Errors, Resourcename \ Sbackup file u Mountpoint u | Siemens V4.0

Tools for special tasks

System administrator tools

i

!

Errors:

Saving / restoring of an ACL database with SIDs makes sense only within the domain in which they have been created. After a new installation or after a change of the user/group configuration, the internal representation of the same name has a different SID.

Saving / restoring beyond domains and beyond installations is possible by using option -n.

Restoring an ACL database saved with SIDs of another domain or for users which have been deleted and created again in the meantime can destroy access permis- sions.

Error messages are written to the screen if errors occur; additional error messages may be written to the backup files to enable an internal investigation to take place.

7.3.3 Editing saved resources and access permissions (accadm)

The accadm tool is used to edit resources and their access permissions. The following options are available.

Syntax:
y s:Pu s:	<resource_name> ::\		:X
:k s<backup file>u
:[ s <mountpoint>u		<mountpoint>
:[	<mountpoint> :[	<mountpoint>	u

-dDeletes (’d’elete) the physical entry in the ACL database for the resource <resource_name>

-rRemoves (’r’emove) access permissions for resources that are no longer available from the ACL database by invoking acladm -P

-G /var/opt/lanman/etc/accget (acc’g’et) is invoked

-EEnumerates (’e’numerate) the content of /var/opt/lanman/etc/accadm.dat (standard function, if accadm is invoked without options)

-SShares are created with the content of <backup file> e.g. /tmp/accadm.dat.old. If no <backup file> is specified, SHARES are created with the content of

/var/opt/lanman/etc/accadm.dat.

Product Manual

U7613-J-Z815-6-76

Image 154

$Siemens V4.0 Editing saved resources and access permissions accadm, Errors, Resourcename \ Sbackup file u Mountpoint u$

