12.2 Understanding File System Trustees, Trustee Rights, and Attributes

12.2.1 Directory and File Trustee Rights

A trustee is any NetIQ eDirectory object, such as a User object, Group object, Organizational Role object, or container object, that you grant one or more rights for a directory or file. Trustee assignments allow you to assign ownership, set permissions, and monitor user access.

NCP Server for Linux provides the same file and directory trustee rights for both NSS and Linux POSIX file systems. These are the same rights that exist for the NSS file system on NetWare. They include:

  • Read (Default=On)

  • Write (Default=Off)

  • Create (Default=Off)

  • Erase (Default=Off)

  • Modify (Default=Off)

  • File Scan (Default=On)

  • Access Control (Default=Off)

  • Supervisor (Default=Off)

12.2.2 Directory and File Attributes

NCP Server for Linux supports the directory and file attributes for NSS volumes. For a complete list of file attributes, see Understanding File System Access Control Using Trustees in the OES 11 SP2: File Systems Management Guide.

The following file and directory attributes are supported for NCP volumes on Linux POSIX file systems.

  • Read Only

  • Hidden

  • Shareable

Other file and directory attributes that are listed for NCP Server’s support of the NSS file system are not supported for Linux POSIX file systems.

The other NSS file and directory attributes might appear to be supported on Linux POSIX file systems, and might also appear to be configurable, but the other file and directory attributes are not supported, and are ignored if files are accessed through NCP. For example, it might appear that you have set the Copy Inhibit attribute for a specific file, but that file can still be copied if it is on a non-NSS file system.

IMPORTANT:File and directory attributes are supported and enforced by the file system that underlies an NCP volume, not by NCP Server.