Authorization Stage Codes for Resource Access Events

Reference Guide › Audit Log Records › Authorization Stage Codes for Resource Access Events

Authorization Stage Codes for Resource Access Events

Authorization stage codes for resource access events describe at which stage CA ControlMinder decided to take action for the resource access event.

The following codes apply to this event type:

50—Security LABEL check of resource

51—Security LEVEL check of resource

52—Category check of resource

53—Resource DAYTIME check

54—OWNER check of resource

55—Resource ACL check

56—In resource group ACL check

57—User group in resource ACL

58—User group in resource group ACL

59—Resource UACC check

61—User is OPERATOR on resource

62—UACC check for Class of unprotected resource

63—Program Conditional Access

64—User '*' in resource ACL

65—User is AUDITOR on resource

69—No step that allowed access

70—OWNER check of resource's group

75—User '*' in resource group ACL

76—Resource denied ACL check

77—In resource group denied ACL check

78—User group in resource denied ACL

79—User group in resource group denied ACL

80—User '*' in resource denied ACL

81—User '*' in resource group denied ACL

82—Group of resource DAYTIME check

86—Resource calendar ACL check for user

87—Resource group calendar ACL check for user

88—Resource calendar ACL check for user groups

89—Resource group calendar ACL check for user groups

90—User * in resource calendar ACL

91—User * in resource groups calendar ACL

92—Attempt to rename the path of a protected resource

200—Class checks not active

201—Loading the user information

202—Resource in WARNING mode

203—Access for the resource is MAXIMUM_ALLOWED

204—Class in WARNING mode

210—Special kernel module load check

250—Executing an untrusted program

251—Using deniable parameter

252—Relative path specified by an _abspath user

253—Permitted sesudo job

254—sesudo command failed

440—Invalid calendar was detected

441—Calendar does not allow access

1050—Default Record Security Label Check

1051—Default Record Security Level Check

1052—Default Record Category Check

1053—Default Record Day and Time Check

1054—Default Record OWNER Check

1055—Default Record ACL Check for User

1056—Default Record Group ACL Check For User

1057—Default Record ACL Check for User Groups

1058—Default Record Group ACL Check for User Groups

1059—Default Record Universal Access Check

1061—Default Record OPERATOR Attribute Check

1062—Default Record Class Global Universal Access

1063—Default Record Program Conditional Access

1064—User '*' in _default record ACL

1069—No Rule Granting Access to Default Record

1202—Default Record in WARNING Mode

1250—Default Record is Set Untrusted

Copyright © 2013 CA Technologies. All rights reserved.