Safeguard Reference Manual (G06.24+, H06.03+ )
Security Group Commands
Safeguard Reference Manual—520618-013
13-26
SHOW SECURITY-GROUP Command
The SHOW SECURITY-GROUP report displays these attribute values:
OWNER gn,un
is the group number and member number of the user who will own this security
group authorization record.
AUDIT-ACCESS-PASS = a-spec AUDIT-MANAGE-PASS = a-spec
AUDIT-ACCESS-FAIL = a-spec AUDIT-MANAGE-FAIL = a-spec
are the conditions under which the Safeguard software will audit attempts to
execute restricted commands and attempts to manage this authorization record.
For more information about these fields for audit-spec, see the SET SECURITY-
GROUP Command on page 13-20.
user-spec [DENY] authority-list
is a current default ACL entry for the security group. For a full description, see
INFO SECURITY-GROUP Brief Report on page 13-15.
[ NO ACCESS CONTROL LIST DEFINED! ]
specifies no default ACL entries are defined. Use SET SECURITY-GROUP. . .
ACCESS to define default ACL entries. You can use ADD SECURITY-GROUP. . .
ACCESS to define ACL entries when you create a security group-authorization
record.
Example
This SHOW SECURITY-GROUP report displays the current default security group
attribute values. To display the report:
=SHOW SECURITY-GROUP
Figure 13-3. SHOW SECURITY-GROUP Report Format
TYPE OWNER
SECURITY-GROUP gn,un
AUDIT-ACCESS-PASS = a-spec AUDIT-MANAGE-PASS = a-spec
AUDIT-ACCESS-FAIL = a-spec AUDIT-MANAGE-FAIL = a-spec
user-spec [DENY] authority-list
user-spec [DENY] authority-list
. . .
. . .
[ NO ACCESS CONTROL LIST DEFINED! ]
Caution. If you do not specify an ACL for a security group, only the local super ID can execute
commands restricted to that security group.