Manualshelf

XYGATE Compliance PRO (XSW) Reference Manual

ManualsBrandsHP ManualsServerHP NonStop G-Series
201202203204205206207208209210
XYGATE
®
Compliance PRO
Reference Manual
Chapter 11. Access Analysis Mapping
XYPRO Technology Corporation 190 Proprietary and Confidential
S
A placeholder in the ACLGROUP for an expansion, such as \*.*,255.
X
A subordinate ACLGROUP referenced within the current ACLGROUP.
The Permission column will always contain "ALLOW" unless the NOT or DENY
keyword is present in an ACLGROUP.
All the selection criteria keywords are included in the output grid.
DOGROUPS | FOGROUPS | POGROUPS Query
The group type queries return a list of all the associated groups in the OSACL file.
There will be one row per each group.
If an asterisk ( * ) is present for items such as the AUDIT settings, the value is
defaulted to that set in the OSCONF file. For example, if a the group does not contain
the keywords AUDIT-ACCESS-PASS and AUDIT-ACCESS-FAIL, the values for these
keywords in the OSCONF are used by XOS and displayed by XSW.
The SUPER_OK value will always be ON unless the SUPERSUPEROK keyword in
the OSCONF file is set to OFF. Because this value is pulled from the OSCONF file, it
will always have an asterisk ( * ).
All the selection criteria keywords are included in the output grid.
11.5 Safeguard
Access Mapping for Safeguard can be performed on any collection that includes the
Safeguard Entity.
Note: Only files protected by Safeguard are included in the listing. In other words, files
that Safeguard will not make a ruling on will not be included in the output.
To determine if Safeguard would grant access to files on the list, you must examine
any applicable VOLUME, SUBBVOLUME, and DISKFILE Protection Records and the
global parameters such as DIRECTION-DISKFILE and COMBINATION-DISKFILE that
affect how Safeguard evaluates access attempts.
Note: XSW does not take into account the interplay between VOLUME,
SUBVOLUME, and DISKFILE Protection Records or the relevant Safeguard
global parameters. The access map returned is simply a list of files the user may
have access to, based on the file masks and the presence of the userid or alias
in each Protection Records ACL.
The Safeguard Access Analysis output grid includes the following columns.