The swacl Command

The swacl command lets you view or change ACL entries and permissions.

swacl Syntax

swacl ] -l level [-D acl_entry|-F acl_file|-M acl_entry]
       [-f software_ file][-t target_ file]
       [-x option=value]  [-X option_file]
        [software_selections] [@ target_selection]

Options and Operands

-l level: Level to edit. Level designations are the literals: host, depot, root, product, product_template, global_soc_template or global_product_template. (See “ACL Templates ” for a complete discussion.)




	NOTE: You can change an ACL with -D, -F, or -M command options. You can only specify one of these options per command because they are mutually exclusive. If you don't specify a -D, -F, or -M option, swacl prints the specified ACLs.

-D acl_entry: Deletes an existing entry from the ACL associated with the specified object. You can enter multiple -D options.
-F acl_file: Assigns the ACL information contained in acl_file to the object. All existing entries are removed and replaced by the entries in the file. You can enter only one -F option.
-M acl_entry: Adds a new ACL entry or changes the permissions of an existing entry. You can enter multiple -M options.
-f software file: Reads a list of software selections from a separate file instead of from the CLI. (See “Software Files”.)
-t target file: Reads a list of target host selections from a separate file instead of from the CLI. (See “Target Files”.)
-x option=value: Lets you change an option on the command line interface (CLI) that overrides the default value or a value in an alternate options file (-X option file). See “Changing Command Options”.
-X option file: Uses the option values in a specified option file. See “Using Command Options”.
software_selections: The software objects for the swacl operation. See “Software Selections”.
target_selections: The target of the command. See “Target Selections”.

Changing Command Options

You can change the behavior of this command by specifying additional command-line options when you invoke the command (using the -x option) or by reading predefined values from a file. The following table shows the defaults and options that apply to swacl.

Table 9-2 swacl Command Options and Default Values

admin_directory=/var/adm/sw
distribution_target_directory=
/var/spool/sw
installed_software_catalog=products
level=
log_msgid=0
rpc_binding_info=ncacn_ip_tcp:[2121] ncadg_ip_udp:[2121]

rpc_timeout=5
run_as_superuser=true
select_local=true
targets=
verbose=1

For More Information

See Appendix A “Command Options” for complete descriptions of each default.

swacl Output

A typical list output from the swacl command looks like the following:

# swacl    Installed Software Access Control List
#
# For host:  prewd:/
#
# Date:  Mon Nov 06 16:39:58 2001
#
# Object Ownership: User=root
#                   Group=sys
#                   Realm=prewd.fc.hp.com
# default_realm=prewd.fc.hp.com
object_owner:crwit
user:rml:crwit
user:root@newdist.fc.hp.com:crwit
group:swadm:crwit
any_other:-r--t

The header information (lines marked with #) gives the object's name and owner and the name of the user's realm or host name of the user's system. In this case:

The object is a root (installed software).
The creator of the object (object_owner) is root@prewd.
The object_owner has all permissions.
Local user rml and remote user root@newdist.fc.hp.com have all permissions.
Members of local group swadm have all permissions.
Anyone not matching one of the previous entries (any_other) has read and test permissions.

For more information on the format of the ACL file, see “ACL Entries ”.

The swacl Command

Technical documentation

» Table of Contents

» Glossary

» Index

swacl Syntax

Options and Operands

Changing Command Options

For More Information

swacl Output