Example Synchronization

The following example involves a file that is named /var/temp/newdata and a user who is named fowler. The example assumes that a record in the FILE class already represents the file.
capamsc141
The following example involves a file that is named /var/temp/newdata and a user who is named fowler. The example assumes that a record in the FILE class already represents the file.
  1. Shut down the seosd daemon, so you can edit the seos.ini file:
    # secons -s
  2. Logged in as a user with permission to edit the seos.ini file, edit the seos.ini file to make the SyncUnixFilePerms line, in the [seos] section, look like this:
    SyncUnixFilePerms = acl
    Remember, acl means that the UNIX option adjusts the UNIX ACL according to the 
    Privileged Access Manager
    ACL. The UNIX option has this function as long as the token remains set to acl.
  3. Restart the seosd daemon:
    # seosd
  4. Invoke selang, then issue the following selang command:
    authorize FILE /var/tmp/newdata uid(fowler) access(r w) unix
    The command gives fowler Read and Write access to the new data file. By specifying the UNIX option, it grants the corresponding native UNIX permissions.