The sec/group/subsys Directory
The following tables describe the namespace entries for /.:/sec/group/subsys, the Security sec/group/subsys directory.
| Name | /.:/sec/group/subsys/dce |
| Well Known | Yes |
| Description | This directory contains the groups used by DCE. |
| Default ACLs | |
| Object ACL | {unauthenticated r-----} |
| {user creator rcidDn} | |
| {group acct-admin rcidDn} | |
| {other_obj r-----} | |
| {any_other r-----} | |
| Initial Object ACL | {unauthenticated r-t-----} |
| {user creator rctDnfmM} | |
| {group_obj r-rt-----} | |
| {group acct-admin rcitDnfmM} | |
| {other_obj r-t-----} | |
| {any_other r-t-----} | |
| Initial Container ACL | {unauthenticated r-----} |
| {user creator rcidDn} | |
| {group acct-admin rcidDn} | |
| {other_obj r-----} | |
| {any_other r-----} |
| Name | /.:/sec/group/subsys/dce/cds-admin |
| Well Known | No |
| Description | This is the administrative group that is on the default ACLs for administrative objects. Clearinghouses have this group on their ACLs with all rights. The first user of the cell must be added to this group immediately after creation. |
| Default ACLs | |
| Object ACL | {unauthenticated r-t-----} |
| {user creator rctDnfmM} | |
| {group_obj r-t-----} | |
| {group acct-admin rctDnfmM} | |
| {other_obj r-t-----} | |
| {any_other r-t-----} | |
| UNIX GID | Generated |
| Name | /.:/sec/group/subsys/dce/cds-server |
| Well Known | Yes |
| Description | This is the group of all CDS Servers for the local cell. As each new server is added to the cell, it must be added to this group. CDS Server authentication consists of checking for the server's membership in this group. |
| Default ACLs | |
| Object ACL | {unauthenticated r-t-----} |
| {user creator rctDnfmM} | |
| {group_obj r-t-----} | |
| {group acct-admin rctDnfmM} | |
| {group subsys/dce/cds-admin rctDnfmM} | |
| {group subsys/dce/cds-server rctDnfmM} | |
| {other_obj r-t-----} | |
| {any_other r-t-----} | |
| UNIX GID | Generated |
| Name | /.:/sec/group/subsys/dce/dfs-admin |
| Well Known | No |
| Description | This is the DFS administrator's group. Members of this group have full permissions to alter the DFS configuration within the cell. |
| Default ACLs | |
| Object ACL | {unauthenticated r-t-----} |
| {user creator rctDnfmM} | |
| {group_obj r-t-----} | |
| {group acct-admin rctDnfmM} | |
| {other_obj r-t-----} | |
| {any_other r-t-----} | |
| UNIX GID | Generated |
| Name | /.:/sec/group/subsys/dce/dfs-bak-servers |
| Well Known | Yes |
| Description | This is the Security group to which all DFS Backup Database Servers belong. A server entry in the CDS group /.:/subsys/dce/fs is checked for authorization to act as a Backup Database Server by determining whether it belongs to this Security group. |
| Object ACL | {unauthenticated r-t-----} |
| {user creator rctDnfmM} | |
| {group_obj r-t-----} | |
| {group acct-admin rctDnfmM} | |
| {other_obj r-t-----} | |
| {any_other r-t-----} | |
| UNIX GID | Generated |
| Name | /.:/sec/group/subsys/dce/dfs-fs-servers |
| Well Known | Yes |
| Description | Abbreviated forms of the DFS Server principals of all Fileset Database machines are listed in this group. The abbreviated form of a machine's DFS Server principal stored in the group is of the form hosts/hostname/dfs-server. A server entry obtained from the CDS group /.:/fs is checked for authorization to act as a Fileset Location Server by determining if it belongs to this group. |
| Default ACLs | |
| Object ACL | {unauthenticated r-t-----} |
| {user creator rctDnfmM} | |
| {group_obj r-t-----} | |
| {group acct-admin rctDnfmM} | |
| {group subsys/dce/dfs-admin rctDnfmM} | |
| {other_obj r-t-----} | |
| {any_other r-t-----} | |
| UNIX GID | Generated |
| Name | /.:/sec/group/subsys/dce/dts-admin |
| Well Known | No |
| Description | This is the DTS administrator's group. Members of this group have full permissions to administer DTS by adding servers and so forth. |
| Default ACLs | |
| Object ACL | {unauthenticated r-t-----} |
| {user creator rctDnfmM} | |
| {group_obj r-t-----} | |
| {group acct-admin rctDnfmM} | |
| {other_obj r-t-----} | |
| {any_other r-t-----} | |
| UNIX GID | Generated |
| Name | /.:/sec/group/subsys/dce/dts-servers |
| Well Known | Yes |
| Description | This is the group of DTS Servers. |
| Default ACLs | |
| Object ACL | {unauthenticated r-t-----} |
| {user creator rctDnfmM} | |
| {group_obj r-t-----} | |
| {group acct-admin rctDnfmM} | |
| {group subsys/dce/dts-admin rctDnfmM} | |
| {other_obj r-t-----} | |
| {any_other r-t-----} | |
| UNIX GID | Generated |
| Name | /.:/sec/group/subsys/dce/sec-admin |
| Well Known | No |
| Description | This is the Security administrator's group. Members of this group have full permissions to administer the Security database. |
| Object ACL | {unauthenticated r-t-----} |
| {user creator rctDnfmM} | |
| {group_obj r-t-----} | |
| {group acct-admin rctDnfmM} | |
| {other_obj r-t-----} | |
| {any_other r-t-----} | |
| UNIX GID | Generated |
| Name | /.:/sec/group/subsys/dce/audit-admin |
| Well Known | No |
| Description | This is the Audit daemon administrator's group. Members of this group have full permissions to administer the Audit daemon (auditd). |
| Default ACLs | |
| Object ACL | {unauthenticated r-t-----} |
| {user creator rctDnfmM} | |
| {group_obj r-t-----} | |
| {group acct-admin rctDnfmM} | |
| {other_obj r-t-----} | |
| {any_other r-t-----} | |
| UNIX GID | Generated |