Removes a user, group, or server from an administrative list
Synopsis
bos rmadmin -server machine -adminlist filename [-principal name...] [-group name...]
[-removelist]
[{-noauth | -localauth}] [-help]
Options
-server machine
Names the server machine that houses the administrative list from which principals, groups, or both are to be removed. The BOS Server on this machine
executes the command. To run this command using a privileged identity, specify the full DCE path name of the machine. To run this command using the unprivileged identity nobody (the
equivalent of running the command with the -noauth option), specify the machine's host name or IP address.
-adminlist filename
Names the administrative list from which principals, groups, or both are to be removed. The complete path name is unnecessary if the list is stored
in the default configuration directory (dcelocal/var/dfs).
-principal name
Specifies the principal name of each user or server machine to be removed from the administrative list. A user from the local cell can be specified by
a full or abbreviated principal name (for example, /.../cellname/username or just username); a user from a foreign cell can be specified only by
a full principal name. A server machine from the local cell can be specified by a full or abbreviated principal name (for example,
/.../cellname/hosts/hostname/self or just hosts/hostname/self); a server machine from a foreign cell can be specified only by a
full principal name.
-group name
Specifies the name of each group to be removed from the administrative list. A group from the local cell can be specified by a full or abbreviated group
name (for example, /.../cellname/group_name or just group_name); a group from a foreign cell can be specified only by a full group name.
-removelist
Specifies that the file indicated with -adminlist is to be removed if it is empty either when the command is issued or after any principals or groups
specified with the command are removed. This option has no effect if the specified file is not empty when the command is issued or after any indicated principals or groups are removed.
-noauth
Directs bos to use the unprivileged identity nobody as the identity of the issuer of the command. The command fails if you use this option and DFS
authorization checking is not disabled on the machine specified by -server. If you use this option, do not use the -localauth option.
-localauth
Directs bos to use the DFS server principal name of the machine on which the command is issued as the identity of the issuer. Use this option only if the
command is issued from a DFS server machine (a machine that has a DFS server principal in the local Registry Database). You must be logged into the server machine as root for this option to
work. If you use this option, do not use the -noauth option.
-help
Prints the online help for this command. All other valid options specified with this option are ignored.
Description
The bos rmadmin command removes the specified users, groups, and servers from the administrative list specified by the -adminlist option on the
server machine specified by the -server option. The principal (login) names of users and the principal names of server machines to be removed from the administrative list are specified with
the -principal option; the names of groups to be removed from the list are specified with the -group option. Principals removed from the administrative list either directly (with
the -principal option) or indirectly (as members of groups indicated with the -group option) can no longer issue administrative commands for the DFS server process associated with
the list.
The default path for administrative lists is the configuration directory (dcelocal/var/dfs). If the specified list is stored in the default directory, only the specific file name is required. If the specified list is stored elsewhere, the path name to the file that was used when the associated server process was started is required.
Privilege Required
The issuer must be listed in the admin.bos file on the machine specified by -server.
Examples
The following command removes the former administrative users smith and jones from the admin.bos file on fs1:
$ bos rmadmin -server /.../abc.com/hosts/fs1 -adminlist admin.bos -principal smith jones
Related Information
Commands: bos addadmin(8dfs)
Files: admin.bak(4dfs)