Manualshelf

Safeguard Reference Manual (G06.24+, H06.03+ )

ManualsBrandsHP ManualsServerHP NonStop G-Series
461462463464465466467468469470
Security Group Commands
Safeguard Reference Manual520618-013
13-23
SET SECURITY-GROUP Command
-
(minus-sign) operates on existing ACL entries. The minus-sign form of
access-spec modifies the current default ACL. The authority entries
are removed from the default ACL entries for the users specified with
user-list.
DENY
denies the user IDs or user groups specified with user-list the access
authorities specified with authority-list.
authority-list
specifies the access authorities granted (or denied) to user-list.
authority-list can be any of:
authority
( authority [ , authority ] ... )
*
authority
can be either:
E[XECUTE]
O[WNER]
*
(asterisk) specifies both EXECUTE and OWNER.
AUDIT-ACCESS-PASS [audit-spec]
establishes an audit-spec for successful attempts to execute a restricted
command. You need not specify AUDIT-ACCESS-PASS because the
Safeguard software automatically audits all attempts to execute restricted
commands.
AUDIT-ACCESS-FAIL [audit-spec]
establishes an audit-spec for unsuccessful attempts to execute a restricted
command. You need not to specify AUDIT-ACCESS-FAIL because the
Safeguard software automatically audits all attempts to execute restricted
commands.
AUDIT-MANAGE-PASS [audit-spec]
establishes an audit-spec for successful attempts to manage a security
group-authorization record. This audit-spec specifies the conditions under
which an audit record is written to the audit file when an attempt to manage a
security group authorization record is successful.