Contents

Advanced Server Unix Comments… Suggestions… Corrections… Copyright and Trademarks Preface Target group Target Group Summary of contents Changes since the last version Changes since the last version of the manualNotational conventions Convention Introduction to Advanced Server for Unix Client-server architecture Shared resources Shared resources Names in the networkName Meaning System name Computername server name Sharename UsernameNetwork name Mapping of file attributes through Advanced Server for Unix Domain name Permissions Owner Group Filename OS/2 Share table list of shared resources Shared directory Shared printer resource Printer spoolers Printer server Interprocess communication resource, IPC$Shared client printer Sharing a printer LM named pipes Using the Unix operating system from the PC Mailslots Service Comments ServicesServices Alerter Timesource ReplicatorNetlogon Server role Task Windows Internet Naming Service Snmp serviceNetrun service Browser Connection to a resource Connection managementSessions Connection management Administration Administration of Advanced Server for UnixSecurity concept Remote administration under Windows Remote administrationRemote administration under MS-DOS Programming interface API Client software Remote Procedure Call RPCCompatibility Compatibility Role of the server Server hardware LAN Manager/X Important changes to Version LAN Manager/X Support for Unix quotas configurable Interoperability with Windows NT 4.0 and Windows 95/98 Advanced Server for Unix Important changes to Advanced Server for Unix V4.0A Compatibility Process model Communication between the processes Process model Overview of the processesProcess Task Lmx.browser Lmx.ctrl Lmx.dmn Lmx.alerter Process lmx.ctrl Lmx.alerter process Process lmx.srvProcess lmx.dmn Lmx.browser process Process lmx.extd Lmx.netrun processLmx.nvalert process Network communication Network communication Local communication for Unix systems Local communication for Unix systems Installing Advanced Server for Unix Advanced Server for Unix delivery package Hardware requirements Installing Advanced Server for UnixHardware and software requirements Main memory Hard disk storage File system Min. number in Mbytes Comment Software version Software requirementsSystem Product name Meaning Installation procedure Installation procedureDependencies Deinstalling previous versions Deinstalling previous versions Deinstalling LAN Manager/X V2.0 Special features of NetBIOS configuration Deinstalling Advanced Server for UnixTo ignore old name mappings To automatically convert old name mappings Automatic installation with TransView SAXAutomatic installation with TransView SAX To manually convert old name mappings Installing from CD-ROM with cdinst Readme Product Manual Product Manual Installing NetBIOS Installing the prerequisited packagesInstalling the SIreadmeM package Installing the prerequisited packages Installing the prerequisited packages Example entries in names.cfg Or as an alternative Preparing the installation Installing server software asxserver packageInstalling server software asxserver package Installation steps Stop the server Output language Interactive or non-interactive installationInterface name of the spooler used by the server Server name Server role Stances Name of the administratorName of the primary domain controller Administrator’s password Domain language Windows NT-style Printing Start the server Enter the interface name of the spooler Upgrade of the accounts database lmxupgrade Call /var/opt/lanman/bin/lmxupgrade -YUGA Enter the password for the administrator twice Enter the domain language of the primary domain controller Var/opt/lanman/bin/lmxupgrade -YA Interactive or non-interactive installation Enter y yes or n no Interactive installation Checking the accounts database Enter the name of the primary domain controller New installation of a primary domain controller Enter the server name Confirm choices New installation of a backup domain controller Is displayed Enter the server role ‘backup’ Contacting the primary domain controller Advanced Server for Unix environment variables After the installationAutomatic Start and Stop Environment variable Meaning Upgrade of lanman.ini parameters Msclients Installing optional packagesInstalling optional packages Asxtools and asxtoolsD Installing the msclients package Asxdocs Asxsnmp Installing the asxtools and asxtoolsD packages Installing the asxman package Installing the asxdocs package Installing with the default configuration Installation is started implicitly with pkgadd Stopserver Rlang Rpassword Deinstalling optional packages Deinstalling Advanced Server for UnixDeinstalling the server Enter pkgrm asxserver Deinstalling NetBIOS Configuring Advanced Server for Unix Configuring NetBIOS Configuring NetBIOS Introduction to NetBIOSNetBIOS Names Broadcast name resolution Windows Internet Name Service Wins Names.cfg file Configuring Network Interfaces Interfaces.cfg file Example of an automatically created interfaces.cfg file Active= Ipaddr= , brdcastaddr=, netmask= Usedbywins=Brdcastlist= To view the current NetBIOS configuration To add or remove network interfaces Example output of getconfig Commands used for configuring network