Administration Reference


[Return to Library] [Contents] [Previous Topic] [Bottom of Topic] [Next Topic] [Index]

pts setfields

Purpose

Sets privacy flags or the group-creation quota for a Protection Database entry.

Synopsis

pts setfields -nameorid <user or group name or id>+
              [-access <set privacy flags>]
              [-groupquota <set limit on group creation>]
              [-cell <cell name>]  [-noauth]  [-force]  [-help]
   
pts setf -na <user or group name or id>+  [-a <set privacy flags>] 
         [-g <set limit on group creation>]  [-c <cell name>] 
         [-no]  [-f]  [-h]

Description

The pts setfields command sets the group-creation quota, the privacy flags, or both, associated with each user, machine, or group entry specified by the -nameorid argument.

To examine the current quota and privacy flags, use the pts examine command.

Cautions

Changing a machine or group's group-creation quota is allowed, but not recommended. The concept is meaningless for machines and groups, because it is impossible to authenticate as a group or machine.

Similarly, some privacy flag settings do not have a sensible interpretation. The Arguments section specifies the appropriate settings.

Options

-nameorid
Specifies the name or AFS UID of each user, the IP address (complete or wildcard-style) of each machine, or the name or AFS GID of each machine for which to set privacy flags or group-creation quota. It is acceptable to mix users, machines, and groups on the same command line, as well as names (IP addresses for machines) and IDs. Precede the GID of each group with a hyphen to indicate that it is negative.

-access
Specifies the privacy flags to apply to each entry. Provide a string of five characters, one for each of the permissions. If this option is omitted, the current setting remains unchanged.

Set each flag to achieve the desired combination of permissions. If the following list does not mention a certain setting, it is not acceptable. For further discussion of the privacy flags, see the pts examine reference page.

-groupquota
Specifies the number of additional groups a user can create (it does not matter how many he or she has created already). Do not include this argument for a group or machine entry.

-cell
Names the cell in which to run the command. For more details, see the introductory pts reference page.

-noauth
Assigns the unprivileged identity anonymous to the issuer. For more details, see the introductory pts reference page.

-force
Enables the command to continue executing as far as possible when errors or other problems occur, rather than halting execution at the first error.

-help
Prints the online help for this command. All other valid options are ignored.

Examples

The following example changes the privacy flags on the group operators, retaining the default values of the first, second and third flags, but setting the fourth and fifth flags to enable the group's members to add and remove other members.

   % pts setfields -nameorid operators -access S-Mar
   

The following example changes the privacy flags and sets group quota on the user entry admin. It retains the default values of the first, fourth, and fifth flags, but sets the second and third flags, to enable anyone to list the groups that admin owns and belongs to. Users authenticated as admin can create an additional 50 groups.

   % pts setfields -nameorid admin -access SOM-- -groupquota 50
   

Privilege Required

To edit group entries or set the privacy flags on any type of entry, the issuer must own the entry or belong to the system:administrators group. To set group-creation quota on a user entry, the issuer must belong to the system:administrators group.

Related Information

pts

pts adduser

pts examine

pts listowned

pts membership

pts removeuser


[Return to Library] [Contents] [Previous Topic] [Top of Topic] [Next Topic] [Index]



© IBM Corporation 2000. All Rights Reserved