openafs/doc/html/AdminReference/auarf211.htm

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 4//EN">
<HTML><HEAD>
<TITLE>Administration Reference</TITLE>
<!-- Begin Header Records  ========================================== -->
<!-- /tmp/idwt3672/auarf000.scr converted by idb2h R4.2 (359) ID      -->
<!-- Workbench Version (AIX) on 3 Oct 2000 at 16:18:30                -->
<META HTTP-EQUIV="updated" CONTENT="Tue, 03 Oct 2000 16:18:29">
<META HTTP-EQUIV="review" CONTENT="Wed, 03 Oct 2001 16:18:29">
<META HTTP-EQUIV="expires" CONTENT="Thu, 03 Oct 2002 16:18:29">
</HEAD><BODY>
<!-- (C) IBM Corporation 2000. All Rights Reserved    --> 
<BODY bgcolor="ffffff"> 
<!-- End Header Records  ============================================ -->
<A NAME="Top_Of_Page"></A>
<H1>Administration Reference</H1>
<HR><P ALIGN="center"> <A HREF="../index.htm"><IMG SRC="../books.gif" BORDER="0" ALT="[Return to Library]"></A> <A HREF="auarf002.htm#ToC"><IMG SRC="../toc.gif" BORDER="0" ALT="[Contents]"></A> <A HREF="auarf210.htm"><IMG SRC="../prev.gif" BORDER="0" ALT="[Previous Topic]"></A> <A HREF="#Bot_Of_Page"><IMG SRC="../bot.gif" BORDER="0" ALT="[Bottom of Topic]"></A> <A HREF="auarf212.htm"><IMG SRC="../next.gif" BORDER="0" ALT="[Next Topic]"></A> <A HREF="auarf284.htm#HDRINDEX"><IMG SRC="../index.gif" BORDER="0" ALT="[Index]"></A> <P> 
<P>
<H2><A NAME="HDRPTS_ADDUSER" HREF="auarf002.htm#ToC_225">pts adduser</A></H2>
<A NAME="IDX5235"></A>
<A NAME="IDX5236"></A>
<A NAME="IDX5237"></A>
<A NAME="IDX5238"></A>
<A NAME="IDX5239"></A>
<A NAME="IDX5240"></A>
<A NAME="IDX5241"></A>
<A NAME="IDX5242"></A>
<A NAME="IDX5243"></A>
<P><STRONG>Purpose</STRONG>
<P>Adds a user or machine to a Protection Database group
<P><STRONG>Synopsis</STRONG>
<PRE><B>pts adduser -user</B> &lt;<VAR>user&nbsp;name</VAR>><SUP>+</SUP>  <B>-group</B> &lt;<VAR>group&nbsp;name</VAR>><SUP>+</SUP> 
            [<B>-cell</B> &lt;<VAR>cell&nbsp;name</VAR>>]  [<B>-noauth</B>]  [<B>-force</B>]  [<B>-help</B>]
   
<B>pts ad -u</B> &lt;<VAR>user&nbsp;name</VAR>><SUP>+</SUP>  <B>-g</B> &lt;<VAR>group&nbsp;name</VAR>><SUP>+</SUP>  [<B>-c</B> &lt;<VAR>cell&nbsp;name</VAR>>]  [<B>-n</B>]  [<B>-f</B>]  [<B>-h</B>]
</PRE>
<P><STRONG>Description</STRONG>
<P>The <B>pts adduser</B> command adds each user or machine entry named by
the <B>-user</B> argument as a member of each group named by the
<B>-group</B> argument.
<P>To remove members of a group, use the <B>pts removeuser</B>
command. To list the groups to which a user or machine belongs, or the
members of a specified group, use the <B>pts membership</B>
command.
<P><STRONG>Cautions</STRONG>
<P>After being added as a group member, a currently authenticated user must
reauthenticate (for example, by issuing the <B>klog</B> command) to obtain
permissions granted to the group on an access control list (ACL).
<P><STRONG>Options</STRONG>
<DL>
<P><DT><B>-user
</B><DD>Specifies the name of each user or machine entry to add to each group
named by the <B>-group</B> argument. The name of a machine entry
resembles an IP address and can use the wildcard notation described on the
<B>pts createuser</B> reference page. The user or machine entry
must already exist in the Protection Database.
<P><DT><B>-group
</B><DD>Specifies the complete name (including the owner prefix if applicable) of
each group to which to add members. The group entry must already exist
in the Protection Database.
<P><DT><B>-cell
</B><DD>Names the cell in which to run the command. For more details, see
the introductory <B>pts</B> reference page.
<P><DT><B>-noauth
</B><DD>Assigns the unprivileged identity <B>anonymous</B> to the
issuer. For more details, see the introductory <B>pts</B> reference
page.
<P><DT><B>-force
</B><DD>Enables the command to continue executing as far as possible when errors
or other problems occur, rather than halting execution at the first
error.
<P><DT><B>-help
</B><DD>Prints the online help for this command. All other valid options
are ignored.
</DL>
<P><STRONG>Examples</STRONG>
<P>The following example adds user <B>smith</B> to the group
<B>system:administrators</B>.
<PRE>   % <B>pts adduser -user smith -group system:administrators</B>
   