interfacesSyntax getconfig Syntax Configuring NetBIOS Configuring NetBIOS Name Resolution Wins.cfg file To view the current Wins client configuration Example of /var/opt/nbrfc/conf/wins.cfg LeTfkwO LgwyO me s,X8Xpl? uu At the command prompt type Commands used for administering name resolution Options Example output of a nbtstat -ncommand Example Parameters Configuring NetBIOS Tunable Parameters Guidelines for configuring name resolution Nbmaxsess default 256, min 32, max Nbrfcstatbcast old 1 new Configuring Advanced Server for Unix Configuring NetBIOSTo change the behavior of the NetBIOS kernel components Nbrfcwinsreg old 0 new Configuring NetBIOS Startup Parameters Guidelines for NFS file systems Connecting Advanced Server for Unix to LoggingGuidelines for NFS file systems Parameter Comments Connecting Advanced Server for Unix to Logging #LOGFILE Restricting the user’s disk space Restricting the user’s disk spaceFunctionality Example of configuring Unix quotas Configuring the disk space restrictionMapping Advanced Server for Unix users to Unix users Share the directory Configuring printers on the Unix system Configuring printers on the Unix systemConfiguring AT&T spooler Keyword Spool system Configuring Spool Setting up the supervisor Setting up the spool serverAdding the printer to the supervisor Setting up the printer group Checking the printer Large Spool V4.x configurations Setting the priority for print jobs from SpoolOptimizing performance with Spool Configuration for shared client printer Configuration for shared client printerSetting up the shared client printer Shared client printer via TSR program Addclipr Purpose Delclipr Examples Prsrv option guidelines Start Advanced Server for Unix with NetBIOS Starting NetBIOSActivating Advanced Server for Unix Sharing resources Terminating Advanced Server for Unix Start command Stop command Service Terminating NetBIOSStopping and starting individual services Etc/init.d/mssrv stop Setting up a Unix development environment Adapting the configurationStatus display of the Advanced Server for Unix processes Call options for compilers and linkers Call Meaning Administration guidelines Changing server attributes Changing server attributes Administration guidelines Sharing a CD-ROM drive Sharing a CD-ROM drive Processing the printer queue System data backupAdministration guidelinesProcessing the printer queue Spool 4.x or Xprint Stopping and restarting print jobs Processing the printer queueChanging parameters for a printer queue Status messages from Spool via Popup Displaying the order of print jobs Administering using the net admin commandAdministering using the net admin command Changing the order of print jobs Tools for special tasks PC tools PC tools Retrieving information on clients lmgetinf.exeSyntax Output parameters \WINDOWS Tools for NetBIOS Tools for NetBIOS1 /var/opt/nbrfc/bin/findbrow SERVER1 Unique 3 /var/opt/nbrfc/bin/names2lm 2 /var/opt/nbrfc/bin/mvnamesSample names.cfg file System administrator tools System administrator toolsAccess permissions in Advanced Server for Unix Options and Parameters Saving access permissions for resources accget YP sg Errors Editing saved resources and access permissions accadmResourcename \ Sbackup file u Mountpoint u User2/user2.dat Moving directories with existing access permissions Saving the user configuration userget Adding and removing server names addserver/delserver Compression of the ACL Database Checking the password expiry with the asxpwexp utilityCompression of the ACL Database Syntax of the asxpwexp.usr file Cp /var/opt/lanman/datafiles/acl* /save/datafiles First option Observe support Observe support Constraints on high availability Procedure when the failed system is operational again Procedure when a system failsExample of how this works Installing Network and Administrative Client Software Network Clients Creating Installation Diskettes Creating Installation DiskettesMicrosoft Network Client Version 3.0 for MS-DOS IO ttLy Using Windows NT Network Client Administrator Installing Network Client Administrator Creating Network Installation Startup Disks Creating Installation Disk Sets Administrative ClientsAdministrative Clients Installing Windows NT Administrative Tools Installing AS/U Administrator AS/X Administration Tool Select Map Network Drive from the Tools menu Installing Windows NT Server Tools on Windows 95/98Double-click on Add/Remove Programs Trust Relationships Additional Password PromptsLogging on for Windows NT Server Tools Using User Manager for Domains Using Event ViewerUsing Server Manager Click on Event Viewer Editing Security Properties for Resources Removing Windows NT Server Tools From Windows 95/98 Select the Install/Uninstall tab Considerations for Down-Level Windows Users Administrative Clients Getting Online Help Getting Online Help Administering Advanced Server at the Command Prompt Advanced Server Commands Advanced Server Commands Advanced Server Command Description Advanced Server Commands Advanced Server Commands Net Command Net CommandAdministering Local and Remote Servers Administering a Local Advanced Server Administering a Remote Advanced Server Using Passwords With Commands Paging Through Screens Using Command Confirmation Using Abbreviations Using