NCLHELP.HLB  —  Directory Module, DSA  Accessor
 An Accessor entity can be used to represent a user of the DSA
 such that the DSA can verify the user's identity when they
 attempt to connect.

 Normally, a DSA verifies the identity of a directory user by
 reference to directory information. However, an Accessor entity
 provides a way of giving a DSA information about a user without
 having to represent that user in the directory. This might be useful
 in some problem solving situations. However, it is not the recommended
 way to represent users of the DSA.

 Note that the Accessor entity is a volatile entity. If you delete the
 DSA entity for a given system, then all Accessor entities for that system
 are deleted permanently.

 Note also that an Accessor entity only permits a user to identify
 themselves to this DSA. If the user wants identify themselves to
 another DSA, then that DSA also needs an Accessor entity.

1  –  Characteristics 

 An Accessor entity has only one characteristic attribute:
 Password. You can use the SET directive on this attribute.

 Syntax:

 	SET  DSA ACCESSOR <name> PASSWORD <value>

 where <name> is the name of the user whose password you want to
 set a new value, and <value> is the new value for the password.
 Specify the password as a Latin1 string. There is no default value.
 The name and the password must both be quoted. The password is
 a case sensitive attribute.

2  –  Directives 

 You can use the CREATE, DELETE, SET and SHOW directives with the
 Accessor entity.

 The CREATE and DELETE directives are used to create and delete an
 Accessor entity.

 The SET and SHOW directives are used to set and show attributes,
 respectively.

2.1  –  CREATE 

 Use this directive to create an Accessor entity of the specified name.

 Syntax:

 	CREATE DSA ACCESSOR <name> PASSWORD <value>

 You must quote the name and password. For example:

  > CREATE DSA ACCESSOR "/C=US/O=Abacus/CN=Manager" PASSWORD "mumble"

2.1.1  –  Arguments 

 The CREATE directive has an identifier and one argument.
 The argument is mandatory. The argument is:

 -	PASSWORD

 The identifier specifies the name of a directory user.
 This is in the form of a distinguished name or AE title.

 The PASSWORD argument identifies the password for the user.
 Specify this argument in the following format:

 	PASSWORD <value>

 where <value> is the password is a Latin1 string of
 between 1 and 128 characters long. The password value must be quoted.

2.1.2  –  Errors 

 The CREATE directive can return one of the following errors:

 REASON:         Wrong State
 DESCRIPTION:    The DSA entity is not in the correct state.

 This means that the DSA is in one of the transitional states
 UPDATING, CREATING, ENABLING, or DISABLING. The DSA
 must be in state ON or OFF when you create an Accessor entity.
 The response indicates what state the DSA is in.

 REASON:         Already Exists
 DESCRIPTION:    This Accessor entity already exists.

 This means that the name you specified is already the name of
 an Accessor entity.

 REASON:         Invalid Name
 DESCRIPTION:    The entity name is not a valid directory name.

 This means that the name you specified is not in the
 distinguished name format. The response displays the invalid
 name component.

2.2  –  DELETE 

 Use this directive to delete an Accessor entity.

 Syntax:

 	DELETE DSA ACCESSOR <name>

2.2.1  –  Errors 

 The DELETE directive can return the following error:

 REASON:         Wrong State
 DESCRIPTION:    The DSA entity is not in the correct state.

 This means that the DSA is in one of the transitional states
 UPDATING, CREATING, ENABLING, or DISABLING. The DSA
 must be in state ON or OFF when you delete an Accessor entity.
 The response indicates what state the DSA is in.

2.3  –  Examples 

 	> CREATE DSA ACCESSOR "/C=US/O=Abacus/CN=Jon Smith" -
 	_> PASSWORD "mumble"

 	> SHOW DSA ACCESSOR "/C=US/O=Abacus/CN=Jon Smith"

 	The first command creates an Accessor entity and the
 	second command displays it.

         Note you cannot use the SHOW directive to display
         the Password attribute of an Accessor entity, because
         it is a read-only attribute.

 	> DELETE DSA ACCESSOR "/C=US/O=Abacus/CN=Jon Smith"

 	This command deletes the Accessor entity.

2.4  –  SET 

 Use the SET directive to change the value of the Accessor
 Password attribute.

 Syntax:

 	SET DSA ACCESSOR <name> PASSWORD <value>

 where <value> is the value you want to set for the
 Password attribute. The value must be quoted.

2.5  –  SHOW 

 Use the SHOW directive to display an Accessor entity.
 The Password characteristic attribute is not displayed.

 Syntax:

 	SHOW DSA ACCESSOR <name>

 You can also use the wildcard "*" in a SHOW directive, to display
 a list of all Accessor entities, for example:

 SHOW DSA ACCESSOR *

3  –  Identifier 

 Each Accessor entity is uniquely identified by a name. This is
 the name of the user that you want to give access to the DSA, and
 must be in same format as a distinguished name or an AE title.
 For example, "/C=US/O=Abacus/CN=Jon Smith".

 Refer to DSA Common_Datatypes for more information
 on how to specify an AE title. Refer to the CREATE directive
 for more information on how to create an Accessor entity.
Close Help