Skip to main content

Security administration utility

Use sa_admin to manage users, groups, and file permissions

Abstract

The command-line utility, sa_admin, manages users, groups, and file permissions. It is designed to run from the command line and from shell scripts in all supported operating systems.

The command-line utility, sa_admin, manages users, groups, and file permissions. It is designed to run from the command line and from shell scripts in all supported operating systems.

Example 1. List all user accounts
sa_admin -aadmin -pADMIN -f"" -sFAIRCOMS -oul


Note

These flags should be followed directly by the parameter. No space. I.E. -pMyPassword.

Command line option

Description

Default

-a

System administrator user ID

Required - No default value

-f

Server system file password

Defaults to no password

-p

System administrator password

Required - No default value

-s

Server name

"FAIRCOMS"

This section lists options, all beginning with -ou, that allow changes to user information. Additional group and file options are also described.

Note

To use any optional entry, you must use all the previous entries even if they would otherwise be optional. For example, to add a user with the -oua option and specify a group, you must also enter the userid, desc, and password.

Table 2. Account management actions

Option

Description

-oua

Add a user account

-oud

Change user account description

-oue

Change user account extended settings

-oug

Add a user to a group

-oul

List user accounts

-oum

Change user account memory limit

-oup

Change user account password

-our

Delete a user account

-ous

Show user account information

-oux

Remove a user from a group



Note

To use any optional entry, you must use all the previous entries. For example, to specify a rule when adding a group with the -oga option, you must also enter the desc and memory options for the group.

This section lists options, all beginning with -og, allow changes to group information. Additional user and file options are described elsewhere.

Table 3. Security group management actions

Option

Description

-ofg

Change file group

-oga

Add a group

-ogd

Change group description

-ogl

List groups

-ogm

Change group memory limit

-ogr

Delete a group

-ogs

Show group information

-oug

Add a user to a group

-oux

Remove a user from a group



This section lists the options, all beginning with -of, for allowing changes to file information. Additional user and group option are described elsewhere.

Table 4. File security management actions

Option

Description

-ofg

Change file group

-ofl

List files matching filename

-oflp

List file permissions mask

-ofo

Change file owner

-ofp

Change file password

-ofs

Change file permissions



Example 37. -ofs <filename> <permmask> is the same as current usage:
-ofs test.dat ++++++++++-----


Example 38. Set all owner and group permissions and resets all world permissions:

Note

-ofs <filename> <permission> ... sets the file permissions to the specified permissions

-ofs test.dat ownerall groupall


Example 39. Add the worldread permission to the current file permissions and removes the groupwrite permission from the current file permissions:

Note

-ofs <filename> +|- <permission> ... adds/removes specified permissions to/from current file permissions.

-ofs test.dat +worldread -groupwrite