CA ITCM maintains the integrity of an Intellisig by associating an encrypted hash with each script of the Intellisig in the database. The agent verifies the hashes and then executes each Intellisig. If a hash fails the verification, the agent declines to run the Intellisig and sends a message to the GUI to indicate this verification error as well as the details of the specific Intellisigs that failed the integrity checks.
Note: The hash is encrypted using the certificate x509cert://dsm r11/cn=manager signer,o=computer associates, c=us tagged with ManagerSigner. If you use custom x509 certificates, Intellisigs automatically use the custom certificate for encrypting the hash. Verify that have imported and distributed the custom certificates as per the instructions in the CA IT Client Manager Implementation Guide.
|
Copyright © 2013 CA.
All rights reserved.
|
|