</PRE>
<P>The following example adds users <B>jones</B>, <B>terry</B>, and
<B>pat</B> to the <B>smith:colleagues</B> group.
<PRE>   % <B>pts adduser -user jones terry pat -group smith:colleagues</B>
   
</PRE>
<P>The following example adds the machine entries in the ABC Corporation
subnet to the group <B>bin-prot</B>. Because of the IP address
range of the ABC Corporation subnet, the system administrator was able to
group the machines into three machine entries (using the wildcard notation
discussed on the <B>pts createuser</B> reference page).
<PRE>   % <B>pts adduser -user 138.255.0.0 192.12.105.0 192.12.106.0 -group bin-prot</B>
   
</PRE>
<P><STRONG>Privilege Required</STRONG>
<P>The required privilege depends on the setting of the fourth privacy flag in
the Protection Database entry for each group named by the <B>-group</B>
argument (use the <B>pts examine</B> command to display the flags):
<UL>
<P><LI>If it is the hyphen, only the group's owner and members of the
<B>system:administrators</B> group can add members.
<P><LI>If it is lowercase <TT>a</TT>, current members of the group can add new
members.
<P><LI>If it is uppercase <TT>A</TT>, anyone who can access the cell's
database server machines can add new members.
</UL>
<P><STRONG>Related Information</STRONG>
<P><A HREF="auarf210.htm#HDRPTS_INTRO">pts</A>
<P><A HREF="auarf215.htm#HDRPTS_CREATEUSER">pts createuser</A>
<P><A HREF="auarf217.htm#HDRPTS_EXAMINE">pts examine</A>
<P><A HREF="auarf222.htm#HDRPTS_MEMBERSHIP">pts membership</A>
<P><A HREF="auarf223.htm#HDRPTS_REMOVEUSER">pts removeuser</A>
<P><A HREF="auarf225.htm#HDRPTS_SETFIELDS">pts setfields</A>
<P>
<HR><P ALIGN="center"> <A HREF="../index.htm"><IMG SRC="../books.gif" BORDER="0" ALT="[Return to Library]"></A> <A HREF="auarf002.htm#ToC"><IMG SRC="../toc.gif" BORDER="0" ALT="[Contents]"></A> <A HREF="auarf210.htm"><IMG SRC="../prev.gif" BORDER="0" ALT="[Previous Topic]"></A> <A HREF="#Top_Of_Page"><IMG SRC="../top.gif" BORDER="0" ALT="[Top of Topic]"></A> <A HREF="auarf212.htm"><IMG SRC="../next.gif" BORDER="0" ALT="[Next Topic]"></A> <A HREF="auarf284.htm#HDRINDEX"><IMG SRC="../index.gif" BORDER="0" ALT="[Index]"></A> <P> 
<!-- Begin Footer Records  ========================================== -->
<P><HR><B> 
<br>&#169; <A HREF="http://www.ibm.com/">IBM Corporation 2000.</A>  All Rights Reserved 
</B> 
<!-- End Footer Records  ============================================ -->
<A NAME="Bot_Of_Page"></A>
</BODY></HTML>
initial-html-documentation-20010606 pull in all documentation from IBM 2001-06-06 20:09:07 +01:00			`<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 4//EN">`
			`<HTML><HEAD>`
			`<TITLE>Administration Reference</TITLE>`
			`<!-- Begin Header Records ========================================== -->`
			`<!-- /tmp/idwt3672/auarf000.scr converted by idb2h R4.2 (359) ID -->`
			`<!-- Workbench Version (AIX) on 3 Oct 2000 at 16:18:30 -->`
			`<META HTTP-EQUIV="updated" CONTENT="Tue, 03 Oct 2000 16:18:29">`
			`<META HTTP-EQUIV="review" CONTENT="Wed, 03 Oct 2001 16:18:29">`
			`<META HTTP-EQUIV="expires" CONTENT="Thu, 03 Oct 2002 16:18:29">`
			`</HEAD><BODY>`
			`<!-- (C) IBM Corporation 2000. All Rights Reserved -->`
			`<BODY bgcolor="ffffff">`
			`<!-- End Header Records ============================================ -->`
			`<A NAME="Top_Of_Page"></A>`
			`<H1>Administration Reference</H1>`
