Previous PageTable Of ContentsNext Page

    CONTROL

.

CONTROL

--------

-

AUDIT----Fp {ON } [ACCEPT ]
------------------
[REJECT ]
------------------
[ALLRSLT]
------------
{OFF}

DEFER----Fp {ON }
------------
{OFF}

MANAGE---Fp {ON }
------------
{OFF}

RUN------Fp {ENABLE }
------------
{DISABLE}

SAFADMIN [USER] Userid [(DELETE]
---------
ACIGROUP acigroup [(DELETE]

SAFEPW --XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX

SYSOPER -Userid (DELETE

TEST-----Fp {ON }
------------
{OFF}

?

----------------------------------------------------------

    Fp -------- Specifies the FILEPOOL to be affected by
    ------------
    the changes to the CONTROL settings.

    Userid ---- The userid of the user to receive the
    ------------
    authorization specified.

    Acigroup -- ACIGROUP to receive the authorization
    ------------
    specified

    XXXXXXXX... - Four 8 character hexadecimal words that
    ------------
    specify the password needed for SafeSFS to
    ------------
    operate.

--


Purpose

Use the CONTROL command to change permanent settings in the SAFESFS CONTROL file and also to dynamically change settings in the SFS server(s) and the SafeSFS server. See individual subcommands for more details.

Authorization

SAFADMIN authorization.

Subcommands and Parameters

AUDIT:

Specifies that the audit settings in the SAFESFS CONTROL file and the current audit settings for the SFS server of the filepool specified are to be changed.

    Fp

The name of the SFS filepool to be affected by the command.

   

    ON

Indicates audit information is collected for the SFS filepool Fp.

    OFF

Turns off auditing for the SFS filepool Fp.

   

    ACCEPT

Only SFS requests that are accepted by SafeSFS are audited.

    REJECT

Only SFS requests that are rejected by SafeSFS are audited. REJECT is the default.

    ALLRSLT

All SFS requests are audited.


DEFER:

Specifies if SafeSFS is to defer to SFS, the SFS requests for the filepool specified. Requests are deferred if they are not specifically controlled by a SafeSFS rule.

    Fp

The name of the SFS filepool to be affected by the command.

   

    ON

Indicates SafeSFS will defer uncontrolled SFS requests to SFS

    OFF

Indicates SafeSFS will reject uncontrolled SFS requests.



MANAGE:

Specifies if SafeSFS is to control SFS user administration commands such as "ENROLL" and "MODIFY".

    Fp

The name of the SFS filepool to be affected by the command.

 

    ON

Indicates SafeSFS will control SFS user administration commands.

    OFF

Indicates SafeSFS will not control SFS user administration commands.


RUN:

Specifies if SafeSFS is to control SFS requests for the filepool specified.

    Fp

The name of the SFS filepool to be affected by the command.

   

    ENABLE

Indicates SafeSFS will control SFS requests.

    DISABLE

Indicates SafeSFS will not control SFS requests.


SAFADMIN:

Provides authorization for a user to perform SafeSFS Administrator commands and functions.

    USER Userid

The userid of the user to receive SAFADMIN authority. USER is the default

   

    ACIGROUP groupid

Specifies the ACIGROUP name of the ACIGROUP to receive SAFADMIN authority.


SAFEPW:

Provides authorization to run the SafeSFS product.

    xxxxx...

A password consisting of four, 8 character, hexadecimal words supplied by Safe Software.


SYSOPER:

Indicates where to route SafeSFS system operator messages.

    Userid

The userid of the virtual machine that should receive SafeSFS system messages.


TEST:

Indicates that SafeSFS should audit all SFS requests as if they were controlled by SafeSFS, but actually defer all SFS requests to SFS. The outcome of the requests is not affected by SafeSFS.

    Fp

The name of the SFS filepool to be affected by the command.

   

    ON

Indicates SafeSFS will audit and then defer all SFS requests.

    OFF

Turns TEST mode off.


?:


Indicates that SafeSFS should display the contents of the SAFESFS CONTROL file on the
issuing user's console.

Options:

    DELETE

Indicates that the control record and authorization are to be removed. The DELETE option is only valid with SAFADMIN and SYSOPER.



Return Codes

Return Code

Meaning

0

CONTROL command processed successfully.

4

Not authorized.

8

Command failed. The CONTROL FILE was not updated.

113

Invalid parameter.

114

Invalid option.


Usage Notes

  1. The CONTROL command updates CONTROL records in the SAFESFS CONTROL file. The changes to the CONTROL records and their associated functions take effect immediately.


  2. Some CONTROL records affect functions for the SAFESFS server only. Some CONTROL records only affect the functions of the SFS server specified on the CONTROL record. Other CONTROL records affect the functions of the SAFESFS server and all of the SFS servers controlled by the SAFESFS server.


  3. If an SFS server is unavailable when a CONTROL record that affects its functions is updated, the changes will take affect when the SFS server is next initialized.


Previous PageTable Of ContentsNext Page