How to set permissions?

Similar Messages

• How to set permissions IN Open Directory USING Open Directory groups?

  Hi all,
  Apologies if I've missed this but have been searching for two days trying to figure out how to delegate permissions within the OD to a number of different OD groups and i can't seem to find any way to do this either at the command line or with WGM.
  Examples: an OD group containing those who will manage the full directory need to have permissions on all containers, child objects, and their attributes in the directory. For this one in particular I seem to be able to nest a group in the default Admin group, but this isn't really what i'm after. I need to create OD groups with the ability only to manipulate objects of class apple-computer and similarly, apple-user (really all inetOrgPerson objects). In a nutshell: how do i set permissions on specific attributes or object classes using OD groups?
  thanks for any pointers...
  -andrew

  I think i just answered my own question: Open Directory is OpenLDAP. slapd is all i need.

• How to set permissions on devicemapper block device

  I'm setting up a new RAC on RHEL5.1 using device mapper for multipath functionality.
  How should I set the permissions for the block devices I'm going to use for ocr, voting and asm?
  /dev/mapper/ocr1
  /dev/mapper/voting1
  etc.
  Regards
  Jon-Arne Storelv

  Markus,
  You are right about udev changing drastically between RHEL 4 and RHEL 5. The paper I referred to does include some guidelines for setting permissions for RHEL 5 as well. Here are some relevant extracts from the same pdf document:-
  # From udev.permissions section
  This file was obsoleted in later versions of the 2.6 kernels such as SLES10, RHEL5 and
  Oracle Enterprise Linux 5 (OEL5), that functionality was merged into the rules files, which is explained later in this paper
  ...and later you will find this example in the document
  For RHEL5, OEL5, SLES10
  • Create a file /etc/udev/rules.d/99-raw.rules with the following content
  with the following content
  KERNEL=="raw[1-2]*", GROUP="oinstall", MODE="640"
  KERNEL=="raw[3-5]*", OWNER="oracle", GROUP="oinstall", MODE="660"
  /etc/udev/rules.d/50-udev.rules on Centos 5 gives plenty of examples of settings for all different types of devices. We really need to specify OWNER, GROUP and MODE for devices that RAC will use in a rules file.
  Thanks,
  Satish

• How can set permissions in iSQL *Plus

  Copyright (c) 1982, 2005, Oracle. All rights reserved.
  SQL*Loader-704: Internal error: ulconnect: OCIServerAttach [0]
  ORA-12546: TNS:permission denied
  I have system password. how can i set permissions in isql *plus
  thanks & regards

  Fatal NI connect error 12546, connecting to:
  (DESCRIPTION=(ADDRESS=(PROTOCOL=beq)(PROGRAM=/opt/oracle/product/10.2/db_1/bin/oracle)(ARGV0=oracleorcl)(ARGS='(DESCRIPTION=(LOCAL=YES)(ADDRESS=(PROTOCOL=beq)))')(DETACH=NO))(CONNECT_DATA=(CID=(PROGRAM=imp)(HOST=globalsteelweb.com)(USER=root))))
  VERSION INFORMATION:
       TNS for Linux: Version 10.2.0.1.0 - Production
       Oracle Bequeath NT Protocol Adapter for Linux: Version 10.2.0.1.0 - Production
       TCP/IP NT Protocol Adapter for Linux: Version 10.2.0.1.0 - Production
  Time: 30-MAY-2007 09:27:08
  Tracing not turned on.
  Tns error struct:
  ns main err code: 12546
  TNS-12546: TNS:permission denied
  ns secondary err code: 12560
  nt main err code: 516
  TNS-00516: Permission denied
  nt secondary err code: 13
  nt OS err code: 0

• How to set permissions to allow reading on more than one device

  Our base permissions restrict reading to one device for 365 days with print 1 page and copy 1 page limits. For a new book we're adding to our online library, we want to allow people to read on more than one device, with a defined expiration date (January 15, 2012) and no printing and no copying. (The "more than one device" restriction is intended to allow users to transfer the book to iTunes and read it in Bluefire Reader.)
  How do we set permissions for this new book? In particular, what Read settings for devices do we use? No selection? The options in the ACS Console are not clear to us (i.e., the choice between A Single Device and Specific Device Type) and the manual doesn't offer an example. ... I'm guessing the selections should be none -- i.e., do not specify any device setting. Yes?
  Any help would be appreciated.
  Jim Lyons

