Application Security › Multiple UNIX or Linux Groups › Sample Procedure for Controlling Application Access Using Multiple UNIX or Linux Groups

Sample Procedure for Controlling Application Access Using Multiple UNIX or Linux Groups

The following is a sample procedure for controlling application access using multiple UNIX or Linux groups:

1. Create two UNIX or Linux groups:
   • mktg—The marketing group
   • acct—The accounting group
2. Create a unique CA Gen Administrator for each group.
3. Assign each UNIX or Linux ID to one of the groups.
4. Create a directory for each group's applications. The CA Gen Administrator owns the directory for their group.

   Copy the p3270keys file into the group's application directory.

5. Create a /bin directory named in each group's application directory.
6. Copy the AEF executable, called aef, into the /bin directory and change the permission to:

   -rws--x--
   

7. Change the owner to the group's CA Gen Administrator, and the owning group to the group name.
8. Create an /inqload subdirectory and an AEENV file in the group's directory.
9. Install the group's applications in the /inqload subdirectory
10. Each group member should access their new environment and executables using the correct environment variable settings.