DOC HOME SITE MAP MAN PAGES GNU INFO SEARCH PRINT BOOK
 
Trusted facility management

Removing commands from the TFM database

Use adminuser with the -r option to remove commands and privileges from a user.

To remove commands and privileges from a user, perform the following:

  1. Enter

    adminuser -r command_name1:priv,priv role_name

    The command_name is the name of a command defined for that role.

``Removing privileges and commands for a user'' shows how to remove a privilege from a command and remove an entire command entry for a user.
   # adminuser darrell
   darrell:
   roles:      assistant
   Commands:
               mount:/etc/mount mount
               umount:/etc/umount dacread dacwrite mount
               fsck:/etc/fsck mount
   # adminuser -r umount:dacread,fsck darrell
   # adminuser darrell
   darrell:
   roles:      assistant
   Commands:
               mount:/etc/mount mount
               umount:/etc/umount dacwrite mount
   #

Removing privileges and commands for a user

Assuming that entries exist in the TFM database for umount and fsck for darrell, the dacread privilege is removed from the umount command, while the remaining privileges are left intact, and the entire entry for fsck is removed. Note that the privileges used here are examples only; they may not be privileges you want to use with these commands.


Next topic: Removing a user from the TFM database
Previous topic: Adding a command for a user

© 2004 The SCO Group, Inc. All rights reserved.
UnixWare 7 Release 7.1.4 - 22 April 2004