Jump to content United States-English
HP.com Home Products and Services Support and Drivers Solutions How to Buy
» Contact HP
More options
HP.com home
Software Distributor Administration Guide: HP-UX 11i v1, 11i v2, and 11i v3 > Chapter 9 SD-UX Security

The swacl Command

» 

Technical documentation

Complete book in PDF
» Feedback
Content starts here

 » Table of Contents

 » Glossary

 » Index

The swacl command lets you view or change ACL entries and permissions.

swacl Syntax

swacl  -l level [-D acl_entry|-F acl_file|-M acl_entry]        [-f software_file][-t target_file]        [-x option=value]  [-X option_file]         [software_selections] [target_selection]

Options and Operands

-l level

Level to edit. Level designations are the literals: host, depot, root, product, product_template, global_soc_template or global_product_template. (See “ACL Templates ” for a complete discussion.)

NOTE: You can change an ACL with -D, -F, or -M command options. You can only specify one of these options per command because they are mutually exclusive. If you don’t specify a -D, -F, or -M option, swacl prints the specified ACLs.
-D acl_entry

Deletes an existing entry from the ACL associated with the specified object. You can enter multiple -D options.

-F acl_file

Assigns the ACL information contained in acl_file to the object. All existing entries are removed and replaced by the entries in the file. You can enter only one -F option.

-M acl_entry

Adds a new ACL entry or changes the permissions of an existing entry. You can enter multiple -M options.

-f software_file

Reads a list of software selections from a separate file instead of from the CLI. (See “Software Files”.)

-t target_file

Reads a list of target host selections from a separate file instead of from the CLI. (See “Target Files”.)

-x option=value

Lets you change an option on the command line interface (CLI) that overrides the default value or a value in an alternate options file (-X option_file). See “Changing Command Options”.

-X option_file

Uses the option values in a specified option_file. See “Using Command Options”.

software_selections

The software objects for the swacl operation. See “Software Selections”.

target_selections

The target of the command. See “Target Selections”.

Changing Command Options

You can change the behavior of this command by specifying additional command-line options when you invoke the command (using the -xoption) or by reading predefined values from a file. The following table shows the defaults and options that apply to swacl.

Table 9-2 swacl Command Options and Default Values

  • admin_directory=/var/adm/sw

  • distribution_target_directory=/var/spool/sw

  • installed_software_catalog=products

  • level=

  • log_msgid=0

  • rpc_binding_info=​ncacn_ip_tcp:[2121] ncadg_ip_udp:[2121]

  • rpc_timeout=5

  • run_as_superuser=true

  • select_local=true

  • target_directory=

  • targets=

  • verbose=1

 

For More Information

See Appendix A for complete descriptions of each default.

swacl Output

A typical list output from the swacl command looks like the following:

# swacl    Installed Software Access Control List # # For host:  prewd:/ # # Date:  Mon Nov 06 16:39:58 2001 # # Object Ownership: User=root #                   Group=sys #                   Realm=prewd.fc.hp.com # default_realm=prewd.fc.hp.com object_owner:crwit user:rml:crwit user:root@newdist.fc.hp.com:crwit group:swadm:crwit any_other:-r--t

The header information (lines marked with #) gives the object’s name and owner and the name of the user’s realm or host name of the user’s system. In this case:

  • The object is a root (installed software).

  • The creator of the object (object_owner) is root@prewd.

  • The object_owner has all permissions.

  • Local user rml and remote user root@newdist.fc.hp.com have all permissions.

  • Members of local group swadm have all permissions.

  • Anyone not matching one of the previous entries (any_other) has read and test permissions.

For more information on the format of the ACL file, see “ACL Entries ”.

Printable version
Privacy statement Using this site means you accept its terms Feedback to webmaster
© 1997, 2000-2003, 2006, 2007, 2008 Hewlett-Packard Development Company, L.P.