rmfile Command Delete File Records

Valid in the AC environment
capamsc141
Valid in the AC environment
The rmfile command deletes records belonging to the FILE class from the database.
You can delete a file record if one of the following conditions is met:
  • You have the ADMIN attribute.
  • The record is within the scope of a group in which you have the GROUP-ADMIN attribute.
  • You are the owner of the file.
  • You have the DELETE access authority assigned in the ACL of the FILE record in the ADMIN class.
This command has the following format:
{rmfile|rf} {fileName | (filename [,filename...])}
  • fileName
    Defines the file you are removing.
    PAM Server Control
     processes each file record independently. If an error occurs while processing a file, 
    PAM Server Control
    issues a message and continues processing with the next file in the list.
Example: Remove File Protection
The security administrator (which has the ADMIN attribute) wants to remove 
PAM Server Control
protection for a file. On UNIX, this can look like this:
rmfile /etc/passwd
The same command on Windows can look like this:
rmfile C:\temp\passwords.txt