HP-UX Reference (11i v2 07/12) - 1M System Administration Commands N-Z (vol 4)
s
swacl(1M) swacl(1M)
NOTE: You can also set up remote access by using
swacl directly on the remote machines to grant root
or non-root access to users from the controller system.
Options
If the
-D, -F,or-M
option is not specified, swacl prints the requested ACL(s) to the standard output.
The
swacl command supports the following options:
-D acl_entry Deletes an existing entry from the ACL associated with the specified object(s). For
this option, the permission field of the ACL entry is not required. You can specify
multiple -D options. See the ACL Entries heading for more information.
-f software_file
Read the list of software_selections from software_file instead of (or in addition to) the
command line.
-F acl_file Assigns the ACL contained in acl_file to the object. All existing entries are removed
and replaced by the entries in the file. Only the ACL’s entries are replaced; none of
the information contained in the comment portion (lines with the prefix
#) of an ACL
listing is modified with this option. The acl_file is usually the edited output of a
swacl list operation.
If the replacement ACL contains no syntax errors and the user has control permis-
sion on the ACL (or is the local superuser), the replacement succeeds.
-l level Defines which level of SD ACLs to view/modify.
The supported levels of depot, host, root, and product objects that can be protected
are:
depot View/modify the ACL protecting the software depot(s) identified by the
target_selections.
host View/modify the ACL protecting the host system(s) identified by the
target_selections.
root View/modify the ACL protecting the root filesystem(s) identified by the
target_selections.
product View/modify the ACL protecting the software product identified by the
software_selection. Applies only to products in depots, not installed pro-
ducts in roots.
The supported levels of templates are:
global_soc_template
View/modify the template ACL used to initialize the ACL(s) of future software
depot(s) or root filesystem(s) added to the host(s) identified by the
target_selections. Additionally,
swacl can create templates that you can re-use
to create new ACLs.
global_product_template
View/modify the template ACL used to initialize the product_template
ACL(s) of future software depot(s) added to the host(s) identified by the
target_selections.
product_template
View/modify the template ACL used to initialize the ACL(s) of future product(s)
added to the software depot(s) identified by the target_selections.
-M acl_entry Adds a new ACL entry or changes the permissions of an existing entry. You can
specify multiple -M options. See the ACL Entries heading for more information.
-t target_file Read the list of target_selections from file instead of (or in addition to) the command
line.
-x option=value
Set the session option to value and override the default value (or a value in an alter-
nate option_file specified with the -X option). You can specify multiple -x options.
-X option_file Read the session options and behaviors from option_file.
410 Hewlett-Packard Company − 2 − HP-UX 11i Version 2: December 2007 Update