Special Characters With Commands Typing Path Names With Unix System Net Commands Understanding Command Syntax Typing Path Names at Client Computers Command Descriptions Getting Help on Net CommandsSyntax only for Net commands Computers Net Command Net Command Implementing Wins Name Resolution Services Name Resolution Services NetBIOS over TCP/IP NetBT Name Resolution Node Broadcast Node Node Point-to-Point Node Node Multi-Node Node Hybrid Node Wins and Broadcast Name Resolution Other Combinations Wins in a Routed Environment Example of an Internetwork with Wins Servers Example of Clients and Servers Using Wins Client a Non-WINS Client B Wins Name Registration Name Renewal Name Resolution Name Release Name Resolution Services Corp01 Router Wins Server Wins Proxy Wins and Dial-Up TCP/IP Networking Clients Planning for Wins Server Implementation Planning issueImplementing Wins Planning for Wins Client Network Traffic Wins Client Traffic on Routed Networks Roving User Daily Startup of Wins ClientsEstimating Wins Client Traffic North America Planning for Wins Server Performance Planning for Wins Server Fault TolerancePlanning for Replication Convergence Time Setting Up a Wins Server Planning Replication Partners and Proxies Installing Wins Manager Nbrfcpreload Using the wins command Using the wins commandTo install Wins Manager Using the winsadm Command Using the winsadm Command Using Wins Manager Using Wins ManagerConfiguring Wins Servers and Wins Client Behavior Viewing Wins Server Status Configuration option Description Using Wins Manager Configuring Replication Partners Replication partner type Description Managing Static NetBIOS-to-IP Address Mappings Type option Description Advanced Configuration Parameters for Wins Importing Static Mappings in Advanced Server Wins Managing the Wins Server Database Symbol DescriptionViewing the Wins Database Backing Up the Database To backup the Wins databaseFile Description Scavenging the Database State before scavenging State after scavenging Verifying Wins Service Status Troubleshooting Wins ServersTroubleshooting Wins Servers Compacting the Wins Database To ensure that the Wins service is running To determine why a Wins backup fails Troubleshooting the Wins Server Database Troubleshooting Advanced Server Tools Advanced Server Troubleshooting ToolsTools for Assessing the Status of the Server Event Viewer Cumulative Statistics Server StatisticsCurrent Statistics Statistic Description Session Information Closing Sessions Print Subsystem Event Logging Open ResourcesRemote Monitoring of Server Unix System and Advanced Server Features Alerter ServiceTools Providing Automatic Status on the Server Lmshell Tools for Debugging Server ProblemsLmstat Regconfig Regcheck Samcheck SrvconfigAcladm Asxcheck Troubleshooting ProceduresTroubleshooting Procedures Asxinfo Isolating the Problem Checking the Network Verify the Status of the Physical Network Verify the NetBIOS Protocol StatusVerify the Transport Protocol Status Isolating Problems on the Advanced Server Verify Unix System Functionality Are All of the Server Services Running? Is the Server Running? Are There Messages in the Error Logs? Are All of the Server Resources Properly Shared? Can the Server be Contacted From the Console? Has the Advanced Server Registry Been Corrupted? Is the Server Supporting a Maximum Number of Users?Can the Server be Contacted From a Client? Troubleshooting a Shared Resource Differences Between System Access PermissionsDifferent System Access Permissions Unix System Access Permissions Turning Off Unix System Permission Checking Unix System Group Permissions and Advanced ServerUnix System Permissions on Directories Unix System File and Directory Permissions Understanding Unix System Access Permissions Permission Description Changing Unix System Access Permissions Solving Browsing ProblemsSolving Browsing Problems Problem Solving Printing Problems Solving Printing ProblemsResolution Printer name is invalid Print jobs in the queue are not printing Solving Problems With Unknown File Systems Solving Problems With Unknown File Systems File names with umlauts are not visible after an upgrade Troubleshooting Advanced Server for Unix directories and files Path /etc Comment Path /usr/bin Comment Path /opt CommentPath /usr/include Comment Path /usr/lib Comment Path /usr/share Comment Path Comment Var/opt/lanman/addon Path /var/opt/lanman CommentPath Comment Var/opt/lanman/bin Link to /var/opt/lanman/bin/asx Path Comment Var/opt/lanman/bin Path Comment Directory with Advanced Server for Unix data Repladm Administration command for the replicator service Path Comment Var/opt/lanman/init.d Path Comment Var/opt/lanman/lib Path Comment Var/opt/lanman/service Directory with services Path Comment Var/opt/lanman/logs Path /var/opt/nbrfc Comment Path /var/opt/nbrfc/bin Comment Path Comment Var/opt/nbrfc/conf Advanced Server Registry Advanced Server Registry Structure Advanced Server Registry StructureValue Entries in the Registry Keys Root key name Description Data type Description Connecting to a Remote Registry Using Registry EditorUsing Registry Editor Viewing the Registry Registry Editor Commands Using AS/U Administrator Using AS/U AdministratorProcedure Keyboard action Policy Advanced