Changes the domain attributes.
chdom Attribute = Value ... Name
The chdom command modifies attributes of the domain that the Name parameter identifies. This command only modifies attributes of existing domains in the domain database. To change an attribute of a domain, specify the attribute name and the new value with the Attribute=Value parameter. If the specified attribute or attribute value is invalid, the chdom command does not modify the domain.
Although modification of the ID attribute of a domain is allowed, it can affect the security aspects of the system because processes and files might be using the current value of the ID. In general, only modify the ID of a domain if that the domain has not been used. When the system is operating in enhanced role-based access control (RBAC) mode, modifications made to the domain database are not used for security considerations until the database has been sent to the kernel security tables (KST) through the setkst command.
| Item | Description |
|---|---|
| ID | Specifies a unique integer that is used to identify the domain. |
| Item | Description |
|---|---|
| Name | Specifies the domain to be modified. |
The chdom command is a privileged command. Invokers of the command must have activated a role that has the following authorization to run the command successfully.
| Item | Description |
|---|---|
| aix.security.dom.change | Required to execute the command. |
| Mode | File |
|---|---|
| rw | /etc/security/domains |
chdom id=99 hrdom