. File name .developer.adm for the Developer role contains a list of UNIX groups assigned to that role.
The files are brought into use by using the Administrator client's Permissions tab.
Or by using a text editor on the server. File name .developer.adm for the Developer role contains a list of UNIX groups assigned to that role.
IBM Software Services Group
Any contribution to this forum is my own opinion and does not necessarily reflect any position that IBM may hold.
Any contribution to this forum is my own opinion and does not necessarily reflect any position that IBM may hold.
Is this by project (one file one project) or just one developer.adm file for all groups with developer role?
djoni
djoni
ray.wurlod wrote:By default, the *.adm files aren't present. And you won't see them even if they are, unless you enable listing of hidden files (for example ls -la .*.adm)
The files are brought into use by using the Administrator client's Permissions tab.
Or by using a text editor on the server. File name .developer.adm for the Developer role contains a list of UNIX groups assigned to that role.
-
- Participant
- Posts: 54607
- Joined: Wed Oct 23, 2002 10:52 pm
- Location: Sydney, Australia
- Contact:
How do you prevent new AIX groups from entering the .adm file?
djoni
djoni
kduke wrote:I would never let other groups into the DataStage directories. You should write files which other applications need into directories outside of the project or DataStage engine. These directories can be wide open.
Some moron might vi a hash file like the VOC and shutdown DataStage.