Aidenous
asked on
How to change IFS permissions for all files, subfolders and to inherit when adding new files
I have a user that has Folder in an IFS directory and he has permissions to that folder but he cannot open any file and or subfolder. How can I change permissions on all the files within this folder without having to change each individual one? Thanks
The chgaut worked for all files within that directory but not the subfolders and files within them. How can you accomplish this and also any future files that are added? thanks
The chgaut worked for all files within that directory but not the subfolders and files within them. How can you accomplish this and also any future files that are added? thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
the directory is /home/cadroom The user name is davidk who needs rwx rights to all objects and subfolders in the cadroom folder.
Aidenous:
Does anybody else need permissions? For example, if /home/cadroom allows DAVIDK to access its contents but excludes *PUBLIC, does anybody else need permission to anything inside of /home/cadroom?
IFS permissions are generally defined according to Unix-style rules. This can complicate how i5/OS developers see what is happening. If we get *PUBLIC and any other users set properly at the directory level for /home/cadroom, then the authorities for lower-level objects might make more sense.
Tom
Does anybody else need permissions? For example, if /home/cadroom allows DAVIDK to access its contents but excludes *PUBLIC, does anybody else need permission to anything inside of /home/cadroom?
IFS permissions are generally defined according to Unix-style rules. This can complicate how i5/OS developers see what is happening. If we get *PUBLIC and any other users set properly at the directory level for /home/cadroom, then the authorities for lower-level objects might make more sense.
Tom
ASKER
Yes, several other users have access.
Aidenous:
In general, set authorities at the /home/cadroom directory level for *PUBLIC to exclude access. One *PUBLIC is set, then you only need to be concerned about the specific individuals who need deeper access.
Use CHGAUT to grant *PUBLIC *EXCLUDE for /home/cadroom. Use CHGAUT to grant *RWX (or whatever is needed) to the various individuals.
You might find it easier to create an authorization list for this folder, set *PUBLIC to *AUTL and set *PUBLIC *EXCLUDE in the *autl. You could then add the individuals to the *autl instead of granting each one authority to /home/cadroom.
-----
But your original question (1) involves inheritance and (2) subfolders. It's not clear which folder in the hierarchy you're expecting to inherit from. If a path is /dirA/dirB/dirC and you create mytext.txt in dirC, then are you expecting to inherit from dirA? or from dirB? or from dirC?
Tom
In general, set authorities at the /home/cadroom directory level for *PUBLIC to exclude access. One *PUBLIC is set, then you only need to be concerned about the specific individuals who need deeper access.
Use CHGAUT to grant *PUBLIC *EXCLUDE for /home/cadroom. Use CHGAUT to grant *RWX (or whatever is needed) to the various individuals.
You might find it easier to create an authorization list for this folder, set *PUBLIC to *AUTL and set *PUBLIC *EXCLUDE in the *autl. You could then add the individuals to the *autl instead of granting each one authority to /home/cadroom.
-----
But your original question (1) involves inheritance and (2) subfolders. It's not clear which folder in the hierarchy you're expecting to inherit from. If a path is /dirA/dirB/dirC and you create mytext.txt in dirC, then are you expecting to inherit from dirA? or from dirB? or from dirC?
Tom
ASKER
Need help again with this. When I use the chgaut command it only gives permissions to that directory and subdirectories but not the files in those subdir or any dir within the initial subdir.
So for example if the dir is: /home/name/my documents/
I use the chgaut command: chgaut '/home/name/my documents/*' myuserid *rwx *all
it gives user permissions for all initial dir within my documents but if the dir is:
/home/name/my documents/mydir/dira/file1
it does not give permissions to dira and of course anything below that.
Any help would be appreciated.
So for example if the dir is: /home/name/my documents/
I use the chgaut command: chgaut '/home/name/my documents/*' myuserid *rwx *all
it gives user permissions for all initial dir within my documents but if the dir is:
/home/name/my documents/mydir/dira/file1
it does not give permissions to dira and of course anything below that.
Any help would be appreciated.
CHGAUT OBJ('/MyFolder') USER(MyUser) DTAAUT(*RWX) OBJAUT(*ALL)