pts_setfields - Sets privacy flags or quota for a Protection Service entry


pts setfields -nameorid <user or group name or id>+ [-groupquota <set limit on group creation>] [-cell <cell name>] [-noauth] [-localauth] [-force] [-help] [-auth] [-encrypt [<yes|no>]] [-config <configuration file>]


The pts setfields command sets the group-creation quota, associated with each user, machine, network or group entry specified by the -nameorid argument. Historically, pts setfields was also used to set the privacy fields for these entries, but this use is deprecated. The pts_setaccess(1) command is the recommended utility for manipulating privacy fields.

To examine the current quota, use the pts_examine(1) command.


-nameorid <user or group name or id>+

Specifies the name or AFS UID of each user, the name or AFS GID of each group, or the IP address (complete or wildcard-style) or AFS UID of each machine. It is acceptable to mix users, machines, and groups on the same command line, as well as names (IP addresses for machines) and IDs. Precede the GID of each group with a hyphen to indicate that it is negative.

-groupquota <group creation quota>

Specifies the number of additional groups an authenticated user or machine can create (it does not matter how many he or she has created already). Do not include this argument for a group or network entry.


Use the calling user's tokens to communicate with the Protection Server. For more details, see pts(1).

-cell <cell name>

Names the cell in which to run the command. For more details, see pts(1).

-config <configuration file>

Sets the location of the configuration file to be used. The default file is /etc/yfs/yfs-client.conf. For more details, see pts(1).

-encrypt [<yes|no>]

Enables or disables encryption for any communication with the Protection Server. For more details, see pts(1).


Enables the command to continue executing as far as possible when errors or other problems occur, rather than halting execution at the first error.


Prints the online help for this command. All other valid options are ignored.


Constructs a server ticket using a key from the local /etc/yfs/server/KeyFileExt file. Do not combine this flag with the -cell or -noauth options. For more details, see pts(1).


Assigns the unprivileged identity anonymous to the issuer. For more details, see pts(1).


Changing the group-creation quota of a network or a group is permitted but not recommended. The concept is meaningless for networks and groups because it is impossible to authenticate as a network or group.


The following example sets group quota on the user entry admin. Users authenticated as admin can create an additional 50 groups.

   % pts setfields -nameorid admin -groupquota 50


To set group-creation quota on a user entry, the issuer must belong to the system:administrators group.


Setting the privacy and authorization flags for entries should be done with the pts_setaccess(1) command, which replaces the OpenAFS pts setfields -access option.


pts(1), pts_setaccess(1), pts_adduser(1), pts_examine(1), pts_listowned(1), pts_membership(1), pts_removeuser(1)


IBM Corporation 2000. All Rights Reserved.

This documentation is covered by the IBM Public License Version 1.0. It was converted from HTML to POD by software written by Chas Williams and Russ Allbery, based on work by Alf Wachsmann and Elizabeth Cassell.


"AFS" is a registered mark of International Business Machines Corporation, used under license. (USPTO Registration 1598389)

"OpenAFS" is a registered mark of International Business Machines Corporation. (USPTO Registration 4577045)

The "AuriStor" name, log 'S' brand mark, and icon are registered marks of AuriStor, Inc. (USPTO Registrations 4849419, 4849421, and 4928460) (EUIPO Registration 015539653).

"Your File System" is a registered mark of AuriStor, Inc. (USPTO Registrations 4801402 and 4849418).

"YFS" and "AuriStor File System" are trademarks of AuriStor, Inc.