How to prevent a binary from being executed once it is modified
Article ID: 101538
CA Privileged Access Manager - Server Control (PAMSC)CA Privileged Identity Management Endpoint (PIM)
This is an example how to use PIM to prevent execution of a program once its binary file was modified for whatever reason.
Release: Component: SEOSU
This you would accomplish using the PROGRAM class, e.g. AC> er program /opt/CA/AccessControl/bin/sesu audit(all) defaccess(none) owner(nobody) and you want to allow only certain users to execute the binary AC> authorize program /opt/CA/AccessControl/bin/sesu uid(tester) access(execute)