  What I understand your current side restrictions to be (best if they are in a distribution right rather than base permission btw)
  <permissions>
  <display>
       <device />
       <duration>31536000</duration>
  <display>
  <print>
    <count initial="1"/>
  </print>
  <excerpt>
      <count initial="1"/>
  </excerpt>
  </permissions>
  What I think you want
  <permissions>
  <display>
       <device />
       <duration>31536000</duration>
  </display>
  <display>
       <deviceType>mobile</deviceType>
       <until>2012-01-15T00:00:00-8:00</until>
  </display>
  <display>
       <deviceType>tethered</deviceType>
       <until>2012-01-15T00:00:00-8:00</until>
  </display>
  <print>
    <count initial="1"/>
  </print>
  <excerpt>
      <count initial="1"/>
  </excerpt>
  </permissions>
  (these are looking at the raw permissions rather than the dialog in the admin console)
  Which I would describe as allow viewing on the device which fulfilled the content for one year, and in addition allow viewing on any mobile or tethered device (Bluefire Reader iPad app, android app, Nook Color, etc...) until Jan 15, 2010 at midnight PST.  One print and one copy is allowed (and can only be used on the device that fulfilled the content).

• How to set permissions like "For all users" with Sandbox

  Hello!
  Hello!
  I am using Sandbox for Mac OS X Leopard and I've got a question to you:
  How can I set up a folder to behave like the For all users folder in the users directory?
  Greetings

  Well, sandbox sets ACL's not posix permissions. The sticky bit is a posix permission. Sand box will allow you to do something similar to the sticky bit using ACL's, but the exact duplication of the sticky bit is not possible, but something just as useful or more useful can be easily implemented.
  To set the sticky bit you will need an app called FileXaminer or the Terminal.app command line.
  to set the sticky bit simply put "1" in front of the the permissions number when you run chmod on the command line, here is an example:
  chmod 1775 /users/data/shared #assigns permissions 775 and the sticky bit#
  chmod 775 /users/data/shared #assigns permissions 775 without the sticky bit#
  note: note actual use of the chmod and chown commands will, in most cases require the sudo (super user do) command to be used with them. example:
  sudo chmod 1775 /users/data/shared #assigns temporary super user priviledge#
  The way I set my shared user's directories with ACL's is this:
  first I created folder /users/data -permissions=777 (everyone).
  I had three users so I created folders for each in /users/data:
  /users/data/user1 #this is just example-substitute real user name#
  /users/data/user2
  /users/data/user3 #etc,etc,#
  set the posix permission on each user folder 700 (owner:read,write,execute)
  set the owner and group on each one accordingly:
  chown user1:staff /users/data/user1 #substitute real user name#
  chown user2:staff /users/data/user2
  chown user3:staff /users/data/user3 #(etc,etc)#
  Now each user has their own data folder they can read and write to at will (when they are logged in to their user account).
  They can safely create and maintain their data and no one can delete it.
  Since these are shared data accounts. other users will need to read the data, this is where the ACL's come in.
  You will need to use Sandbox to place ACL's for each allowed user, on each of the user directories:
  0: user:joe inherited allow list,addfile,search,add_subdirectory,readattr,writeattr,readextattr,writeextattr,readsec urity,file_inherit,directoryinherit
  1: user:mary inherited allow list,addfile,search,add_subdirectory,readattr,writeattr,readextattr,writeextattr,readsec urity,file_inherit,directoryinherit
  2: user:sue inherited allow list,addfile,search,add_subdirectory,readattr,writeattr,readextattr,writeextattr,readsec urity,file_inherit,directoryinherit
  Basically with the above ACL's the only thing the allowed user can't do is delete files. They can copy files, they can add files, etc. This behavior is somewhat similar to what can be accomplished with the sticky bit, but much more controlled and structured. That is the beauty of using ACL's.
  Using SandBox you can taylor the permissions as you see fit for each every user. You can set permissions for an administrator to delete files as well. You can take away or add permissions for each user as you see fit. let your imagination be your guide.
  ACL's weren't meant to replace posix permissions, but rather to allow administrators to fine tune user permissions.
  Kj

• How to set permissions for folder?

