Two types of override processing are available during of an active enforcement session, the OVERRIDE command and internal processing to override the prefix specification requirements for bracketed template compliance. Both features are implemented through a combination of CA IDMS security and task definition established at product installation. The OVERRIDE command is associated with the ESXAOVE task and the internal prefix override is associated with the ESXPFIX task.
To implement these features, task category resources for ESXAOVE and ESXPFIX must be defined to your system catalog and access privileges granted to users allowed to override enforcement compliance. If resources are not defined in your catalog, anyone issuing the OVERRIDE command can bypass compliance to enforcement standards. For bracketed templates, entry of the prefix will be required to pass enforcement.
For additional information on bracketed templates and security, see Enforcement Structure and "Security Options". The OVERRIDE command is discussed in Active Enforcement.
|
Copyright © 2013 CA.
All rights reserved.
|
|