Users logged into the mis group on any workstation
user misusers group=mis
###########################################################
# APPLIES TO USERS LOGGED INTO THE MIS GROUP ON
# ANY WORKSTATION.
user misusers cpu=@ group=mis
begin
# OBJECT ATTRIBUTES ACCESS CAPABILITIES
# ---------- ------------ ----------------------
job cpu=$thiscpu + folder = /
+ logon=@ + cpufolder = / access=@
job cpu=$thiscpu + folder = /
+ logon=@
~ logon=root + cpufolder = / access=submit,use
schedule cpu=$thiscpu + folder = /
+ cpufolder = / access=add,submit,modify,display
cpu cpu=@ + type=agent,s-agent,fta + folder = /
access=console,fence,limit,link,start,stop,unlink
parameter name=r@ + folder = / + cpufolder = / access=@
parameter name=@ + folder = / + cpufolder = / access=display
runcygrp name=@ + folder = / access=add,delete,display,modify,use,list,unlock
folder name=/ access=@
end
###########################################################
This user definition applies to users logged into the mis group on workstations defined in the root folder. They are given a limited set of access capabilities to fault-tolerant, standard, and dynamic agents. Resources, prompts, files, calendars, and workstations are omitted, which prevents access to these objects. These users are given unrestricted access to parameters with names that begin with r, and that are defined in the root folder, but can only display other parameters.