- </itemizedlist>
- <itemizedlist>
- <para>A Lustre administrator can specify permissions for a specific UID by configuring
- <literal>/etc/lustre/perm.conf</literal> on the MDS. The
- <literal>/usr/sbin/l_getidentity</literal> utility parses
- <literal>/etc/lustre/perm.conf</literal> to obtain the permission mask for a specified
- UID.</para>
- <para>The permission file format
- is:<screen>{<replaceable>nid</replaceable>} {<replaceable>uid</replaceable>} {<replaceable>perms</replaceable>}</screen>An
- asterisk (*) in the <replaceable>nid</replaceable> column or
- <replaceable>uid</replaceable> column matches any NID or UID respectively. When '*' is
- specified as the NID, it is used for the default permissions for all NIDS, unless
- permissions are specified for a particular NID. In this case the specified permissions
- take precedence for that particular NID. Valid values for
- <replaceable>perms</replaceable> are:<itemizedlist>
- <listitem>
- <para><literal>setuid/setgid/setgrp/<replaceable>XXX</replaceable></literal> -
- enables the corresponding <replaceable>perm</replaceable></para>
- </listitem>
- <listitem>
- <para><literal>nosetuid/nosetgid/nosetgrp/no<replaceable>XXX</replaceable></literal>
- - disables the corresponding <replaceable>perm</replaceable></para>
- </listitem>
- </itemizedlist>Permissions can be specified in a comma-separated list. When a
- <replaceable>perm</replaceable> and a <replaceable>noperm</replaceable> permission are
- listed in the same line, the <replaceable>noperm</replaceable> permission takes
- precedence. When they are listed on separate lines, the permission that appears later
- takes precedence.</para>