Use the ENABLE record to control optional CA VM:Secure security interfaces.
ENABLE [PWPHRASE] [COUPLE] [FOR] [TRSOURCE] [RDEVCTRL]
ENABLE is defined in the SECURITY CONFIG file.
Specifies that password phrases may be defined in any interface where passwords are assigned or changed. If PWPHRASE is not specified then only traditional passwords may be defined.
Specifies that COUPLE rules may be defined in a system level RULES file. CA VM:Secure will authorize requests to connect a virtual network interface card device to a lan or virtual switch. Connections are authorized for both explicit CP COUPLE commands and for implicit requests from NICDEF directory statements.
Specifies that FOR command rules may be defined.
Specifies that RDEVCTRL rules which authorize access to real devices may be defined in a system level RULES file.
Specifies that TRSOURCE rules may be defined in a system level RULES file. User IDs authorized with a rule to use the TRSOURCE command must have class C command privileges.
When the product server is started, it notifies the Control Program as to which types of security interfaces are processed by CA VM:Secure. The ENABLE statement controls this notification process. If a particular token is omitted, then the native CP access control action is taken for that type of security call. If the token is specified, then CA VM:Secure will look for a rule to control or prohibit the access.
Note: For more information about the Rules Facility, and the ENABLE record, see the Rules Facility Guide.
|
Copyright © 2014 CA.
All rights reserved.
|
|