Refer also to the manual "POSIX Basics".
The BS2000 user administration facility SRPM (System Resources and Privileges Management) controls access to BS2000 and to POSIX. Each user must be entered in the BS2000 user catalog. The BS2000 system administrator is responsible for the administration of BS2000 users.
The POSIX user administration facility is integrated in the BS2000 user administration facility and is not, as is usual in UNIX, handled through the /etc/passwd file. Given suitable authorization, the following SDF commands are provided for POSIX user administration; these can be used, for example, to assign the POSIX user number (uid):
/ADD-USER /MODIFY-USER-ATTRIBUTES /SHOW-USER-ATTRIBUTES /ADD-POSIX-USER /MODIFY-POSIX-USER-ATTRIBUTES /SHOW-POSIX-USER-ATTRIBUTES /MODIFY-POSIX-USER-DEFAULTS /SHOW-POSIX-USER-DEFAULTS
For POSIX group administration and administration of access from remote computers with ssh etc., there are other methods, commands and operands which are described in the manual mentioned above.
Root authorization (uid=0 and gid=0)
A user has root authorization when that user has the POSIX user number (uid) 0 and the POSIX group number (gid) 0 assigned. Root authorization is required for starting NFS and for the internal POSIX administration of file systems. Root authorization is assigned to the SYSROOT user ID by default. Root authorization is assigned to the TSOS user ID on installation of POSIX.
This root authorization is applicable only to the local computer. Users with root authorization from remote systems are of equal status to non-privileged users in the local system. If a user with remote root authorization is to work under user number 0, that user can be granted the appropriate authorization by means of share command options:
$ share -F nfs -o ...,root=remote_system ... |
TSOS user ID
In addition to root authorization, the BS2000 privilege TSOS linked to the BS2000 user ID TSOS is required for all administration tasks where management of BS2000 files belonging to other user IDs must be carried out, e.g. setting up container files for storing file systems which are to be newly created.