Chapter 6 HPSS Configuration
278 September 2002 HPSS Installation Guide
Release 4.5, Revision 2
6.5.1.2 Server CDS Security ACLs
Theserver's CDS directory inherits ACLs from the parent but SSM adds the following ACL for the
HPSS Server Group:
group:${HPSS_GRP_NAME_SERVER}:rwdtcia
SSM creates the default ACLs for the server's CDS Security object as follows:
CDS Security object for the BFS Security object:
{user:${HPSS_PRINCIPAL_NS}:rwdtc}
{user:${HPSS_PRINCIPAL_DMG}:rwdtc}
{user:${HPSS_PRINCIPAL_MPS}:rwdtc}
{user:${HPSS_PRINCIPAL_NFSD}:rwdtc}
{user:${HPSS_PRINCIPAL_SSM}:rwdtc}
{group:subsys/dce/cds-admin:rwdtc}
{group:subsys/dce/cds-server:rwdtc}
{any_other:---t-}
CDS Security object for the DMG Security object:
{user:${HPSS_PRINCIPAL_FTPD}:r---c}
{user:${HPSS_PRINCIPAL_BFS}:r---c}
{user:${HPSS_PRINCIPAL_NDCG}:r---c}
{user:${HPSS_PRINCIPAL_NFSD}:r---c}
{user:${HPSS_PRINCIPAL_SSM}:rw--c}
{user:cell_admin:rwdtc}
{any_other:---t-}
CDS Security object for the GK Security object:
{user:${HPSS_PRINCIPAL_BFS}:rw---}
{user:${HPSS_PRINCIPAL_NS}:rw---}
{user:${HPSS_PRINCIPAL_SSM}:rw--c}
{group:subsys/dce/cds-admin:rwdtc}
{group:subsys/dce/cds-server:rwdtc}
{any_other:---t-}
CDS Security object for the LS Security object:
{user:${HPSS_PRINCIPAL_SSM}:r--tc}
{group:subsys/dce/cds-admin:rwdtc}
BFSETATTRS The Security Audit Policy
for Bitfile Server Set
Bitfile Attribute events. If
set, security audit
messages will be sent to
the logging subsystem.
NONE,
FAILURE,
ALL
FAILURE for Bitfile
Server; NONE for
other servers
Table 6-3 Basic Server Configuration Variables (Continued)
Display Field Name Description Acceptable Values Default
Value