search cancel

pim terminal policy issue

book

Article ID: 201745

calendar_today

Updated On:

Products

CA Virtual Privilege Manager CA Privileged Identity Management Endpoint (PIM)

Issue/Introduction

I registered the terminal policy on the linux server as follows.

################################
AC> sr terminal 10.10.10.166
(localhost)
Data for TERMINAL '10.10.10.166'
-------------------------------------------------- ---------
Defaccess: None
Warning: No
ACLs:
    Accessor Access
    users (GROUP) R
Audit mode: Failure
Owner: nobody (USER)
Create time: 19-Oct-2020 10:14
Update time: 19-Oct-2020 10:15
Updated by: root (USER)
################################

User belong to the users group.

################################
AC> sg users
(localhost)
Data for GROUP'users'
-------------------------------------------------- ---------
Userlist:
    games (USER)
    user (USER)
Owner: nobody (USER)
Create time: 26-Sep-2019 13:36
Update time: 19-Oct-2020 10:09
Updated by: root (USER)
################################

The users group is allowed access from the IP 10.10.10.166.
So I logged into the Linux server on the 10.10.10.166 PC. I have logged in as user.
However, I cannot log in with a log as shown below.

################################################
20 Oct 2020 11:19:10 D LOGIN user 69 2 10.10.10.166 SSH
################################################

Environment

Release : 12.8

Component : CA ControlMinder

Resolution

The group "users" only has read (R) access to the terminal.

Make sure it has write access as well.