Manualshelf

Technical data

ManualsBrandsCompaq ManualsPrinterLA36
231232233234235236237238239240
Managing User Accounts
7.9 Setting Up Special Accounts
either PROXY2 or PROXY3, WALTER must specify the desired proxy account
in the access control string of the DCL command used to perform network file
operations.
Caution
Because the remote user receives the same privileges as the local user, do
not set up proxy accounts associated with local accounts that have special
privilege. Granting remote users such access powers poses a threat to the
security of your system.
2. You can specify remote users by user name or, for remote systems that do not
recognize the user name syntax, by UIC. The following example allows the
user associated with the UIC [360,54] on remote node RSTS32 proxy access to
the GENERIC account on the local node:
UAF> ADD/PROXY RSTS32::[360,54] GENERIC/DEFAULT
3. A number of your users might have accounts on a remote node and require
ready access to their local files. You can create a network proxy authorization
file record that grants access to each of them, provided the user name on your
system is the same as the user name on the remote node. The following form
of the ADD/PROXY command adds such a record:
UAF> ADD/PROXY HAL::* */DEFAULT
This command authorizes any user on the remote node HAL to access any
account with the same user name on your system.
Similarly, you might want to permit this sort of access for just one user:
UAF> ADD/PROXY HAL::BARBARA */DEFAULT
4. On systems running DECnet-Plus, the system adds network proxies to the
network proxy authorization file NET$PROXY.DAT using DECnet-Plus full
names. For example:
UAF> ADD/PROXY RUBY::DELAPORT DELAPORT/DEFAULT,SYSTEM
%UAF-I-NAFADDMSG, proxy from OMNI:.US.RUBY::DELAPORT to DELAPORT added
%UAF-I-NAFADDMSG, proxy from OMNI:.US.RUBY::DELAPORT to SYSTEM added
This example adds proxy access from RUBY::DELAPORT to the local accounts
DELAPORT (the default) and SYSTEM.
The system additionally stores node synonyms in NETPROXY.DAT for use by
DECnet for OpenVMS and for backward compatibility for layered products.
7.9.6 Removing Proxy Accounts
To remove proxy accounts, use the AUTHORIZE command REMOVE/PROXY; for
example:
UAF> REMOVE/PROXY RUBY::DELAPORT SYSTEM
This command removes proxy access from RUBY::DELAPORT to the local
SYSTEM account.
Managing User Accounts 739