To ensure that users have the appropriate effective file system rights to data on NSS volumes, make explicit file system trustee assignments, grant security equivalences for users, and filter inherited rights. To simplify the assignment of rights, you can create Group and Organizational Role objects in NetIQ eDirectory, then assign users to the groups and roles.
Set file system attributes for directories and files on an NSS volume to specify how a file or directory is used.
For information about controlling file system access and attributes for NSS volumes, see Understanding File System Access Control Using Trustees
in the OES 11 SP3: File Systems Management Guide.
For information about access control issues for NSS, see Section 5.5, Access Control for NSS.