  Dear all,
  How can iset permissions for a particular folder?
  I am creating new folders for new users  who access the program. 
  Is there any way yo set permissions so that no one is able to edit the name of the folder ?
  Thanks,
  Ritesh

  Hi Ritesh,
  Thanks for the post and I hope your well today.
  You can programmatically change the Read Only and Hidden Status of a file
  in labview using the DOS prompt from LabVIEW - called
  System.Execvi.
  Here are some links regarding the DOS commands you can use,
  http://www.ss64.com/nt/subinacl.html
  http://www.ss64.com/nt/cacls.html 
  So I beleive you could find a DOS command which could alter the editting properties of the name..
  Another way to prevent the user altering the file would be to change
  the user permission's in windows.. but it could affected the code and
  most IT departments would not allow this.
  Hope this helps,
  Kind Regards
  James Hillman
  Applications Engineer 2008 to 2009 National Instruments UK & Ireland
  Loughborough University UK - 2006 to 2011
  Remember Kudos those who help!

• How to set permissions to edit/save files copied from a Win 7 PC

  I'm working on a project where I have to generate a series of screengrabs on a PC and transfer them to my MacPro via the network for onward tranmission via email but some need to be edited first in Photoshop.
  If I'm just forwarding them via email with no changes there's no problem, but when I need to edit them in Photoshop I can't save unless I go to Get Info for the file concerned, unlock Sharing & Permissions (which requires my administrator password) and then change the 'everyone' drop-down setting from 'Read only' to 'Read & Write', then re-lock and close Get Info.
  The default permissions for the PC files as they arrive over the network are:
  nobody     Read & Write
  staff         Read only
  everyone  Read only
  I have dozens and possibly a hundred or more of these to do, so having to re-set Permissions every time is a major pain and waste of time.
  Is there something I can change either on the Mac or the PC (which is running Windows 7) so that I can just edit and save these files without all this hassle?
  Thanks,
  Michael

  http://www.lagentesoft.com/batchmod/ drag and drop permission modification software.  Be careful with this.  If you drag and drop a necessary system folder, you can render your Mac unbootable, except with an EXTERNAL optical drive.

• How to set permissions to a file ?

  hi,
  i have a requirement to set file permissions and also to get the current permission mode on the file. PLease let me know if there are any inbuilt functions to set permissions to a file. (eg: CHMOD in unix) .
  canRead() and canWrite() are only to get the permission. what about methods to set the permission for a file ? If there are no methods whats the possible way...
  Thanks,
  Sarat

  May be I am not sure but try this
  Runtime.getRuntime().exec("EXecute chmod command here");

• How to set permissions on certain Webparts of the Webpart Gallery?

  Hi,
  I have a couple of webparts available in the Webpart Gallery. I do not want all those who have access to use every webpart, but only a few and some esp. not ;-)
  Is it possible to set permissions on certain webparts in the webpart gallery so that certain people cannot use them when looking for available webparts?
  Thanks
  Sven

  Hello,
  Please have a look into this link:
  http://office.microsoft.com/en-us/sharepoint-server-help/manage-and-share-web-parts-and-web-part-pages-HA010024106.aspx
  Hope the information helps!
  Thanks & Regards, Chandra Shekhar

• How to set permissions for files created by Windows on OS 10.8 volume

  I am in process of upgrading from an iMac with OS 10.6 to an iMac with OS 10.8.  In my office network, I store all files on my iMac and let the Windows PCs act as workstations to read/write onto the Mac.  (It's simpler to have all files centralized in one location, and only have to be concerned about backing up one volume.)
  When I had OS 10.4 and OS 10.6 any newly created file saved by the Windows PCs onto the Mac could be opened by the Mac.
  But with OS 10.8, I can not open newly created files from Windows.  The file permissions for the newly created files from the Windows PCs are: 
       PCUser = read/write;  Everyone = no access.
  What do I need to do so that newly created files from the Windows PC (currently Windows 7) can be opened by the Mac, without having to use Get Info to reset the permissions each time?

