Difference between CommandExecute policy versus AutoSysCommandISponsorFilters.txt

Article Id: 126282

Status: Published

Updated On: 06-02-2019 03:41

Products:

CA Workload Automation AE - Business Agents (AutoSys) , CA Workload Automation AE - Scheduler (AutoSys) , CA Workload Automation Agent

Issue/Introduction:

What is the difference between CommandExecute policy in EEM versus usage of AutoSysCommandISponsorFilters.txt

Environment:

Release: WAAGTA99000-11.4-Workload Automation-Agent AE-MSP
Component:

Resolution:

The difference between the CommandExecute policy versus AutoSysCommandISponsorFilters.txt is that when you adapt the AutoSysCommandISponsorFilters.txt file that this counts for everyone.
When using CommandExecute policy you can restrict commands and also to certain users.

For example if you want to allow user 'user1' to execute 'autoflags -a' command and also 'autorep -J' but no other commands.
This can be done by specifying following resource in the CommandExecute policy.

server/ACE/autoflags -a
server/ACE/autorep -J [^;]+$

Select 'Execute' as action'.
Turn on the flag 'Treat resource names as regular expressions'.

If you specify

server/ACE/autorep [^;]+$

then all options of autorep are allowed.