Safeguard Reference Manual (G06.24+, H06.03+ )
Process and Subprocess Security Commands
Safeguard Reference Manual—520618-013
11-34
SHOW PROCESS and SUBPROCESS Commands
=SET ACCESS 86,2 (r,w,p,c) ; 86,1 DENY c; 86,* (r,w,c)
=SET ACCESS 33,255 (r,w,c)
=SET AUDIT-ACCESS-PASS all , AUDIT-ACCESS-FAIL local
=SHOW
This report shows:
These SET PROCESS commands specify:
•
The owner of the process name authorization record is user ID 86,2
(PRS.HARRY).
•
PRS.HARRY has all four access authorities (READ, WRITE, CREATE, and
PURGE).
•
User ID 86,1 is denied CREATE authority to the process name.
•
All members of group 86 (excluding users 86,2 and 86,1) have READ, WRITE, and
CREATE access authorities.
•
The group manager for group 33 has READ, WRITE, and CREATE access
authorities.
•
Two auditing specifications establish that audit records are written each time any
successful attempt or any local unsuccessful attempt is made to create a process
that has this process name or to open or stop a process running under this process
name.
To specify the process name to have these default attribute values (and to create the
authorization record), use ADD PROCESS.
SHOW PROCESS and SUBPROCESS Commands
SHOW PROCESS or SUBPROCESS displays the current default attribute values.
When you add an authorization record, the current default attribute values are used for
any attributes you do not specify in the ADD PROCESS or SUBPROCESS command.
To set the default attribute values to specific values, use the SET PROCESS or
SUBPROCESS command.
TYPE OWNER WARNING-MODE
PROCESS 86,2 OFF
AUDIT-ACCESS-PASS = ALL AUDIT-MANAGE-PASS = NONE
AUDIT-ACCESS-FAIL = LOCAL AUDIT-MANAGE-FAIL = NONE
033,255 R,W, C
086,001 DENY C
086,002 R,W, P,C
086,* R,W, C
SHOW [ / OUT listfile / ] { PROCESS | SUBPROCESS }