			<HR><P ALIGN="center"> <A HREF="../index.htm"><IMG SRC="../books.gif" BORDER="0" ALT="[Return to Library]"></A> <A HREF="auarf002.htm#ToC"><IMG SRC="../toc.gif" BORDER="0" ALT="[Contents]"></A> <A HREF="auarf210.htm"><IMG SRC="../prev.gif" BORDER="0" ALT="[Previous Topic]"></A> <A HREF="#Bot_Of_Page"><IMG SRC="../bot.gif" BORDER="0" ALT="[Bottom of Topic]"></A> <A HREF="auarf212.htm"><IMG SRC="../next.gif" BORDER="0" ALT="[Next Topic]"></A> <A HREF="auarf284.htm#HDRINDEX"><IMG SRC="../index.gif" BORDER="0" ALT="[Index]"></A> <P>
			`<P>`
			`<H2><A NAME="HDRPTS_ADDUSER" HREF="auarf002.htm#ToC_225">pts adduser</A></H2>`
			`<A NAME="IDX5235"></A>`
			`<A NAME="IDX5236"></A>`
			`<A NAME="IDX5237"></A>`
			`<A NAME="IDX5238"></A>`
			`<A NAME="IDX5239"></A>`
			`<A NAME="IDX5240"></A>`
			`<A NAME="IDX5241"></A>`
			`<A NAME="IDX5242"></A>`
			`<A NAME="IDX5243"></A>`
			`<P><STRONG>Purpose</STRONG>`
			`<P>Adds a user or machine to a Protection Database group`
			`<P><STRONG>Synopsis</STRONG>`
			`<PRE><B>pts adduser -user</B> <<VAR>user name</VAR>><SUP>+</SUP> <B>-group</B> <<VAR>group name</VAR>><SUP>+</SUP>`
			`[<B>-cell</B> <<VAR>cell name</VAR>>] [<B>-noauth</B>] [<B>-force</B>] [<B>-help</B>]`

			`<B>pts ad -u</B> <<VAR>user name</VAR>><SUP>+</SUP> <B>-g</B> <<VAR>group name</VAR>><SUP>+</SUP> [<B>-c</B> <<VAR>cell name</VAR>>] [<B>-n</B>] [<B>-f</B>] [<B>-h</B>]`
			`</PRE>`
			`<P><STRONG>Description</STRONG>`
			`<P>The <B>pts adduser</B> command adds each user or machine entry named by`
			`the <B>-user</B> argument as a member of each group named by the`
			`<B>-group</B> argument.`
			`<P>To remove members of a group, use the <B>pts removeuser</B>`
			`command. To list the groups to which a user or machine belongs, or the`
			`members of a specified group, use the <B>pts membership</B>`
			`command.`
			`<P><STRONG>Cautions</STRONG>`
			`<P>After being added as a group member, a currently authenticated user must`
			`reauthenticate (for example, by issuing the <B>klog</B> command) to obtain`
			`permissions granted to the group on an access control list (ACL).`
			`<P><STRONG>Options</STRONG>`
			`<DL>`
			`<P><DT><B>-user`
			`</B><DD>Specifies the name of each user or machine entry to add to each group`
			`named by the <B>-group</B> argument. The name of a machine entry`
			`resembles an IP address and can use the wildcard notation described on the`
			`<B>pts createuser</B> reference page. The user or machine entry`
			`must already exist in the Protection Database.`
			`<P><DT><B>-group`
			`</B><DD>Specifies the complete name (including the owner prefix if applicable) of`
			`each group to which to add members. The group entry must already exist`
			`in the Protection Database.`
			`<P><DT><B>-cell`
			`</B><DD>Names the cell in which to run the command. For more details, see`
			`the introductory <B>pts</B> reference page.`
			`<P><DT><B>-noauth`
			`</B><DD>Assigns the unprivileged identity <B>anonymous</B> to the`
			`issuer. For more details, see the introductory <B>pts</B> reference`
			`page.`
			`<P><DT><B>-force`
			`</B><DD>Enables the command to continue executing as far as possible when errors`
			`or other problems occur, rather than halting execution at the first`
			`error.`
			`<P><DT><B>-help`
			`</B><DD>Prints the online help for this command. All other valid options`
			`are ignored.`
			`</DL>`
			`<P><STRONG>Examples</STRONG>`
			`<P>The following example adds user <B>smith</B> to the group`
			`<B>system:administrators</B>.`
			`<PRE> % <B>pts adduser -user smith -group system:administrators</B>`

