|
|
|
The information that CA Access Control uses about users and groups is stored both in the CA Access Control database and in the host operating system. The host operating system information stores are called enterprise user stores, or just enterprise stores. By default, CA Access Control is configured so that it does not use the enterprise stores. You can, however configure CA Access Control so that if it cannot find a user or group defined in its database, it looks for, and uses the information from, the users and the group memberships defined in the enterprise stores.
Note: CA Access Control uses information from the enterprise stores but only writes to them if you use selang command in the native environment.
When checking for authorization, CA Access Control always checks for accessors defined in its own database before it checks the enterprise store: if you have an enterprise user with the same name as a user defined in the CA Access Control database, the enterprise user is ignored by CA Access Control.
| Copyright © 2012 CA. All rights reserved. |
|