|
|
|
The accumulative group rights option (ACCGRR) affects how CA Access Control checks a resource's ACL. If ACCGRR is enabled, CA Access Control checks the ACL for the authorities granted from all the groups to which the user belongs. If ACCGRR is disabled, CA Access Control checks the ACL to see if any of the applicable entries contain the value none. If so, access is denied. Otherwise CA Access Control ignores all group entries except the first applicable one in the access control list. By default the option is enabled.
To enable the ACCGRR option, you can use the following selang command:
setoptions accgrr
To disable the ACCGRR option, you can use the following selang command:
setoptions accgrr‑
| Copyright © 2012 CA. All rights reserved. | Tell Technical Publications how we can improve this information |