When your site uses LOGONBY rules, CA VM:Secure treats CP LOGON BY commands as being equivalent to LOGONBY Facility requests. However, in situations where CA VM:Secure is not available, for example during disaster recovery, you can use the CP LOGON command with the BY operand to allow access to shared virtual machines.
This support is useful if your site has multiple people sharing system management duties. It allows the use of the BY option on the CP LOGON command for logon to key system user IDs without having to remember the password for the user ID itself.
To implement this support, include a LOGONBY statement in key user directory entries (for example, MAINT and OPERATOR) that lists valid LOGON BY users while CA VM:Secure is down. Users logging on during this time use the CP form of LOGON BY (that is, LOGON userid BY userid), and will be prompted for the CP BYUSER password. If your site uses PEF, the password is first encrypted and then validated. If PEF is not implemented, CP validates the password.
When CA VM:Secure becomes available again, the LOGONBY statement is ignored and logons are processed through rules in the CA VM:Secure LOGONBY Facility.
|
Copyright © 2014 CA.
All rights reserved.
|
|