default - system default database file for a trusted system
The system default database is unique in that it defines system-wide
global parameters for a trusted system. It is designed to provide
values for users and devices on a global scale rather than requiring
an administrator to replicate values in user or device databases when
they are all the same. In addition to being easier to specify global
values, it is also much easier to make a global system change if
The system default database is made up of four types of values:
system-wide parameters These are parameters that do not have
corresponding specifications in any
other trusted system database. If a
system-wide parameter is not specified
in the default database, then it is
user parameters These parameters are typically specified
in a protected password database file.
terminal control parameters These parameters are typically specified
in the terminal control database file.
device assignment parameters These parameters are typically specified
in the device assignment database file.
System default parameters may be specified for fields found in the
protected password, terminal control, and device assignment databases.
When a specific entry is retrieved from one of these databases, a
structure called, ufld that contains all of the explicitly specified
values, is provided to the caller. A second structure, called sfld,
is also provided which defines those values supplied from the system
default database. Each of these structures has a corresponding flag
structure called uflg and sflg, respectively, that indicates which
fields in each structure have been specified and are valid for use.
Programs honor the user or device specific value first if one is
provided. Otherwise, the program may choose to use the system default
value if one has been specified. If neither value is specified, the
program may supply a reasonable default value or abort.
For descriptions of the specific fields provided by the protected
password, terminal control, and device assignment databases, see the
corresponding manual pages listed in the SEE ALSO section for those
databases. The following fields are unique to the system default
Hewlett-Packard Company - 1 - HP-UX Release 11i: November 2000
database and can not be specified in any of the other system
d_name This name is set to the string
d_boot_authenticate This flag field indicates whether or not
boot authentication is required to boot
the machine. If authentication is
required, it is performed by the system
init(1M) program prior to completing
The following is an example of a typical system default database.
Refer to authcap(4) for descriptions of the file and line formats.
This system default database defines the four different types of
values which are supported. First, values that can be assigned on a
system-wide only basis are defined. Boot authentication at system
startup is not enabled. Login programs will provide password
expiration warnings if the password expires in less than 604800
seconds from the current system time (this translates into 60*60*24*7
or 7 days).
The system default database also defines numerous protected password
database default values. Fields that begin with u_ correspond to
protected password fields. Similarly, fields starting with the t_
prefix are terminal control database fields. These field types are
used to supply system-wide default values if a user or device specific
value is not supplied by the corresponding database. See the
appropriate manual pages listed in the SEE ALSO section for these
databases for a complete description of the applicable fields.
/tcb/files/auth/system/default system default database file for a
trusted system; see authcap(4)
/tcb/files/auth/*/* protected password database files;
Hewlett-Packard Company - 2 - HP-UX Release 11i: November 2000
/tcb/files/ttys terminal control database file; see
/tcb/files/devassign device assignment database file;
default was developed by HP.
getprdfent(3), authcap(4), devassign(4), prpwd(4), ttys(4).
Hewlett-Packard Company - 3 - HP-UX Release 11i: November 2000