XYGATE Access Control Reference Manual

ManualsBrandsHP ManualsServerHP NonStop G-Series

181

182

183

184

185

186

187

188

189

190

XYGATE

Access Control Reference Manual

Appendix C: The ACACL File

XYPRO Technology Corporation 156 Proprietary and Confidential

C12: AUDIT_OUTPUT_COUNT

This keyword defines the number of output lines that should be written to the audit logs

configured to receive DETAIL audits after each command is processed.

Syntax:

AUDIT_OUTPUT_COUNT <integer>

The Example below will log up to 14 lines of output after each command to any audit

file configured for DETAIL audits.

Example:

COMMAND NIGHTLY-BALANCE

DESCRIPTION "Generate balance, record balance, date info"

USER PROD.MANAGER

ACL $OPERATORS

OBJECT $WORK1.PROBJ.SMB045A

INPUT "DATE %1"

INPUT "UNIT %2"

INPUT "SHOWBALANCE"

INPUT "EXIT"

AUDIT_OUTPUT_COUNT 14

When the output lines are written to the DETAIL audit file, they are designated as

output lines by the prefix XAC-O.

If this keyword is omitted, no output lines will be written. This is the default condition.

C13: AUDITPROG

This keyword allows selective command auditing based on a list of programs to audit.

The program list is a series of programs to audit followed by NOT or DENY and a list

of programs for which auditing should be omitted. If this keyword is not used, all

programs will be audited.

Syntax:

AUDITPROG <program-list>

In the Example below, XAC will not log commands executed within IXF. The command

invocation of IXF will still be logged.

Example:

COMMAND TACL-MULTILAN

DESCRIPTION "TACL for multi-lan terminals"

USER GROUP,USER

OBJECT $SYSTEM.SYSNN.TACL

ACL *.*

START_LOGGED_OFF BLANKPASSWORD

CHECKCONNECTION 500 50

STOPONERROR 140,190,191

AUDITPROG \*.$*.*.* NOT $SYSTEM.*.IXF