save_pam_app

Use the save_pam_app command to save the currently selected PAM application access right stored in memory to Active Directory. You must save the PAM application right for any changes you make using ADEdit to take effect in Active Directory. If you select another PAM application right or end the ADEdit session before saving the currently selected PAM application right, your changes will be lost.

Zone Type

Classic and hierarchical

Syntax

save_pam_app

Abbreviation

svpam

Options

This command takes no options.

Arguments

This command takes no arguments.

Return Value

This command returns nothing if it runs successfully.

Examples

save_pam_app

This example saves the currently selected PAM application to Active Directory.

Before you use this command, you must have a currently selected zone stored in memory. The following commands enable you to view and select a PAM application object:

  • get_pam_apps returns a Tcl list of PAM applications in the current zone.
  • list_pam_apps lists to stdout the PAM application rights in the current zone.
  • new_pam_app creates a new PAM application right and stores it in memory.
  • select_pam_app retrieves a PAM application right from Active Directory and stores it in memory.

After you have a PAM application right stored in memory, you can use the following commands to work with that PAM application:

  • delete_pam_app deletes the selected PAM application from Active Directory and from memory.
  • get_pam_field reads a field value from the currently selected PAM application.
  • set_pam_field sets a field value in the currently selected PAM application.

save_role

Use the save_role command to save the currently selected role stored in memory to Active Directory. You must save the role for any changes you make using ADEdit to take effect in Active Directory. If you select another role or end the ADEdit session before saving the currently selected role, your changes will be lost.

Zone Type

Classic and hierarchical

Syntax

save_role

Abbreviation

svr

Options

This command takes no options.

Arguments

This command takes no arguments.

Return Value

This command returns nothing if it runs successfully.

Examples

save_role

This example saves the currently selected role to Active Directory.

Before you use this command, you must have a currently selected zone stored in memory. The following commands enable you to view and select roles:

  • get_roles returns a Tcl list of roles in the current zone.
  • list_roles lists to stdout the roles in the current zone.
  • new_role creates a new role and stores it in memory.
  • select_role retrieves a role from Active Directory and stores it in memory.

After you have a role stored in memory, you can use the following commands to work with that role:

  • add_command_to_roleadds a UNIX command to the current role.
  • add_pamapp_to_role adds a PAM application right to the current role.
  • delete role deletes the selected role from Active Directory and from memory. *get_role_apps returns a Tcl list of the PAM application rights associated with the current role.
  • get_role_commands returns a Tcl list of the UNIX commands associated with the current role.
  • get_role_field reads a field value from the current role.
  • list_role_rights returns a list of all UNIX commands and PAM application rights associated with the current role. *remove_command_from_roleremoves a UNIX command from the current role.
  • remove_pamapp_from_role removes a PAM application right from the current role.
  • set_role_field sets a field value in the current role.