'\" 
.\" @(#)acladm.1m	1.2 01 Oct 1998 SMI
.\" Copyright (c) 1999, Sun Microsystems, Inc.
.\" All Rights Reserved
.\" Copyright (c) AT&T 1997. All rights reserved. 
.\" @(#)acladm.rof	1.4 12/22/97
.TH acladm 1m "22 Sep 1998"
.if n .tr \--
.SH "NAME"
acladm - creates, checks, prunes, fixes, and removes access control list (ACL) information.
.SH "SYNOPSIS"
.nf
.ft 4
acladm [ -C | -E | -N | -O | [ -P | -S | -U ]  | -R ] [ -y | -n | -f ] [-v]  
.SH "DESCRIPTION"
The acladm command creates, checks, prunes, fixes, or removes access
control list data. Creation of a new ACL data store will fail if
it already exists.  The check (-C) option traverses through the
ACL data store to determine if there are any inconsistencies.
.SH "OPTIONS"
.SS -C
Checks and repairs the ACL data store.  The command prompts the user
before making repairs. Corrupt entries are either fixed or deleted.
If the -y option is used, the command repairs
the data store automatically.
.SS -E
Enumerates all objects which have ACLs assigned to them.
.SS -N
Creates a new ACL data store if one does not already exist.
.SS -O
Re-initializes the default ACLs for standard objects.  This option
does not affect any user-created ACLs.
.SS -S
Removes redundant access control entries (ACEs) from ACLs.
.SS -U
Removes ACEs of deleted or unknown users from ACLs.
.SS -P
Prunes (synchronizes) the ACL information with the physical data on 
the UNIX file system.  This option removes any ACLs for objects (such as files)
that no longer are present on the system.
Users are prompted regarding each ACL unless the -y option is used, in
which case the command prunes every ACL automatically.
.SS -R
Removes completely an ACL data store.
This command asks for confirmation unless the -y option is used, in
which case the ACL store is removed automatically.
.SS -f
Only valid when used with the -C option. Corrupt entries are fixed in the
ACL data store. No corrupt entries are deleted. User is not prompted, each
ACL entry that can be fixed is fixed automatically.
.SS -y
When used with the -C, -P, or -R option, ACL store changes are made without 
prompting the user for input.
.SS -n
When used with the -C or -P option, no changes are made to the ACL store. The 
object name of each ACL entry that needs repair is displayed with the action 
(fix or delete) that will be applied when the -n option is not used.
.SH "EXAMPLE"
To check access control list information, type the following command:
.sp.5
	acladm -C