Difference between CommandExecute policy versus AutoSysCommandISponsorFilters.txt


Article ID: 126282


Updated On:


EMBEDDED ENTITLEMENTS MGR CA Workload Automation AE - Business Agents (AutoSys) CA Workload Automation AE - Scheduler (AutoSys) CA Workload Automation Agent


What is the difference between CommandExecute policy in EEM versus usage of AutoSysCommandISponsorFilters.txt


Release: WAAGTA99000-11.4-Workload Automation-Agent AE-MSP


The difference between the CommandExecute policy versus AutoSysCommandISponsorFilters.txt is that when you adapt the AutoSysCommandISponsorFilters.txt file that this counts for everyone.
When using CommandExecute policy you can restrict commands and also to certain users.

For example if you want to allow user 'user1' to execute 'autoflags -a' command and also 'autorep -J'  but no other commands.
This can be done by specifying following resource in the CommandExecute policy.
server/ACE/autoflags -a
server/ACE/autorep -J [^;]+$
Select 'Execute' as action'.
Turn on the flag 'Treat resource names as regular expressions'.

If you specify
server/ACE/autorep [^;]+$
then all options of autorep are allowed.