HP 3000 Manuals HP 3000 Manuals
NEWUSER
Creates a new user.
Syntax
NEWUSER username[.acctname] [;PASS=[password]][;CAP=[capabilitylist]]
[;MAXPRI=[subqueuename]][;LOCATTR=[localattribute]]
[;HOME=[homegroupname]] [;UID=[uid]] [;USERPASS=[{REQ}][Expired]]
[ [{OPT}] ]
The USERPASS parameter is only available if the HP Security Monitor has
been installed.
Parameters
username The name of the user. The name must consist of one
to eight alphanumeric characters, beginning with an
alphabetic character.
acctname The account in which the user is to reside. System
manager (SM) capability is required to use this
parameter.
password User password, used for verifying logon access
only. The password must consist of one to eight
alphanumeric characters, beginning with an
alphabetic character. Default is that no password
is assigned.
capabilitylist The list of capabilities, separated by commas,
permitted to this user. Each capability is denoted
by a two letter mnemonic, as shown in Table 2-22
.
Table 2-22. User Capabilities
---------------------------------------------
| | |
| Capability | Mnenonic |
| | |
---------------------------------------------
| | |
| System Manager | SM |
| | |
---------------------------------------------
| | |
| Account Manager | AM |
| | |
---------------------------------------------
| | |
| Account Librarian | AL |
| | |
---------------------------------------------
| | |
| Group Librarian | GL |
| | |
---------------------------------------------
| | |
| Diagnostician | DI |
| | |
---------------------------------------------
| | |
| System Supervisor | OP |
| | |
---------------------------------------------
| | |
| Network Administrator | NA |
| | |
---------------------------------------------
| | |
| Node Manager | NM |
| | |
---------------------------------------------
| | |
| Save Files | SF |
| | |
---------------------------------------------
| | |
| Access to Nonshareable I/O | ND |
| Devices | |
| | |
---------------------------------------------
| | |
| Use Volumes | UV |
| | |
---------------------------------------------
| | |
| Create Volumes | CV |
| | |
---------------------------------------------
| | |
| Use Communication Subsystem | CS |
| | |
---------------------------------------------
| | |
| Programmatic Sessions | PS |
| | |
---------------------------------------------
| | |
| User Logging | LG |
| | |
---------------------------------------------
| | |
| Process Handling | PH |
| | |
---------------------------------------------
| | |
| Extra Data Segments | DS |
| | |
---------------------------------------------
| | |
| Multiple RINs | MR |
| | |
---------------------------------------------
| | |
| Privileged Mode | PM |
| | |
---------------------------------------------
| | |
| Interactive Access | IA |
| | |
---------------------------------------------
| | |
| Batch Access | BA |
| | |
---------------------------------------------
Capabilities assigned to the user with the CAP=
parameter cannot exceed those assigned the account.
If the account's capabilities are altered, any
capabilities removed from the account are denied to
the user. The user's capabilities are always
verified to be a subset of the account's
capabilities at logon. This prevents a user from
being granted a capability not assigned the
account. Note that CV capability, which allows
users to define mountable non-system volumes, also
gives the user UV capability, so that they may use
mountable, non-system volumes. Default is IA, BA,
ND, and SF.
subqueuename The name of the highest-priority subqueue that any
job or session in the account can request for
executing processes. The subqueuename may be
either AS, BS, CS, DS, or ES. The priority
specified for the user in NEWUSER cannot be greater
than that specified for the account.
The subqueuename defined for the user is checked
against the subqueuename defined for the user's
account at logon. The lower priority of the two is
used as the maximum priority and restricts all
processes of the job/session. Also, the priority
requested by the user at logon is checked against
the subqueuename defined for that user, and the
lower of these two values is granted. Default is
CS.
CAUTION Processes capable of executing in the AS or BS subqueues can
deadlock the system. Assigning nonpriority system and user
processes to these subqueues can prevent the execution of
critical system processes. Exercise extreme caution in
assigning processes to these subqueues.
localattribute The local attribute of the user, as defined at the
installation site. This is a double-word bit map
of arbitrary meaning that can be used to further
classify users. While it is not involved in
standard MPE/iX security provisions, it is
available to processes through the WHO intrinsic
for use in the programmer's own security
provisions. The NEWUSER command checks the local
attributes of the user with those of the account.
Default is double word 0 (null).
homegroupname The name of an existing group to be assigned as the
user's home group. If none is assigned, the user
must always specify a group when logging on.
Default is that no home group is assigned.
uid User ID to be created for the account manager in
the user database. The uid parameter must be an
unique positive (non zero) 32-bit integer. Default
is for MPE to create a value. Duplicate id numbers
are not be allowed. The uid parameter provides
file owner class security for MPE/iX.
REQ Specifies that the user must have a non-blank
password. It is available only if the HP Security
Monitor has been installed.
OPT Specifies that a user password is optional. This
is the default. It is available only if the HP
Security Monitor has been installed.
Expired The password expires immediately. The user cannot
logon without selecting a new password. It is
available only if the HP Security Monitor has been
installed.
Operation Notes
The account manager uses the NEWUSER command to define an account member.
When the user is defined, the account manager may also assign the user a
password, a user ID, capabilities, and may limit the user's use of system
resources. Parameters defining these values may also be omitted from the
command line; in this case, the defaults are assigned the user.
Use
This command may be issued from a session, a job, a program, or in BREAK.
Pressing Break has no effect on this command. Account manager (AM) or
system manager (SM) capability is required to execute this command.
Examples
To define a new user named LHSMITH, assign a password of SMITTY and a
home group of HOMEGPX, with the next available UID, enter:
NEWUSER LHSMITH;PASS=SMITTY;HOME=HOMEGPX
To define a new user named LHSMITH, assign a password of SMITTY, a home
group of HOMEGPX, and assign a UID of 120, enter:
NEWUSER LHSMITH;UID=120;PASS=SMITTY;HOME=HOMEGPX
Related Information
Commands ALTUSER, LISTUSER, NEWACCT, NEWGROUP, PURGEUSER
Manuals Performing System Management Tasks (32650-90004)