  You could try adding this Access Control Entry (ACE) to the folders you let them save to:
  sudo chmod -R +a "accountinggroup allow delete,chown,list,search,add_file,add_subdirectory,delete_child,file_inherit,directory_inherit" /Path/to/topmost/folder
  You first need to create a group for all the sharing people you want to have access to that folder, if you don't already have one. In the example, "accountinggroup" is the group, so change that to whatever you want to use.
  The ACE allows them full access to the files in the folders. If you want to limit that, remove the option (such as delete).
  You create Groups in Users & Groups System Preference just like creating a new user. Just change the account type to Group.
  If you want a GUI to do the settings, try Sandbox.  It's got a few glitches in the Interface, but it seems to write the ACL correctly. One glitch is selecting the Group or User. I had just a list of Continuing in the popup menu. I typed in the Group name I wanted and it worked. Some errors pop up as you traverse the file hierarchy, but you can dismiss them.
  Here is an old hint, which gives a little background, and some other options: http://hints.macworld.com/article.php?story=20090219133314985
  The Server tools would allow you to set this up more easily, but if this is all you need as the server, I don't know if it is worth it.

• How to set permissions in firewire target mode?

  I have a 12" PowerBook that's running Leopard and a 15" MacBook Pro also running Leopard. The 12" machine won't boot, so I'm about to wipe the hard drive, reinstall Leopard, and try to reload from the time capsule.
  But since I don't really know for sure that Time Machine has been running, I'd like to make a backup first. I connected the machines with firewire cable and booted the 12" machine in target mode. It shows up in the Finder on the 15". But when I open the Users folder, it doesn't show anything. I'm guessing that there's a Permissions problem that I don't know how to overcome. How can I make a disk image of the current disk before I start the restore procedure?
  Chuck

  You can grab a utility named "SuperDuper!" ( http://www.shirt-pocket.com/SuperDuper/SuperDuperDescription.html ) which is able to create clones of hard drives.
  If all you want to do is have it clone your hard drive then they allow you to use it free. They charge to unlock all of it's more advanced features -- but for what you need to do (make one simple clone of your hard drive before wiping it and re-installing) it's free.
  Incidently, did you try booting from your Leopard install disk to attempt a repair? Pop in the Leopard install media & boot from it. You'll need to select your language on that first screen, but once you do you'll notice a menubar appears at the top of the screen (that most people don't notice) and there's a pull-down menu that'll let you launch Disk Utility. Since you booted from external media (and not your internal disk) it will let you run a "Repair Disk" on the internal boot drive. It may be able to repair it without your needing to reformat and re-install.

• How to set permissions on a workspace at the DTR?

  Hello,
  I have my own workspace at the DTR and I would like to prevent other people to modify it. In order to do that I open the permissions of the workspace, set 2 rules:
  1. For user RoyC allow all.
  2. For "All" deny all.
  Yet when I login to the DTR with a different user I am able to work on this workspace freely. Any idea why? Am I doing something wrong here?

  hi
  good
  go through these links
  http://help.sap.com/saphelp_nw2004s/helpdata/en/b9/b4de3f68d48f15e10000000a155106/content.htm
  http://help.sap.com/saphelp_nw04s/helpdata/en/be/0de03f41b9eb06e10000000a1550b0/content.htm
  thanks
  mrutyun

• How to set permissions to unlock user?

  Hello,
  I'd like to set up a group of users, whose only mission is to unlock users.
  I've tried doing this but haven't had any success...
  Does this only have to do with the 'Permissions' of the group (and which?), or does the group have to be administrator or approver of something?
  Thanks in advance

  I've found out what my problem was...
  The group needs to be administrator of the user group "ALL USERS" and of the organization "Xellerate Users" (every user in my scenario belongs to this org).

• How to set Permissions for Mac HD from "No Access" to "Read only"

  Hi everyone! My friend's having a problem with her MacBook Pro. She accidentally changed the value of the Macintosh HD's privilege for everyone from Read only to No access. (See attached image for reference/guide). Seconds after, her Mac crashed. She rebooted her laptop, the Apple logo shows up with the usual scrolling week. Afterwards, the scrolling wheel disappears but the Apple logo is still there and it no longer proceeds to her login/desktop screen anymore.
  We already tried Repairing Disk Permissions (by pressing Command +R on bootup) and Repair Disks, rebooted, but it's still up to nothing. Unfortunately, she doesn't have a Time Machine backup.
  Is there a way to revert the changes even though the login/desktop screen can't be accessed? Is having the value "No access" on your Macintosh HD unsafe and will make you locked out of your system?
  I am looking forward to your fast and favorable feedback. :-)
  Thanks in advance!

  Is there a way to revert the changes even though the login/desktop screen can't be accessed? Is having the value "No access" on your Macintosh HD unsafe and will make you locked out of your system?
  There is currently no way to access the disk, no access means no access.
  Others may know better but I would backup the data on the drive, erase and reinstall.