Server Registry Key Using AS/U Administrator Registry Keys and Values Registry Keys and Values SYSTEM\CurrentControlSet\Services\Netlogon\Parameters \Pulse Alert Parameters Entries AlertAdminOnLicenseOverflow Regdword 0 orAdvanced Server Key Descriptions Advanced Server Key Descriptions EnableSoftCompat Regdword 0, 1, or File Service Parameters EntriesConnectTimeout Regdword 0 infinity AclCacheSize Regdword 0 ForceFileAcl Regdword 0 or EnableSoftFileExtensions Regmultisz ListForceDirectoryAcl Regdword 0 or ForceFileFlush Regdword 0 or MaxZeroFillInKB Regdword 0 infinity MaxEASize Regdword 1 infinityMaxFileSizeInKB Regdword 100 infinity MemoryMapFiles Regdword 0 or NameSpaceMapping Regdword 0, 1, 2, or OplockTimeout Regdword 1 infinityNfsCheck Regdword 0 or SyncAclFileOnWrite Regdword 0 or ReportNTFS RegdwordRootOwnsFilesCreatedOnNFS TruncatedExtensions Regdword 0 or UnixDirectoryPerms Regdword 0 UnixCloseCount Regdword 1UnixDirectoryCheck Regdword 0, 1, or UnixFilePerms Regdword 0 UseEAs Regdword 0 or UseNfsLocks Regdword 0 or UseUnixLocks Regdword 0 VolumeLabel Regdword 0 orWriteBehind Regdword 0 or NetAdminGroupName Regsz Character string Net Administration Parameters EntriesNetAdminUserName Regsz Character string CallXpstatDev Regdword 0 or Parameters EntriesBigEndianLuidCompatibilityMode Regdword 0 or CheckPrintQueueInMinutes Regdword 1 infinity Locale DisableUpLevelPrinting Regdword 0 orDeletedPrintJobTimeOnQ Regdword 0 infinity MaxDirectoryBufferSize Regdword 1 infinity MaxMailslotReadTime Regdword 1 infinity MaxServiceWaitTime Regdword 5 seconds infinityMaxIpcTryCount Regdword 1 infinity MaxMessageSize Regdword 1024 SizeGcBufferPoolInKB Regdword 1 infinity Time Default Advanced Server 4.0 for Unix Systems NativeOSSendByeMessage Regdword 0 or SpoolinAsUnixUser Regdword 0 or LockNapInMSec Regdword 1 infinity Process Parameters EntriesKeepSpareServer Regdword 0 or MaxLockTimeInSeconds Regdword 5 infinity NumCIStructs Regdword 0 infinity MinSmbWorkerTasks Regdword 0MinVCPerProc Regdword 0 infinity NumCLIENTSESSION Regdword 5 infinity SpareServerTime Regdword 0 infinity NumSERVERSESSION Regdword 5 infinityNumUStructs Regdword 1 infinity StopOnCore Regdword 0 or VCDistribution Regmultisz List BrowserMaxCalls Regdword 5 infinity RPC Parameters EntriesEventlogMaxCalls Regdword 5 infinity SamrMaxCalls Regdword 5 infinity LsarpcMaxCalls Regdword 5 infinityNetlogonMaxCalls Regdword 5 infinity SpoolssMaxCalls Regdword 5 infinity User Service Parameters Entries Share Parameters Entries NewUserShell Regsz Character string GroupUpdateTime Regdword 0 infinityForceUniqueUnixUserAccount Regdword 0 or SyncUnixHomeDirectory Regdword 0 or Alerter Service Parameters Browser Service Parameters WinsServer EventLog Service EntriesFile Regexpandsz Path and file name Lanman Server Parameters AutoDisconnect EnableSecuritySignature Regdword 0 orErrorAlert Regdword 0 infinity Hidden Regdword 0 or RequireSecuritySignature Regdword 0 or MaxMpxCt Regdword 1NullSessionShares Regmultisz List of shares SrvAnnounce Regdword 1 infinity QueryDelay Regdword 1 infinity Net Logon Service ParametersNet Logon Service Parameters Lanman Server Shares RelogonDelay Regdword 1 infinity RefusePasswordChange Regdword 0 orScripts Regexpandsz Netrun Service Parameters MaxRuns Regdword 1 to Replicator Service Entries Pulse Regdword 1 to Interval Regdword 1 toMaxFilesInDirectory Regdword 0 to infinity Random Regdword 1 to UPS Service Parameters Entries PowerFailAddress Regsz Wins Service ParametersPowerMessageInterval Regdword 0 infinity DoStaticDataInit Regdword MemberPrec Regdword 0 or Lanman.ini File Syntax Parameters Values any domain name of 1-15 characters Country Code Server looks for these dynamic libraries on startup Server’s Unix system name Nethelpfile Location of the help file used by the net help OS/2 folder shows either no files or one file See the chapter Configuring NetBIOS Default /var/opt/lanman/addon/fsaddon Lanman.ini Parameter Mapping to Registry Keys Lanman.ini Parameter Mapping to Registry Keys Domain None lanman.ini file Lanman.ini Parameter Mapping to Registry Keys Lanman.ini File Lanman.ini File Lanman.ini File Lanman.ini File Lanman.ini File Lanman.ini Parameter Mapping to Registry Keys Maxspoolers None obsolete Psaddonpath None lanman.ini file Maxruns NetRun\Parameters MaxRuns Runpath RunPath Advanced Server Administration shellAdministrator Alerter Browser Backup domain controllerGlossary Auditing Client Interprocess communication IPC$ Glossary GroupHome directory LM named pipe Messenger NetBIOSGlossary Member server Message Popup Netrun PasswordGlossary Netlogon security Primary domain controller Session Glossary ServerServer system Share Share table SubcommandsGlossary Sharename Shared directory Trust relationship Glossary TimesourceTimesource server User account Glossary Wins Service Workstation Abbreviations Abbreviations TSR Advanced Server for Unix LAN Manager/X Related publications MS Network Client Related publications MS Network Client Related publications Other Siemens publications Ordering manuals Related publications Xprint Index Index Dosutil Index Index Observe Index Unix Index Comments Suggestions Corrections Fax ++ 49 52 51 8-1 52 Courses Consulting Self-tuition media Fax ++49