DISPRULE is defined in the SECURITY CONFIG file.
Displays a message after every command; the message indicates whether the action was accepted or rejected and shows the rule governing the action. This parameter is useful for testing rules you have just installed; after you have established the rules for your site, the REJECT parameter is usually more practical.
Displays messages after commands that are governed by the NORULE record in the SECURITY CONFIG file.
Displays the rule that caused a command to be rejected.
The DISPRULE record displays information to your console about the rules that allow or disallow an action or indicates when no rules are found. It is valid only if you are using the CA VM:Secure Rules Facility. If there is no DISPRULE record in the SECURITY CONFIG file, no CA VM:Secure messages are displayed after any command request.
Examples
link vmanager 191 333 rr
CA VM:Secure displays the following messages:
CP COMMAND ‘LINK VMANAGER 191 RR’ ACCEPTED VIA SYSTEM RULE: ACCEPT DRACULA LINK (NOPASS HISTORY
DISPRULE NORULE
Note: For more information about creating a NORULE log message, see LOGMSG Command. For more information about using the NORULE ACCEPT record, see NORULE Record.
|
Copyright © 2014 CA.
All rights reserved.
|
|