Ricoh InfoPrint Pro C900AFP InfoPrint Manager - Page 145
Identifying users and groups: wildcarding, Working with ACLs and groups, trainees, operators
View all Ricoh InfoPrint Pro C900AFP manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 145 highlights
the other groups, there are no default users created during installation. See InfoPrint Job Ticketer: Administrator's Guide for more information. 2. You can modify these groups as needed. In the example above, you could have simply added your operators to the default oper group and modified any permissions that weren't set to the level that you wanted them. 3. All fields, such as User IDs, group names, hostnames, and DNS suffixes, are case sensitive. You can add users to multiple groups, but you cannot make one group a member of another group. For example, if you hire five new print operators, you might create a group for them called trainees, since you only want them to have limited permissions until they are finished with their training. When they finish their training, you cannot add trainees as a member of the operators group. You will have to add their user IDs to the operators group one at a time. In addition, you will have to either delete the trainees group or delete the members from it-otherwise those users will have conflicting levels of permission. When users are members of more than one group and each group has a different level of permission for a particular object, the most restrictive permission applies. In the example above, if you forgot to remove the new employees from the trainees group at the end of their training, they wouldn't be able to perform the tasks their job required- they would still be restricted. Identifying users and groups: wildcarding When you add users to ACLs or Security groups, you identify them by their user ID and the computer that they work on in this format: username@computername. The permissions you assign will only apply when that person accesses InfoPrint Manager from that workstation. If, however, you or any of your users want to be able to work with InfoPrint Manager objects from various workstations, you might not want to add multiple user ID/computer name combinations for the same person-you can use wildcarding instead. When you use wildcarding, you replace the computer name or user ID with the wildcard character (*) when you add a member to an ACL or Security Group. The wildcard character stands for "any computer" or "any user ID." So, if you create an ACL member called administrator@*, no matter what computer you log on to as administrator, you have the same permissions. If you use the wildcard character before the computer name, for example *@computer, any user who logs on to computer1 can do the actions that the ACL member has permission for. Working with ACLs and groups Use the AIX SMIT utility to manage the security of your print system. Open an AIXterm window and enter smit on the command line. The line InfoPrint Printing System will appear as an option. By following the menu item to the right with your cursor, you can navigate the this directory structure of menu choices: Tab #1 InfoPrint Printing Systems→ Tab #2 Security→ Tab #3 Groups→ Choices Add Group Show Group Add User to Group Remove User from Group Chapter 11. Managing security for InfoPrint Manager for AIX 131