Migrating to OS/2 Warp Server for e-business

3.13 Backup Access Control Information

The NET.ACC file in X:\IBMLAN\ACCOUNTS (where X is the drive where your OS/2 LAN Server software is installed) contains user and group information. This file also includes server-specific access control information for File Allocation Table (FAT formatted) drives, pipes, printers, and serial devices. For HPFS386-formatted drives, Access Control Profiles are not stored in NET.ACC because here ACLs are an integral part of the file system.

Furthermore, the NET.AUD file holds the recorded auditing information if network auditing is turned on.

Many backup software vendors, such as Sytron (Sytos) or IBM (ADSM), claim that they will backup any file system including those specific to OS/2 LAN Server. For verification you should

Perform some disaster recovery stress tests.
Put in place a procedure that will save the access control information automatically, such as the SRVBU utility described in Section 3.8.1 SRVBU Utility or the LSMT described in Section 3.8.2 LAN Server Management Tools (LSMT).

To backup and restore the ACLs, we used the BACKACC command, which is part of the OS/2 LAN Server product and can usually be found in the \IBMLAN\NETPROG directory.

BACKACC performs the following tasks:

Copies the NET.ACC file
Copies the NET.AUD file
Backs up Access Control Profiles for each drive to be converted to or from HPFS386
Deletes access control profiles for nonexistent directories

The syntax for BACKACC is:

BACKACC d:<pathname> /F:<target> /S

where:

d:: Specifies an optional drive letter.
<pathname>: Specifies the path to the directory or file of which permissions are to be backed up.
/F:<target>: Specifies a target file to store access control profile information to, which can be used as input for the RESTACC utility. If target is not an absolute path name, the default directory for target is the current working directory.
/S: Recursively backs up all the descendant subdirectories and is valid only if pathname points to a valid directory.

If you have multiple HPFS386-formatted drives, you must issue the BACKACC command specifying the drive letter for each drive.

The following example backs up NET.ACC and NET.AUD and updates the target file OS2_C.ACL with the access control information associated with C:\ and the subdirectories below it.

BACKACC C:\ /F:C:\BACKUP\OS2_C.ACL /A /S

Section 6.11.6 Restoring Access Controls describes how to restore the ACLs saved by BACKACC after the migration.

3.14 Save the DCDB