Managing Access Rights - Novell OPEN ENTERPRISE SERVER - PLANNING AND IMPLEMENTATION GUIDE 12-2010 Implementation Manual
Planning and implementation guide
Hide thumbs
Also See for OPEN ENTERPRISE SERVER - PLANNING AND IMPLEMENTATION GUIDE 12-2010:
- Manual (78 pages)
Table of Contents
Advertisement
Use the information in this section to understand how you can configure POSIX directories to more
closely align with the NCP model.
Section 17.4.1, "Managing Access Rights," on page 193
Section 17.4.2, "Providing a Private Work Directory," on page 194
Section 17.4.3, "Providing a Group Work Area," on page 194
Section 17.4.4, "Providing a Public Work Area," on page 195
Section 17.4.5, "Setting Up Rights Inheritance," on page 196
17.4.1 Managing Access Rights
NCP directories are, by default, private. When you assign a user or a group as a trustee of a directory
or file, those trustees can automatically navigate to the assigned area and exercise whatever access
privileges you have assigned at that level and below. You can assign as many trustees with different
access privileges as you need.
On the other hand, Linux POSIX directories can be accessed through three sets of permissions
defined for each file object on a Linux system. These sets include the read (r), write (w), and execute
(x) permissions for each of three types of users: the file owner, the group, and other users. The Linux
kernel in OES 2 also supports access control lists (ACLs) to expand this capability. However, ACLs
are outside the scope of this discussion. For more information on ACLs, see
(http://www.novell.com/documentation/sles10/sles_admin/data/cha_acls.html)
Installation and Administration Guide (http://www.novell.com/documentation/sles10/sles_admin/
data/sles_admin.html).
The Linux
command lets you change the file owner and/or group to a LUM user or a LUM-
chown
enabled group. For example,
home directory and all its subdirectories and files to user1. For more information, see the chown
man page on your OES 2 server.
The Linux
command provides a very simple and fast way of adjusting directory and file
chmod
access privileges for the three user types: owner, group, and other (all users). In its simplest form,
the command uses three numbers, ranging from 0 through 7, to represent the rights for each of the
three user types. The first number sets the rights for the owner, the second number sets the rights for
the group, and the third number sets the rights for all others. Each number represents a single
grouping of rights, as follows:
Number
0
1
2
3
4
5
6
7
chown -R user1 /home/user1
Setting
- - -
- - x
- w -
- w x
r - -
r - x
r w -
r w x
"Access Control Lists"
in the
SLES 10 SP3:
changes the owner of the
Binary Representation
0 0 0
0 0 1
0 1 0
0 1 1
1 0 0
1 0 1
1 1 0
1 1 1
user1
File Services 193
Advertisement
Table of Contents
