When attempting to add custom access control rules (such as set admin-user) to the User Store (ustore) or User Store Router (urouter) DSA configuration files, the changes are lost after a service restart.

Specifically, modifications made to the following files are overwritten:

/opt/brcm/iga/inst/cadir/dxserver/config/access/urouter.dxc
/opt/brcm/iga/inst/cadir/dxserver/config/access/ustore.dxc

IGA Xpress v15 before fixpack 6. 

During the igactl restart process, the application automatically reconfigures the service environment by refreshing the .dxc files from default templates. This process intentionally overwrites manual changes to ensure environment consistency.

A permanent fix that allows custom access configurations to persist is scheduled for release in Fixpack 6 for both the ustore and urouter DSAs.

Workaround

Until Fixpack 6 is available, you can prevent the automatic reconfiguration of these services by using the skip_reconfigure option. This prevents the installer from overwriting your manual settings during a service restart.

1. Follow steps from Troubleshooting IGA Xpress (skip_reconfigure) to enable skip_reconfigure
2. Manually apply the desired access control rules to the .dxc files in the inst directory:
   

   /opt/brcm/iga/inst/cadir/dxserver/config/access/urouter.dxc
   
   /opt/brcm/iga/inst/cadir/dxserver/config/access/ustore.dxc

3. Run igactl restart ustore to apply changes.
4. After testing is done remove
   

   opt/brcm/iga/patches/ustore/skip_reconfigure

   And restart ustore
   

   igactl restart ustore