dtprivilege(1M) dtprivilege(1M)
NAME
dtprivilege - add an entry to the UnixWare Desktop privilege
table
SYNOPSIS
dtprivilege -a [entry]
dtprivilege -d entry . . .
DESCRIPTION
The dtprivilege command adds or deletes an entry to the
UnixWare Desktop privilege table.
-a add entry or entries to the privilege table
-d EntryName
delete entry from the privilege table
The Trusted Facilities Management facility (TFM) maintains a
database of logins and associated privileges. This allows
UnixWare Desktop users permission to execute commands that
require special privileges. The privilege table is a list of
privileged commands to be registered with TFM when a user is
granted permission via the User Setup window.
PrivTable File
PrivTable is a list of permissions that can be granted users
through the desktop User Setup client. Each entry includes a
list of commands a user is able to execute, if granted
permissions via User Setup.
A privilege table entry has the format:
[CatalogFile:Index:]CheckboxString<TAB>EntryList<TAB>HelpFile
CatalogFile:Index:
translate CheckboxString. CatalogFile is the file of
locale-specific translations. index is the line number
of the translation.
CheckboxString
label to use for the checkbox in User_Setup Account
Permissions window. If the checkbox is checked,
EntryList will be registered with TFM
Copyright 1994 Novell, Inc. Page 1
dtprivilege(1M) dtprivilege(1M)
EntryList
comma separated list of entries. This takes the form
entryname1:fullpath:priv1:priv2: . . . ,entryname2 . . .
HelpFile
help file to use with this privilege checkbox. This may
be a full path name or a locale-specific file in
/usr/X/lib/locale/locale/help/LoginMgr
Files
/etc/security/tfm/users/user
/usr/X/desktop/LoginMgr/PrivTable
/usr/X/lib/locale/locale/help/LoginMgr
USAGE
dtprivilege resides in /usr/X/adm. Since the PATH environment
variable does not normally include that directory, either
specify the full pathname or add /usr/X/adm to the PATH
variable.
Examples
Ordinarily, users can only use date to see the time and date.
This example creates an ``Update System Clock'' checkbox that
adds the command date to the list of commands the user can
invoke with privilege so the user can change the date.
Update System Clock<TAB>date:/usr/bin/date:sysops:macwrite:dacwrite
REFERENCES
adminuser(1M), dtadduser(1M), gettxt(1), make-owner(1M),
PrivTable(4), tfadmin(1M)
Copyright 1994 Novell, Inc. Page 2