XYGATE Access Control Reference Manual
XYGATE
®
Access Control Reference Manual
Appendix C: The ACACL File
XYPRO Technology Corporation 129 Proprietary and Confidential
!*** NOTE **** This disables SQLCI's internal FC
!All commands will be audited BUT only ONE-LINE commands are permitted.
!Comment-out FC and FCPROMPT to return to SQLCI's internal FC.
FC? FCPROMPT ">>"
COMMAND MEDIACOM-255
!This command is designed to let privileged users have access to
!an audited MEDIACOM running as SUPER.SUPER
DESCRIPTION "MEDIACOM as SUPER.SUPER"
USER 255,255
OBJECT $SYSTEM.SYSNN.MEDIACOM
ACL $SUPER
PROMPT "'(',PAID,')','-',FC#,CR"
FC#
FCPROMPT "?"
TIMEOUT 1800
PASSWORDTIMEOUT 300
OPENSBYOBJECTS $SYSTEM.SYSTEM.SQLCOMP
COMMAND FUP-GROUP-MANAGER
!This command is designed to let group managers use the inherent
!privileges of FUP for their group in a keystroke audited manner.
!By not assigning *,255 userids and by putting anyone you want to have
!that privilege on the ACLGROUP $GRPMGR, you can ensure that users
!who need the privileges can have them in an audited fashion.
DESCRIPTION "FUP for special privileges for the group"
USER GROUP,255
OBJECT $SYSTEM.SYSnn.FUP
ACL $GRPMGR
FC?
FCPROMPT "-"
TIMEOUT 1800
VERIFYUSER $EVERYONE
COMMAND XMA_MANAGER
!This command is designed to set up a macro for users that
!administer XYGATE/MA.
DESCRIPTION "XYGATE/MA Manager"
USER 232,52 !This should be XYGATE/MA owner
OBJECT $SYSTEM.SYSNN.TACL
ACL $SECURITY
SUPPRESSUNTILPROMPT
NOCOPYRIGHT
QUIET
START_LOGGED_ON
INPUT "#SET #BREAKMODE DISABLE" !Disable break key
!Fix the line below to point to your XYGATE/MA installation subvol
INPUT "RUN $SYSTEM.XYGATEMA.XMA INSTALL"
!The line below starts the XMA_manager macro
INPUT "XYGATEAC_RUN_MACRO -EXIT -PLAIN -BREAK xma_manager"
!If macro times out, do not send timeout to starting process
PASSONTIMEOUT OFF
OPENSBYOBJECTS \*.$*.*.* !Allow all subordinate to be started
VERIFYUSER $EVERYONE
TRACKVOLUME
PASSWORDTIMEOUT 60