|
|
|
In the [seoswd] section, the tokens determine the behavior of the Watchdog.
Specifies the interval, in seconds, that the watchdog waits for a response from the main daemon. When elapsed, the watchdog sends a signal to the main daemon.
Default: 60
Specifies whether to scan programs and files at specific intervals.
If the token value is no, the watchdog performs interval scanning; if yes, it does not scan at intervals.
Note: If you do not specify scan times with the PgmTestTime or SecFileTestTime tokens, and this token is set to yes, the watchdog does not scan trusted programs or secured files, respectively.
Default: no
Specifies the period, in seconds, after the last event and before checking programs again. The program rests to prevent system overload.
Default: 10
Specifies the time interval, in seconds, between rescanning of trusted programs.
Note: If the value equals to or is greater than one day (86400 seconds), IgnoreScanInterval defaults to yes.
Default: 18000 (5 hours)
Specifies the start time, in hh:mm format, of the first trusted program scan.
If you do not set this token, the Watchdog performs the first scan shortly after startup.
No default.
Specifies fixed scan times, in hh:mm format, for trusted programs. You can specify more than one scan time by separating them with spaces.
Note: If you do not specify scan times, and you set the IgnoreScanInterval token to yes, the Watchdog does not scan trusted programs.
No default.
Specifies the interval, in seconds, to verify that the policyfetcher daemon is running.
Default: 600
Specifies the time interval, in seconds, between successive reads by the Watchdog of the seos.ini tokens.
Default: 86400 (1 day)
Specifies the period, in seconds, after the last event and before checking secured files again. The Watchdog rests in order to prevent system overload.
Note: If you do not specify scan times, and you set the IgnoreScanInterval token to yes, seoswd does not scan secured files.
Default: 10
Specifies the time interval, in seconds, between rescanning of secured files.
Default: 36000 (10 hours)
Specifies the start time, in hh:mm format, of the first scan of secured files.
If no value is given, the Watchdog performs the first scan a short time after CA Access Control daemons start.
No default.
Specifies fixed scan times, in hh:mm format, for secured files. You can specify more than one scan time by separating them with spaces.
No default.
Specifies the time interval, in seconds, between Watchdog checks of the daemon seosd.
Important! Do not modify this token by yourself because incorrect value may cause major problems in CA Access Control operation. For assistance, contact CA Support at http://ca.com/support.
Default: 60
Specifies the interval, in seconds, between scans after a HUP signal triggers a one‑time scan on demand, to protect the system against overload.
Note: Scan on demand is performed both on trusted programs and secured files.
Default: 60
Determines whether the Watchdog should attempt to untrust a program or file, even though it cannot find it (for example, if the file was deleted or the relevant NFS partition is not mounted).
Valid values include the following:
yes-Attempt to untrust the missing file.
no-Do not attempt to untrust the missing file.
Default: yes
Specifies whether to protect the authentication daemon.
Values: yes, no
Default: no
Specifies the interval, in seconds, to verify that the authentication daemon is running.
Default: 600
Specifies whether CA Access Control Watchdog checks the time of the last file status change of trusted programs and secure files.
Valid values are yes or no.
Default: no
| Copyright © 2012 CA. All rights reserved. | Tell Technical Publications how we can improve this information |