|
|
|
CA Access Control stores information about whether a CLASS is active or inactive in the database. When CA Access Control starts, it passes a list of active classes to SEOS_syscall, so CA Access Control does not have to constantly intercept these classes. The only time CA Access Control intercepts a class is when a user changes the activity status of a class. If a class is inactive, access to the resource is not intercepted.
You can use the inactive class bypass with the following classes: FILE, HOST, TCP, CONNECT, and PROCESS.
| Copyright © 2012 CA. All rights reserved. |
|