XYGATE Access Control Reference Manual
XYGATE
®
Access Control Reference Manual
Appendix C: The ACACL File
XYPRO Technology Corporation 174 Proprietary and Confidential
C31: EXECUTEHANGUP
This keyword will pass on a modem hangup request from the OBJECT program to the
terminal. This allows an audited TACL to be used on modem ports and have it hangup
after logoff. Without this keyword, modem hangup requests are ignored.
Example:
COMMAND DIALUP-TACL
DESCRIPTION "TACL FOR DIAL ACCESS"
USER GROUP,USER
OBJECT $SYSTEM.SYSNN.TACL
ACL TECH.*
START_LOGGED_OFF RESTART
TRACKUSERID
BANNER_CONNECT $SYSTEM.XYGATEAC.DIALBAN
STOPONERROR 60,66,140
CHECKCONNECTION 500 50
EXECUTEHANGUP
C32: FC
Using this keyword implements a simple Fix Command capability with history for any
OBJECT program that is run. (The FC# and FC? keywords implement increasingly
complex levels of FC processing.) To ensure FC’s proper operation, specify the
character at which FC is a legal command with FCPROMPT.
Example:
COMMAND SPOOLCOM
DESCRIPTION "SPOOLCOM AS OPER.MGR"
USER 100,255
OBJECT $SYSTEM.SYSTEM.SPOOLCOM
ACL 100,*
TIMEOUT 900
FCPROMPT ")"
FC
This XAC ACACL Command Entry starts SPOOLCOM as 100,255 (OPER.MGR). All
commands executed within SPOOLCOM are audited. If there is no command entered
within 15 minutes, SPOOLCOM will timeout (terminate). Only users in local group 100
can execute this ACACL Command Entry. Command history capability is enabled with
no command numbering. The close-parenthesis sign is the prompt at which FC can be
entered.
Note: Use of XAC’s FC, FC# or FC? keywords effectively disables an OBJECT
program’s native FC command (or adds it if the OBJECT program does not
have one). This may be necessary to maintain security in some situations.
Refer to the ALIAS, ALLOWCMD, and DENYCMD keywords in Appendix C: for
more information.
Session use of the FC keywords themselves is not an audited action. Only the
resulting actions of the FC command will be audited.