5.4.5 HP-UX OS user groups
When an OS user who executes jobs belongs to more than one group, and you want to enable access to all those groups, you must set /etc/logingroup; otherwise, only the group ID defined in /etc/passwd can be used.
To enable access to multiple groups, copy the /etc/group group definition into /etc/logingroup, or make a symbolic link between /etc/logingroup and /etc/group. For details, see your OS documentation.
- Cautionary note
-
To enable access to multiple groups when the process of a JP1/AJS3 service accesses a job result file or temporary file, perform the setting described in 15.2.18 Enabling the file access permission check for the ACL and secondary group settings during job execution in the JP1/Automatic Job Management System 3 Configuration Guide.
If you do not perform this setting, access from a secondary group based on the entries in /etc/logingroup is possible only for a job process. Entries in /etc/logingroup do not apply to a JP1/AJS3 service process accessing a job result file or temporary file. If a JP1/AJS3 service process is unable to access a result file, change the permission of the directory containing the result file to a permission that will allow access from a secondary group. Alternatively, change the group that owns the directory or the specified result file from the secondary group to the primary group of the user executing the job. In the case of a temporary file, change the permission of the work directory to a permission that will allow access from a secondary group.
For details, see 2.6.2(3) Executing a standard job, action job, or custom job results in an abnormal end in the manual JP1/Automatic Job Management System 3 Troubleshooting.