|
|
MPE/iX Commands Reference Manual: HP 3000 MPE/iX Computer Systems > Chapter 2 Command Definitions A-BALLOW |
|
Grants a user access to a specific operator command.
The operator uses the ALLOW command to distribute specific operator commands to system users. ALLOW specifies which users may execute operator commands, and which commands they may execute. You may specify an indirect file with the ALLOW command, or you may execute ALLOW in subsystem mode. Each of these is explained below. Using an indirect file to allow commands To allow commands via an indirect file, you create a file that contains records identifying the users and accounts to whom you are allowing operator commands, followed by the list of commands allowed. Using an indirect file with the ALLOW command is particularly convenient for system administrators since, once you make the file, you can reuse it to disallow the set of commands (via the DISALLOW command) or to allow the same set of commands again. Here is an example of an indirect file:
Once you create an indirect file, you then issue the ALLOW command, using the ;SHOW parameter to display each command line as it is executed from the file. For example:
You may backreference the file with a file equation as follows:
If the file has a lockword, enter it in the command line after the filename. For example, "ALLOWTMP/password". Using ALLOW in subsystem mode To use the ALLOW command in subsystem mode, following these steps:
You cannot use the FILE= parameter in subsystem mode. The ALLOW subsystem will terminate if it encounters an error. You may allow commands only to users who are currently logged on unless you specify the @.@ option, which allows commands to all users. (Since this option has obvious disadvantages, you can remedy the situation by then issuing a DISALLOW command to disallow command use to selected users.) Additional capabilities granted to a user are valid only for the duration of their current session. Once the user logs off, any special capabilities previously assigned are no longer applicable. To determine which operator commands have been allowed globally (that is, using the @.@ construct), or to a specific user, use the SHOWALLOW command.
The following is a list of commands that may be allowed.
You may issue this command from a session, job, program, or in BREAK. Pressing Break will terminate subsystem mode and produce an error message but has no effect on commands already entered in subsystem mode. This command is executable only from the console unless distributed to users with the ALLOW command. To give the user USER.TECH the ability to execute the REPLY and ABORTIO commands, you would enter the following at the system console:
In subsystem mode, to give the user MGR.MANUALS the ability to execute the BREAKJOB command, you would enter the following at the system console:
|
|