Manualshelf

XYGATE User Authentication Reference Manual

ManualsBrandsHP ManualsServerHP NonStop G-Series
61626364656667686970
XYPRO Technology Corporation 39 Proprietary and Confidential
Chapter 3. Configuring Control Logons
Based on the Ancestor
Program
ANCESTOR is an optional criterion. There is an originating process for every program
that runs on the NonStop server.
3.1 Procedure
When creating XUA rules, the ANCESTOR specification is used to make a rule that
applies to every process started by an ancestor, such as all TCP/IP sessions or all
NetBatch program runs.
Syntax:
ANCESTOR <object file of the requestor’s ancestor>
In the Example below, if the APPLICATION userid (APP.*) is used to log on to a
NetBatch session, then XYGATEUA will permit it
Example: How to allow logon to Netbatch session
UAGROUP Application-Id-to-Netbatch
DESCRIPTION "Allow Application Ids to logon to Netbatch"
FROM_USER 0,0
TO_USER APP.*
ANCESTOR $SYSTEM.SYSTEM.NETBATCH
RESULT_ALLOWED
Refer to the ANCESTOR keyword discussion on page 257 in Appendix B:The
UAACL File.”