Adding a Directory Manager

Directory Managers › Adding a Directory Manager

Adding a Directory Manager

You can define any existing user ID, except the following, as a directory manager:

The CA VM:Secure service virtual machine user ID
GLOBALS
POOL
POSIX
PROFILE

If you try to make the CA VM:Secure service virtual machine user ID a directory manager, CA VM:Secure prevents the update or will not initialize. If you try to make the other user IDs directory managers, these names will conflict with similarly named objects in the CP object directory and the CA VM:Secure directory database. This will also prevent CA VM:Secure initialization or yield errors from the ADMIN MANAGERS command.

You must have system administrator authority to add a directory manager.

Adding a directory manager puts you into an XEDIT session on the VMSECURE MANAGERS file. In this file, you must add one MANAGER record and one SKELETON record for each user ID you want to make a manager. You then add any of the other records that further define the scope of a directory manager’s authority.

To add a directory manager

Enter the following:
```
vmsecure admin managers
```
This opens the VMSECURE MANAGERS file for editing.
Add one of each of the following records for each user ID you want to make a directory manager.
Enter the records in the following order:

Record	Include on this record
MANAGER	Directory manager user ID, the amount of disk space the manager can allocate, and the subpools from which the manager can allocate disk space
SKELETON	Skeleton files this directory manager can use to create user IDs

Record

Include on this record

MANAGER

Directory manager user ID, the amount of disk space the manager can allocate, and the subpools from which the manager can allocate disk space

SKELETON

Skeleton files this directory manager can use to create user IDs

Optionally add one of each of the following records for each directory manager. Enter them in any order, but following the MANAGER record for that directory manager:

Record	Include on this record
DEFSIZE	Minidisk size that the directory manager assigns by default when defining minidisks
DEVTYPE	Device type that the directory manager assigns by default when allocating minidisks
IDLIMIT	Number of user IDs that the directory manager can manage

Save this XEDIT session and exit the VMSECURE MANAGERS file.
Grant the new directory manager authorization to all of the commands necessary to perform the duties you assign. For commands that are typically used by directory managers, see the Directory Manager’s Guide.

You can do this by adding GRANT records to the AUTHORIZ CONFIG file.

Note: For more information about tailoring user authorizations, see Authorizations. For information about using the GRANT record and authorizing user IDs to use specific commands, see GRANT Record in the chapter "Configuration File Reference" in the Reference Guide.

Tell Technical Publications how we can improve this information