Manualshelf

Supervising the Network

ManualsBrandsHP ManualsSoftwareHP-UX 11i v1 Networking Software
31323334353637383940
2-3
Setting Up and Managing NetWare Directory Services Objects
Rights Needed to Create and Manage Objects
Rights Needed to Create and Manage Objects
As User object ADMIN, you initially have all rights to all objects in the
Directory tree. However, if you allow users to manage parts of the Directory
tree, you need to give them the rights necessary to manage their section of
the tree.
Trustee Assignments
When you give an object, such as a user, rights to another object, such as a
container, you make a trustee assignment. That user then becomes a trustee
of that container. Any object with a trustee assignment to another object is a
trustee of that object.
Each object contains a list of objects that have trustee assignments to it,
called a trustee list. This list tells who can access that object. An object’s
trustee list is stored in its Access Control List (ACL) property.
Inherited Rights Filter
The Inherited Rights Filter (IRF) controls the rights that a trustee can inherit
from parent directories and container objects. By default, the IRF allows
every right to be inherited from the parent directory or container object.
The IRF cannot grant rights; it can only allow or revoke rights.
Security Equivalence
Security Equal To is a property of every User object that lists other objects.
The user is granted all rights that any object (such as User, Group, or Printer)
in that list is granted, both to objects and to files and directories.
Use the Security Equal To property to give a user temporary access to the
same information or rights another user has access to.
For more information on Security Equal To, see “Security Equal To” in
Concepts.