Manualshelf

Safeguard Administrator's Manual (G06.29+, H06.08+, J06.03+)

ManualsBrandsHP ManualsServerHP NonStop G-Series
919293949596979899100
Managing Security Groups
Safeguard Administrator’s Manual523317-029
6-5
Adding Security Groups
Except for SYSOP.DALE and the super ID, all super-group members are now
prohibited from using the commands reserved for the SYSTEM-OPERATOR security
group. Because SYSOP.DALE has both EXECUTE and OWNER authority on the
access control list, he can execute these commands and also add other users to the
SYSTEM-OPERATOR security group.
You can define membership in the SECURITY-OSS-ADMINISTRATOR security group
by adding an authorization record for that group. For example, this command creates
the authorization record for the SECURITY-OSS-ADMINISTRATOR security group and
gives all authorities to TEST1.USER1 (204,001), TEST2.USER2 (240,002),
TEST3.USER3 (240,003), and TEST4.USER4 (240,004):
=ADD SECURITY-GROUP SECURITY-OSS-ADMINISTRATOR, &
OWNER SUPER.TEST, OBJECT-TEXT-DESCRIPTION ’’Record Created’’,&
AUDIT-ACCESS NONE, &
AUDIT-MANAGE-PASS ALL, &
ACCESS TEST1.USER1 (E,O); TEST1.USER2 (E); TEST1.USER3(O)
Verify the results of the command:
=INFO SECURITY-GROUP SECURITY-OSS-ADMINISTRATOR
The display shows:
You can define membership in the SECURITY-PRV-ADMINISTRATOR security group
by adding an authorization record for that group. For example, this command creates
the authorization record for the SECURITY-PRV-ADMINISTRATOR security group:
= ADD SECURITY-GROUP SECURITY-PRV-ADMINISTRATOR, ACCESS SECGRP.*
*
To verify the results of the command:
=INFO SECURITY-GROUP SECURITY-PRV-ADMINISTRATOR
LAST-MODIFIED OWNER STATUS
SECURITY-OSS-ADMINISTRATOR
24MAY06, 1:29 255,5 THAWED
240,001 E O
240,002 E
240,003 O
OBJECT-TEXT-DESCRIPTION = ’’Record Created’’
AUDIT-ACCESS-PASS = NONE AUDIT-MANAGE-PASS = ALL
AUDIT-ACCESS-FAIL = NONE
Note. The OBJECT-TEXT-DESCRIPTION attribute is supported only on systems running
J06.05 and later J-series RVUs, H06.16 and later H-series RVUs, and G06.32 and later G-
series RVUs. For more information about OBJECT-TEXT-DESCRIPTION attribute, see the
Safeguard Reference Manual.