Safeguard Reference Manual (G06.24+, H06.03+ )

Safeguard Subsystem Commands

Safeguard Reference Manual—520618-013

16-11

ALTER SAFEGUARD Command

FIRST-ACL

specifies that the Safeguard software is to determine access based on the

first ACL it finds.

ALL

specifies that all consulted ACLs must grant the requested access for the

success of the operation.

ACL-REQUIRED-PROCESS { ON | OFF }

defines whether the absence of an ACL for a process or subprocess causes

the denial of access to that process or subprocess. The initial value is OFF.

(The absence of ACLs reverts operation to Guardian rules.)

CHECK-VOLUME { ON | OFF }

defines whether the volume ACL is consulted to determine access to volumes,

subvolumes, and disk files. The initial value is OFF. (Volume ACLs are not

consulted.)

CHECK-SUBVOLUME { ON | OFF }

defines whether the subvolume ACL is consulted to determine access to

subvolumes and disk files. The initial value is OFF. (Subvolume ACLs are not

consulted.)

CHECK-FILENAME { ON | OFF }

defines whether the disk file ACL is consulted to determine access to disk files.

The initial value is ON. (Disk-file ACLs are consulted.)

DIRECTION-DISKFILE { VOLUME-FIRST | FILENAME-FIRST }

defines the direction in which the Safeguard software searches for an ACL to

determine access to volumes, subvolumes, and disk files. DIRECTION-

DISKFILE applies only when two or more of the following attributes are ON:

CHECK-VOLUME, CHECK-SUBVOLUME, and CHECK-FILENAME. The initial

value for DIRECTION-DISKFILE is VOLUME-FIRST.

VOLUME-FIRST

specifies that volume, subvolume, and disk file ACLs are consulted, in that

order.

FILENAME-FIRST

specifies that disk file, subvolume, and volume ACLs are consulted, in that

order.