Manualshelf

G06.32 Software Installation and Upgrade Guide

ManualsBrandsHP ManualsServerHP NonStop G-Series
61626364656667686970
G06.32 Installation and Fallback Alerts
G06.32 Software Installation and Upgrade Guide546068-002
2-17
Safeguard Support for OSS Access Control List
STARTUP=SYSTEM and if your audit trails are not on $SYSTEM and no other
volumes are up, auditing is suspended. When the system is started, you must
intervene to resume auditing volumes. For detailed information on this and other
optional Safeguard installation procedures, see the T9750AER softdoc and the
Safeguard Administrator's Manual,
Section 10.
Fallback Considerations
There are considerations for possible fallback to a pre-G06.25 Safeguard T9750 SPR.
Compatibility with previous Safeguard SPRs is maintained. However, if the T9750AER
or later SPR is installed and the DISKFILE-PATTERN feature is used, you must
evaluate if equivalent nonpattern protection records are required after fallback. See the
T9750AER or later softdoc for details.
Safeguard Support for OSS Access Control List
The G07 version of Safeguard and the G06 version of Standard Security are enhanced
to support the OSS Access Control List (ACL) feature. A new security group,
SECURITY-OSS-ADMINISTRATOR, and a new Safeguard configuration attribute,
AUDIT-CLIENT-OSS, are provided to support this feature.
Fallback Considerations
After fallback, the AUDIT-CLIENT-GUARDIAN attribute, which is a synonym for
AUDIT-CLIENT-SERVICE, will no longer be applicable.
After fallback, if OSS-related operations are to be audited, enable the AUDIT-
CLIENT-SERVICE attribute if it is not already enabled.
Safeguard Password Enhancements (G06.29)
The G07 version of Safeguard and G06 version of Standard Security improve the
cryptology of the user passwords in the NonStop server environments.
New Attribute Defaults
The default values of certain attributes have been changed in the G07 version of
Safeguard and G06 version of Standard Security (starting in the G06.29 RVU) in order
to increase the “out of box” password security. Customers who do not wish to adopt the
new defaults can follow the normal migration steps for Safeguard. Customers using
Standard Security alone are impacted by this change.
Note. The Safeguard configuration attribute AUDIT-CLIENT-OSS is set to ON by default. If you
do not want to audit client subsystems other than OSS, you can disable the AUDIT-CLIENT-
GUARDIAN attribute after migration. To roll the audit file, use the SAFECOM NEXTFILE
command.