			`</PRE>`
			`<P>The following example adds users <B>jones</B>, <B>terry</B>, and`
			`<B>pat</B> to the <B>smith:colleagues</B> group.`
			`<PRE> % <B>pts adduser -user jones terry pat -group smith:colleagues</B>`

			`</PRE>`
			`<P>The following example adds the machine entries in the ABC Corporation`
			`subnet to the group <B>bin-prot</B>. Because of the IP address`
			`range of the ABC Corporation subnet, the system administrator was able to`
			`group the machines into three machine entries (using the wildcard notation`
			`discussed on the <B>pts createuser</B> reference page).`
			`<PRE> % <B>pts adduser -user 138.255.0.0 192.12.105.0 192.12.106.0 -group bin-prot</B>`

			`</PRE>`
			`<P><STRONG>Privilege Required</STRONG>`
			`<P>The required privilege depends on the setting of the fourth privacy flag in`
			`the Protection Database entry for each group named by the <B>-group</B>`
			`argument (use the <B>pts examine</B> command to display the flags):`
			`<UL>`
			`<P><LI>If it is the hyphen, only the group's owner and members of the`
			`<B>system:administrators</B> group can add members.`
			`<P><LI>If it is lowercase <TT>a</TT>, current members of the group can add new`
			`members.`
			`<P><LI>If it is uppercase <TT>A</TT>, anyone who can access the cell's`
			`database server machines can add new members.`
			`</UL>`
			`<P><STRONG>Related Information</STRONG>`
			`<P><A HREF="auarf210.htm#HDRPTS_INTRO">pts</A>`
			`<P><A HREF="auarf215.htm#HDRPTS_CREATEUSER">pts createuser</A>`
			`<P><A HREF="auarf217.htm#HDRPTS_EXAMINE">pts examine</A>`
			`<P><A HREF="auarf222.htm#HDRPTS_MEMBERSHIP">pts membership</A>`
			`<P><A HREF="auarf223.htm#HDRPTS_REMOVEUSER">pts removeuser</A>`
			`<P><A HREF="auarf225.htm#HDRPTS_SETFIELDS">pts setfields</A>`
			`<P>`
			<HR><P ALIGN="center"> <A HREF="../index.htm"><IMG SRC="../books.gif" BORDER="0" ALT="[Return to Library]"></A> <A HREF="auarf002.htm#ToC"><IMG SRC="../toc.gif" BORDER="0" ALT="[Contents]"></A> <A HREF="auarf210.htm"><IMG SRC="../prev.gif" BORDER="0" ALT="[Previous Topic]"></A> <A HREF="#Top_Of_Page"><IMG SRC="../top.gif" BORDER="0" ALT="[Top of Topic]"></A> <A HREF="auarf212.htm"><IMG SRC="../next.gif" BORDER="0" ALT="[Next Topic]"></A> <A HREF="auarf284.htm#HDRINDEX"><IMG SRC="../index.gif" BORDER="0" ALT="[Index]"></A> <P>
			`<!-- Begin Footer Records ========================================== -->`
			`<P><HR><B>`
			`<br>© <A HREF="http://www.ibm.com/">IBM Corporation 2000.</A> All Rights Reserved`
			`</B>`
			`<!-- End Footer Records ============================================ -->`
			`<A NAME="Bot_Of_Page"></A>`
			`</BODY></HTML>`