HP 3000 Manuals HP 3000 Manuals
Establishing Account Security
Access to accounts and account files is controlled by:
* Assigning an account password.
* Defining account capabilities.
* Defining file access restrictions.
Account permissions and restrictions can be specified when an account is
created, and/or when it is modified.
Defining Account Passwords
The syntax for defining an account password for a new account is:
NEWACCT accountname,managername;PASS=password
The syntax for changing the password of an existing account is:
ALTACCT accountname;PASS=password
The default for account password is no password.
Adding Account Capabilities
The syntax for adding account capabilities is:
ALTACCT accountname;CAP=attribute,attribute,...
The defaults for account capabilities are account manager (AM), account
librarian (AL), group librarian (GL), save files (SF), nonshareable
devices (ND), interactive access (IA), and batch access (BA).
Restricting Account Capabilities
To restrict account capabilities, enter:
ALTACCT accountname;CAP=attribute,attribute,...
Permitting Unlimited Account File Access
The syntax for permitting unlimited account file access to nonaccount
members is:
ALTACCT accountname;ACCESS=(R,L,A,W,X:ANY)
Where the definition for "R" is read, "L" is lock, "A" is append, "W" is
write, and "X" is execute.
With the exception of the SYS account, the default condition for account
file access allows all account members (AC) unrestricted access.
Permitting Limited Account File Access
The syntax for permitting limited account file access to nonaccount
members is:
ALTACCT accountname;ACCESS=(attribute,attribute:ANY;attribute,attribute:AC)
Lockwords and File Access
Users may secure their own files with lockwords (a password assigned to a
specific file).
Users with system manager (SM) capability can list the lockwords for any
files in an account or group. The syntax is:
LISTF filename.groupname.accountname,-3