XYGATE Access Control Reference Manual
XYGATE
®
Access Control Reference Manual
Appendix C: The ACACL File
XYPRO Technology Corporation 211 Proprietary and Confidential
C79: START_LOGGED_ON
This keyword is used with TACL only and causes the TACL started by XAC to be
started logged on to the userid specified in the USER entry for the ACACL Command
Entry being executed. It also allows the XYGATEAC process to respond to TACL
DEVICEINFO calls with the true device type of the terminal which XYGATEAC has
opened. This keyword cannot be used with the START_LOGGED_OFF keyword.
This keyword is not available with the C30 Guardian NSK Operating System.
All TACLs must have either START_LOGGED_ON or START_LOGGED_OFF.
Example:
COMMAND TACL-SUPER
DESCRIPTION "TACL AS SUPER.SUPER"
USER SUPER.SUPER
OBJECT $SYSTEM.SYSNN.TACL
ACL \*.TECH.*
NULLNULLSTOP TRACKUSERID BLANKPASSWORD
OPENSBYOBJECTS $*.*.*
VERIFYUSER \*.*.* NOT SUPER.SUPER
START_LOGGED_ON
C80: STOPIFAUDITERROR
This keyword will terminate an XAC session if no DETAIL audit entries can be written
because of audit log errors. If DETAIL is set for two or more audit files, at least one
must be available in order to continue. STOPIFAUDITERROR only applies to DETAIL
audits, not INVOKE audits.
This keyword is useful when certain sensitive ACACL Command Entries should not be
executed if there is no audit log available.
Example:
COMMAND TACL-SUPER
DESCRIPTION "SENSITIVE TACL"
USER SUPER.SUPER
OBJECT $SYSTEM.SYSNN.TACL
ACL $TECH ALIAS:"Roger"
NULLNULLSTOP START_LOGGED_ON TRACKUSERID
OPENSBYOBJECTS $*.*.*
STOPIFAUDITERROR
ACCONF Contents:
AUDIT $SYSTEM.XYGATEAC.AUDIT
If the file $SYSTEM.XYGATEAC.AUDIT becomes unavailable, such as when there is
no disk space available, XAC would terminate on the first command with an error 43.