XYGATE Access Control Reference Manual
XYPRO Technology Corporation 43 Proprietary and Confidential
Chapter 3. Node-Conditional
Processing in the ACACL
File
All XYGATE products have a file that defines the security rules supported by the
product. There is an ACACL file per product per node.
In many HP NonStop server networks, the ACACL file for any given product will almost
be the same for every or almost every NonStop server in the network. Rather than
maintain many individual files, it is more convenient to maintain one master file and
then duplicate that master file to every installation.
To customize the master file for rules or userids or keywords that are unique to a
subset of NonStop server nodes in the system, use the node-conditional statements.
A node-conditional statement is a query: “If the name of the current node on which this
XYGATE installation is executing matches the node name or pattern specified, then
include this rule, keyword, or userid in the ACACL file when it is loaded into the
appropriate XYGATE module. If the node name does not match, do not include this
text when loading the ACACL file into the XYGATE module.”
Syntax:
#IF @NODE <conditional operator> "<node names or pattern>"
… text to be included if condition is met …
#ENDIF
3.1 Conditional Operators
A conditional operator defines how the specified node name will be evaluated.
=
An exact match between the individual node specified and the name of the node
on which the ACACL file is being loaded. You can only specify an individual,
non-wildcarded node name. If the names match, the conditional text will be
evaluated for that product and node.
NODE = "\WIRE" would only match \WIRE.
<>
An exact match between the individual node specified and the name of the node
on which the ACACL file is being loaded. You can only specify an individual,
non-wildcarded node name. If the names match, the conditional text will be
ignored for that product and node.
NODE <> "\DEV" would match any node except \DEV.