HP-UX Reference (11i v1 00/12) - 1 User Commands N-Z (vol 2)
__________________________________________________________________________________________________________________________________________________________________________________________________
__________________________________________________________________________________________________________________________________________________________________________________________________
STANDARD Printed by: Nora Chuang [nchuang] STANDARD
/build/1111/BRICK/man1/neqn.1
________________________________________________________________
___ ___
n
nis+(1) nis+(1)
Table Authorization
As with directories, additional capabilities are provided for granting access to entries within tables. Rights
granted to a client by the access rights field in a table object apply to the table object and all of the entry
objects ‘‘contained’’ by that table. If an access right is not granted by the table object, it may be granted by
an entry within the table. This holds for all rights except create.
For example, a table may not grant read access to a client performing a nis_list(3N) operation on the table.
However, the access rights field of entries within that table may grant read access to the client. Note that
access rights in an entry are granted to the owner and group owner of the entry and not the owner or group
of the table. When the list operation is performed, all entries that the client has read access to are
returned. Those entries that do not grant read access are not returned. If none of the entries that match
the search criterion grant read access to the client making the request, no entries are returned and the
result status contains the NIS_NOTFOUND error code.
Access rights that are granted by the rights field in an entry are granted for the entire entry. However, in
the table object an additional set of access rights is maintained for each column in the table. These rights
apply to the equivalent column in the entry. The rights are used to grant access when neither the table nor
the entry itself grant access. The access rights in a column specification apply to the owner and group
owner of the entry rather than the owner and group owner of the table object.
When a read operation is performed, if read access is not granted by the table and is not granted by the
entry but is granted by the access rights in a column, that entry is returned with the correct values in all
columns that are readable and the string *NP* (No Permission) in columns where read access is not
granted.
As an example, consider a client that has performed a list operation on a table that does not grant read
access to that client. Each entry object that satisfied the search criterion specified by the client is examined
to see if it grants read access to the client. If it does, it is included in the returned result. If it does not,
then each column is checked to see if it grants read access to the client. If any columns grant read access to
the client, data in those columns is returned. Columns that do not grant read access have their contents
replaced by the string *NP*. If none of the columns grant read access, then the entry is not returned.
LIST OF COMMANDS
The following lists all commands and programming functions related to NIS+:
NIS+ User Commands
nisaddent(1) add /etc files and NIS maps into their corresponding NIS+ tables
niscat(1) display NIS+ tables and objects
nischgrp(1) change the group owner of a NIS+ object
nischmod(1) change access rights on a NIS+ object
nischown(1) change the owner of a NIS+ object
nischttl(1) change the time to live value of a NIS+ object
nisdefaults(1) display NIS+ default values
niserror(1) display NIS+ error messages
nisgrep(1) utilities for searching NIS+ tables
nisgrpadm(1) NIS+ group administration command
nisln(1) symbolically link NIS+ objects
nisls(1) list the contents of a NIS+ directory
nismatch(1) utilities for searching NIS+ tables
nismkdir(1) create NIS+ directories
nispasswd(1) change NIS+ password information
nisrm(1) remove NIS+ objects from the namespace
nisrmdir(1) remove NIS+ directories
nisshowcache(1M) NIS+ utility to print out the contents of the shared cache file
nistbladm(1) NIS+ table administration command
nistest(1) return the state of the NIS+ namespace using a conditional expression
NIS+ Administrative Commands
nis_cachemgr(1M) NIS+ utility to cache location information about NIS+ servers
nisaddcred(1M) create NIS+ credentials
nisaddent(1M) create NIS+ tables from corresponding /etc files or NIS maps
nisclient(1M) initializeNIS+ credentials for NIS+ principals
nisd(1M) NIS+ service daemon
nisd_resolv(1M) NIS+ service daemon
HP-UX Release 11i: December 2000 − 7 − Section 1−−579
___
___