Software Distributor Administrator Guide (September 2010)
9.5.3.3 Depot ACLs
Principals identified in ACLs that are protecting depots are users who have been granted
permission to manage the depot and to create new products. The permissions associated
with a depot are:
Table 9-9 Depot Permissions
Permission to copy a new product into the depot.
i(insert)
Permission to list the contents (products) of the depot source.
r (read)
Permission to delete the depot (if it is empty), and unregister itself (not the
products in the depot).
w (write)
Permission to edit or change the ACL.
c (control)
Permission to test access to an object and list the ACL.
t (test)
A sample depot ACL that grants its creator all permissions; user george permission
to list and insert software products; members of group swadm permission to list and
insert products, change the ACL and delete the depot itself; and everyone else
permission to list the contents of the depot, would be:
object_owner:crwit
user:george:-r-i-
group:swadm:crwi-
any_other:-r-
When a depot source object is created, it is automatically protected by a default ACL
derived from its host. Products inserted in that depot will automatically be protected
by an ACL derived from the depot. This concept is discussed in the “ACL Templates
” (page 206).
9.5.3.4 Product ACLs
Product ACLs only apply to products on depots. Products on roots are protected by
the root’s ACL. There are two classes of principals that are granted access rights to
products:
Table 9-10 Product Principals
Granted various administrative permissions. This class includes groups and others,
both local and remote.
users
Target systems (agent/daemons) granted read permissions to allow product
installation.
hosts
Permissions on products are:
Table 9-11 Product Permissions
Permission to users to change and delete the product and/or product information.
w (write)
Permission granted to target_hosts to read the source-depot product. (that is, grant
permission to a remote system to install the protected product).
r (read)
9.5 ACL Entries 205