search cancel

Autosys R12 - information regarding "as_safetool" syntax (i.e. "-i" or "-v")

book

Article ID: 228620

calendar_today

Updated On:

Products

CA Workload Automation AE

Issue/Introduction

CAUAJM_W_60377 Default security policies shared by all instances are missing.

Further, Broadcom has recommended using another command for additional policies. As you'll notice, the difference is the use of "-i" versus "-v".

$AUTOSYS/bin/as_safetool -b <EEM_PRI_NODE> -v <Version>
e.g. $AUTOSYS/bin/as_safetool -b <EEM_PRI_NODE> -v R11.3.5

While we already tested using "-i", please respond to the following questionnaire:

1) Is using "i" is a recommended way and will it serve our purpose?
2) Is the "-v" syntax is newly introduced (or otherwise)?
3) Are there documented scenarios, for when "-v" and/or "-i" should be used?
4) Are there any behavioural differences between "-i" and "-v" usages? 

Cause

configuration

Environment

Release : 12.X

Component : CA Workload Automation AE (AutoSys)

Resolution

Please find the answers here.

1) Is using "i" is a recommended way and will it serve our purpose?
Solution: Yes, "i" is the recommended way.

If you are importing the policy to a fresh EEM server where there is no Workloadautomation application registered, then after importing the 11.3.5 policies, running as_safetool with -i option would create the policies for all the imported instances.

If you are importing the policy to an EEM server that already has an R12 AE instance registered, then you have to run the as_safetool with -i option with each individual instance to create the instance-specific policies


2) Is the "-v" syntax is newly introduced (or otherwise)?
Solution:  "-v" option was introduced in the 11.3.6 SP7 release.



3) Are there documented scenarios, for when "-v" and/or "-i" should be used?

Solution: Yes


https://techdocs.broadcom.com/us/en/ca-enterprise-software/intelligent-automation/workload-automation-ae-and-workload-control-center/11-3-6-SP7/securing/ca-eem-security-data-replication-backup-and-migration/migrate-ca-workload-automation-ae-security-policies-from-release-11-3.html#concept.dita_e60875f20681c09a91390f1d91b7715d7eb2e70b_VerifyImportedSecurityPoliciesfromCAWorkloadAutomationAERelease113

https://techdocs.broadcom.com/us/en/ca-enterprise-software/intelligent-automation/autosys-workload-automation/12-0-01/reference/ae-commands/manage-security/as-safetool-command-manage-the-repository-of-ca-eem-security-policies.html


4) Are there any behavioral differences between "-i" and "-v" usages?
Solution:  "-i" creates all the Default policies and actions in EEM for the instance and EEM server that you specify.

"-v" is used for updating the actions that are added to the existing policies. If the new actions added for the later release are modified, then you need to run with the  -v option to make these actions default for the imported policies. 

This is not required in this case where there is no modification done in the target EEM server policy.