Safeguard Reference Manual (G06.24+, H06.03+ )
Security Group Commands
Safeguard Reference Manual—520618-013
13-7
ADD SECURITY-GROUP Command
authority-list
specifies the access authorities to be granted (or denied) to user-list.
authority-list can be either:
authority
( authority [ , authority ] ... )
authority
is either:
E[XECUTE]
O[WNER]
AUDIT-ACCESS-PASS [audit-spec]
changes the audit-spec for successful attempts to execute a restricted
command. You need not specify AUDIT-ACCESS-PASS because the
Safeguard software automatically audits all attempts to execute restricted
commands.
AUDIT-ACCESS-FAIL [audit-spec]
changes the audit-spec for unsuccessful attempts to execute a restricted
command. You need not specify AUDIT-ACCESS-FAIL because the Safeguard
software automatically audits all attempts to execute restricted commands.
AUDIT-MANAGE-PASS [audit-spec]
changes the audit-spec for successful attempts to manage this
authorization record. The form of audit-spec is:
{ ALL | LOCAL | REMOTE | NONE }
For a description of the audit-spec variables, see the SET SECURITY-
GROUP Command on page 13-20. Omitting audit-spec specifies NONE.
AUDIT-MANAGE-FAIL [audit-spec]
changes the audit-spec for unsuccessful attempts to manage this
authorization record. The form of audit-spec is:
{ ALL | LOCAL | REMOTE | NONE }
For a description of the audit-specs, see the SET SECURITY-GROUP
Command on page 13-20. Omitting audit-spec specifies NONE.
For a complete description of the group-attributes, see the SET SECURITY-
GROUP Command on page 13-20.
Note. Specifying ACCESS access-spec with ADD SECURITY-GROUP does not override
the current default ACL (established with SET SECURITY-GROUP). Instead, any ACL entries
specified with ADD SECURITY-GROUP modify the template of current default settings.