| T.R | Title | User | Personal
Name | Date | Lines |
|---|
| 929.1 | Small Change | UTRTSC::SCHOLLAERT | IOS: better than the real thing | Thu Jun 25 1992 15:42 | 25 |
| Sau Ha,
From STARS:
RNA Fails For MANAGER In V2.4 If Policies Do Not Allow Admin VMS Account Acces
===============================================================================
As an alternative in V2.4, the command procedure used to perform the
Rename User Account (RNA) operation may be modified using Customization
Management to allow the MANAGER to perform this operation EVEN when
Management Policies restrict Administrators. The following changes
may be implemented to accomplish this:
Find the line that reads:
$ if .not. vmspriv then goto no_admin_vms_priv
Change it to read:
$ if (.not. vmspriv) .and. (admin_id .nes. "MANAGER") -
then goto no_admin_vms_priv
Once this change is made, move the element live (CM MLA MGT CSZ PME ML)
in order for the changes to take affect.
|
| 929.2 | What about V3.0 ? | WELCLU::LI | Sau Ha Li, Welwyn | Thu Jun 25 1992 16:02 | 6 |
| Thank you for the reply.
Will we have the same problem with ALL-IN-1 V3.0 ?
thanks & regards,
Sau Ha
|
| 929.3 | Fixed | UTRTSC::SCHOLLAERT | IOS: better than the real thing | Thu Jun 25 1992 16:43 | 1 |
|
|
| 929.4 | What about delete ? | WELCLU::LI | Sau Ha Li, Welwyn | Thu Jun 25 1992 17:29 | 12 |
| I have modified OA$LIB:MUA_RENAME.COM and RNA works. However, which
command file do I need to modify for Delete account ? When I delete
an account, the ALL-IN-1 profile and the A1.dir are removed but not
the AUTHORIZE entry and sys$login directory. The broadcast message
said the deletion has completed successfully - but it didn't ! The
log file is listed below.
thanks & regards,
Sau Ha
**** LOG FILE MOVED TO IOSG::NOTES$LIBRARY:ALL-IN-1_929-4.LOG GAP. *******
|
| 929.5 | different problem | UTRTSC::SCHOLLAERT | IOS: better than the real thing | Fri Jun 26 1992 08:52 | 26 |
| Sua Ha,
Please don't post such a long log file (disk space, Windows
readers...). Looks like a different problem.
This is the relevant part :
$ write scp "get cli$vms_dir = profil.direct[""PARSONSS""]"
$ !
$ ! If this account does not have a dir spec then it will be treated as
$ ! a profile-only 'account'so finish here and get the next account
$ !
$ if vms_dir .eqs. "" then goto del_profile
$ del_profile:
$ !
Hope this helps...
Jan
|
| 929.6 | Log file from .4 removed! | IOSG::PYE | Graham - ALL-IN-1 Sorcerer's Apprentice | Fri Jun 26 1992 09:41 | 0 |
| 929.7 | Still confused ! | WELCLU::LI | Sau Ha Li, Welwyn | Fri Jun 26 1992 11:39 | 25 |
| Hello Jan,
Sorry for the long base note - I'll remember next time...
In your reply .5, you think the cause is that profil.direct[user] is
blank, that is why the profile is deleted. If this is the case, then
I assume that the [.A1] subdirectory should still be there. However,
the result I've got, when admin is not allowed to manager VMS
accounts, is that:
ALL-IN-1 profile - deleted
[test_account.a1] - deleted
[test_account] - still there
UAF entry for test_account - still there
Once I allow admin to manager VMS account - i.e.SM DAP DPS,
everything is deleted. I can only conclude that the cause of the
problem is the admin setting - similar to the RENAME problem.
If this is so, is it MUA_DEL_ACCOUNT.COM that I should be modifying?
thanks & regards,
Sau Ha
|
| 929.8 | should work in 2.4 | UTRTSC::SCHOLLAERT | IOS: better than the real thing | Fri Jun 26 1992 12:40 | 26 |
| Sau,
This bug existed in 2.3.
As your log file shows, the 2.4 for check MANAGER is ok.
$ !
$ ! Check if the caller is Manager or a valid Admin
$ !
$ if ( admin_id .nes. "MANAGER") .and. -
.not. admin_flag then goto not_admin
$ if .not. (admin_a1priv .or. admin_id .eqs. "MANAGER") then -
goto no_privilege
The symbol cli$vms_dir is set BEFORE the profile entry is deleted
in the same temp script which deleted the profile entry.
AFTER profil deletion , on DCL level, DCL symbol vms_dir is
checked and empty ???
I don't see any relation to VMS priv for ADMIN or not...
Regards,
jan
|