The Trustee Rights Utility ( rights) for OES Linux allows you to specify trustee rights for directories and files in the NSS file system. This utility does not provide support for trustees on Linux file systems. It is also not meant to be used to set trustees for NSS volumes on OES NetWare. The trustee information is saved in the file and directory metadata in the NSS volume and works seamlessly with OES NetWare if the volume is moved to OES NetWare.
rights [OPTIONS]
rights [TOPTIONS] trustee username
rights [DOPTIONS] delete username
rights [IOPTIONS] irf
rights [EROPTIONS] effective username
rights [SOPTIONS] show
The first argument indicates the action to be taken.
|
Option |
Description |
|---|---|
-v, --version |
Displays the program version information. |
-h, --help |
Displays the help screen. |
|
Option |
Description |
|---|---|
-r, --rights=MASK |
Specifies the rights to be given to this trustee. For more information, see MASK. If the No Rights (n) option is assigned, the trustee is removed. If rights are not specified, the default assignment is Read and File Scan rights. |
-f, --file=filename
|
Specifies the name of file or directory to assign trustees to. Filename is the path for the file or directory. For example: -f /users/username/userfile.sxi --file=/designs/topsecret If a file or directory is not specified, the current directory is used. |
|
Option |
Description |
|---|---|
-r, --rights=MASK |
Specifies the rights to be passed through the filter. For more information, see MASK. If rights are not specified, the default assignment is All Rights. |
-f, --file=filename
|
Specifies the name of the directory where the filter is to be applied. Filename is the path for the directory. If a directory is not specified, the current directory is used. |
The username is the Fully Distinguished Name of a Novell eDirectory object, including the tree name. Use the username.context.treename format, such as
joe.engineer.acme_tree
If you use special characters in a username, you must escape those special characters in the command line.
For example, the $ (dollar sign) is a special character reserved to the shell and must be escaped. For the bash shell, the command could be written in one of two ways on the command line:
rights -f /media/nss/DATA/stuff -r none \$j\$o\$e.engineer.acme_tree
rights -f /media/nss/DATA/stuff -r none '$j$o$e.engineer.acme_tree'
If you are using another shell, the special characters might need a different escape technique. In this case, please refer to the shell documentation for this information.
The mask is a string of characters, with each character representing certain rights. The following table lists the rights, the letter to use for each right, and what the right is used for.
rights -f /designs/topsecret -r rwfc trustee joe.engineer.acme_tree
This command assigns Read, Write, File Scan, and Create rights to the /designs/topsecret directory for user Joe in the engineer context of the acme_tree eDirectory tree.
For information about setting file system directory and file attributes, see ATTRIB (Linux).
Use at a workstation to do the following:
View or modify user or group rights for files
View or modify user or group rights for directories and volumes
RIGHTS is a client-side application, not a server-side application. Install the Novell Client for Windows on your workstation, then use the option in the client menu to map a local drive letter to the sys:/public directory. Open a DOS Command Prompt window, cd to the mapped drive, then issue the rights command from the command line.
RIGHTS path [[ + | - ] rights] [/option...] [/? | /VER]
|
Parameter |
Description |
|---|---|
path
|
Specifies the path to the file, directory, or volume you want to modify or view rights to (you must always specify a path). |
+ | - |
Adds or deletes the specified rights. See Using RIGHTS. |
rights
|
Specifies one or more file or directory rights. See File and Directory Rights. |
/option
|
Replaces option with any available option. See RIGHTS Options. |
/? |
Displays online help. All other parameters are ignored when /? is used. |
/VER |
Displays the version number of the utility and the list of files it uses to execute. All other parameters are ignored when /VER is used. |
The following table lists the rights, the letter to use for each right, and what the right is used for.
If you use + (plus) to add rights, the rights you list are added to the existing rights.
If you use - (minus) to remove rights, the rights you list are deleted from the existing rights.
If you add and delete rights in the same command, group all added rights together and all deleted rights together.
If you list rights without using + or -, the rights you list replace the existing rights.
You must always specify a path. You can use a period (.) to represent your current directory.
You can use wildcard characters.
To set the trustee rights in the current directory for user JANICE to Read, Write, and File Scan, type
RIGHTS . R W F /NAME=JANICE
To remove user ERNESTO from SYS:USERS, type
RIGHTS SYS:USERS REM /NAME=ERNESTO
To see where user PATRICK’s inherited rights came from for SYS:USERS\HOME, type
RIGHTS SYS:USERS\HOME /NAME=PATRICK /I