Previous Topic: Failed Login Does Not Lock Out UserNext Topic: CA ControlMinder Recognizes All Users as root


Users Can Run Commands Outside Time Restrictions

Symptom:

I set time restrictions on a group, but group members can run CA ControlMinder commands outside the permitted times.

Solution:

During a restricted time period, CA ControlMinder prevents users from starting a new login session but cannot force users to disconnect. To prevent users from accessing resources or commands in a restricted time period, change the resource record for the resource or command to include time restrictions.

Note: CA ControlMinder checks if time restrictions exist in the USER or XUSER record for the user before it checks if time restrictions exist for GROUP or XGROUP to which the user belongs.