Safeguard Reference Manual (G06.24+, H06.03+ )

ManualsBrandsHP ManualsServerHP Integrity NonStop H-Series

501

502

503

504

505

506

507

508

509

510

Event-Exit-Process Commands

Safeguard Reference Manual—520618-013

15-28

Processing of Authentication Requests

If the event-exit process is disabled while a request is pending, the request is allowed

to complete, providing it does so within the timeout interval. If a timeout occurs and the

request is from a deniable user, a ruling of NORECORD and a status of NOLINK is

returned to PROTECTION_CHECK_. If a timeout occurs and the request is from an

undeniable user, a ruling of YES is assumed, and the access attempt is allowed to

proceed, subject to a Safeguard access check.

If invalid data is returned in a reply from the event-exit process, an EMS message is

sent to identify the problem. If the request is from a deniable user, a ruling of

NORECORD and a status of NOLINK is returned. If the request is from an undeniable

user, a ruling of YES is assumed, and the access attempt is allowed to proceed,

subject to a Safeguard access check as described in Processing of Authorization

Requests on page 15-26.

Warning Mode Interaction

Safeguard warning mode has no effect on rulings made by the event-exit process.

Warning mode rulings are applied only after the event-exit process has ruled and the

SMON performs a subsequent access check. For example, if warning mode is in effect

and the event-exit process denies access, the access attempt is denied. If warning

mode is in effect and the event-exit process grants access, but the SMON denies

access, the access is allowed because of warning mode. For more information about

warning mode, see the Safeguard Administrator’s Manual.

Auditing of Authorization Events

If the Safeguard software is configured for auditing of the object being accessed, audit

records are generated for access attempts on that object when Safeguard is involved

in the ruling.

If the event-exit process responds NO to an access attempt, the failure is not audited in

Safeguard because the event exit and SMON auditing are not integrated. If the event-

exit process responds YES or NORECORD, the Safeguard subsystem rules on the

request, and auditing is performed as specified for the object.

Therefore, the basic concept in auditing is that if Safeguard is involved in the ruling,

auditing is applied as specified. If Safeguard is not involved in the ruling, no auditing is

performed.

Processing of Authentication Requests

When ENABLE-AUTHENTICATION-EVENT is ON, authentication requests are routed

to the event-exit process. Both interactive and programmatic logon authentication

requests are sent to the event-exit process. Unlike authorization events, the rulings on

these events are the sole responsibility of the event-exit process. The Safeguard

software does not participate in authentication rulings.

However, if the Safeguard subsystem is configured to communicate with the $CMON

process, it sends a prelogon message to $CMON and awaits a reply before routing the