NWChangeObjectSecurity(3nw)


NWChangeObjectSecurity -- changes security access mask of bindery object

Synopsis

   #include <nwbindry.h> 
   or 
   #include <nwcalls.h> 
   

NWCCODE N_API NWChangeObjectSecurity (NWCONN_HANDLE conn, pnstr8 objName, nuint16 objType, nuint8 newObjSecurity);

Description

The parameters are as follows:

conn
(IN) Specifies the NetWare server connection handle.

objName
(IN) Points to a string containing the name of the object whose security is to be changed.

objType
(IN) Specifies the bindery object type.

newObjSecurity
(IN) Specifies the new security access mask for the specified object.

Return values

0x0000
SUCCESSFUL

0x8801
INVALID_CONNECTION

0x8996
SERVER_OUT_OF_MEMORY

0x89F0
WILD_CARD_NOT_ALLOWED

0x89F1
INVALID_BINDERY_SECURITY

0x89F5
NO_OBJECT_CREATE_PRIVILEGE

0x89FC
NO_SUCH_OBJECT

0x98FE
BINDERY_LOCKED

0x89FF
HARDWARE_FAILURE

Notices

objName and objType must uniquely identify the bindery object and cannot contain wildcard characters.

newObjSecurity is a byte in which the low nibble controls Read security and the high nibble controls Write security. Read security determines which clients can find the bindery object by scanning. Write security determines which clients can create properties for the bindery object. Refer to the following chart for the security mask values defined for each nibble:

Read Value Write Value Access Level Description
BS_ANY_READ BS_ANY_WRITE Anyone Access allowed to all clients, even if the client has not logged in to the server.
BS_LOGGED_READ BS_LOGGED_WRITE Logged Access allowed to all clients logged in to the server.
BS_OBJECT_READ BS_OBJECT_WRITE Object Access allowed only to clients who have logged in to the server with object's name, type, and password.
BS_SUPER_READ BS_SUPER_WRITE SUPERVISOR Access allowed only to clients who have logged in to the server as SUPERVISOR, or as a bindery object that is security-equivalent to SUPERVISOR.
BS_BINDERY_READ BS_BINDERY_WRITE NetWare Access allowed only to NetWare.

 
 --------------------------------------------------------------------- 
| Read Value     |  Write Value     |  Access Level|  Description    | 
|----------------|------------------|--------------|-----------------| 
| BS_ANY_READ    |  BS_ANY_WRITE    |  Anyone      |  Access allowed | 
|                |                  |              |  to all clients,| 
|                |                  |              |  even if the    | 
|                |                  |              |  client has not | 
|                |                  |              |  logged in to   | 
|                |                  |              |  the server.    | 
|----------------|------------------|--------------|-----------------| 
| BS_LOGGED_READ |  BS_LOGGED_WRITE |  Logged      |  Access allowed | 
|                |                  |              |  to all clients | 
|                |                  |              |  logged in to   | 
|                |                  |              |  the server.    | 
|----------------|------------------|--------------|-----------------| 
| BS_OBJECT_READ |  BS_OBJECT_WRITE |  Object      |  Access allowed | 
|                |                  |              |  only to clients| 
|                |                  |              |  who have logged| 
|                |                  |              |  in to the      | 
|                |                  |              |  server with    | 
|                |                  |              |  object's name, | 
|                |                  |              |  type, and      | 
|                |                  |              |  password.      | 
|----------------|------------------|--------------|-----------------| 
| BS_SUPER_READ  |  BS_SUPER_WRITE  |  SUPERVISOR  |  Access allowed | 
|                |                  |              |  only to clients| 
|                |                  |              |  who have logged| 
|                |                  |              |  in to the      | 
|                |                  |              |  server as      | 
|                |                  |              |  SUPERVISOR, or | 
|                |                  |              |  as a bindery   | 
|                |                  |              |  object that is | 
|                |                  |              |  security-      | 
|                |                  |              |  equivalent to  | 
|                |                  |              |  SUPERVISOR.    | 
|----------------|------------------|--------------|-----------------| 
| BS_BINDERY_READ|  BS_BINDERY_WRITE|  NetWare     |  Access allowed | 
|                |                  |              |  only to        | 
|                |                  |              |  NetWare.       | 
|----------------|------------------|--------------|-----------------| 
Values can be ORed together. For example, a bindery object with a newObjSecurity value of BS_SUPER_WRITE ORed with BS_LOGGED_READ indicates any user logged in to the NetWare server can view the object, but only the SUPERVISOR can add a property to the object.

Valid bindery object types for OT_ constants follow:

0xFFFF
OT_WILD

0x0000
OT_UNKNOWN

0x0100
OT_USER

0x0200
OT_USER_GROUP

0x0300
OT_PRINT_QUEUE

0x0400
OT_FILE_SERVER

0x0500
OT_JOB_SERVER

0x0600
OT_GATEWAY

0x0700
OT_PRINT_SERVER

0x0800
OT_ARCHIVE_QUEUE

0x0900
OT_ARCHIVE_SERVER

0x0A00
OT_JOB_QUEUE

0x0B00
OT_ADMINISTRATION

0x2100
OT_NAS_SNA_GATEWAY

0x2600
OT_REMOTE_BRIDGE_SERVER

0x2700
OT_TCPIP_GATEWAY
Extended bindery object types follow:

0x2D00
OT_TIME_SYNCHRONIZATION_SERVER

0x2E00
NOT_ARCHIVE_SERVER_DYNAMIC_SAP

0x4700
OT_ADVERTISING_PRINT_SERVER

0x5000
OT_BTRIEVE_VAP

0x5300
OT_PRINT_QUEUE_USER
NWChangeObjectSecurity cannot set or clear bindery Read or Write security. Only SUPERVISOR or a bindery object that is security equivalent to SUPERVISOR can change a bindery object's security.

Services

Bindery

NCP calls

0x2222 23 56
Change Bindery Object Security

References

NWGetObjectID(3nw)
30 January 1998
© 1998 The Santa Cruz Operation, Inc. All rights reserved.