Users unable to use sesu to root due to Error
search cancel

Users unable to use sesu to root due to Error

book

Article ID: 44635

calendar_today

Updated On:

Products

CA Virtual Privilege Manager CA Privileged Identity Management Endpoint (PIM) CA Privileged Access Manager (PAM)

Issue/Introduction

Issue/Problem/Symptoms: 

We've installed PIM 12.8+ on Linux/Unix when administrators try to issue "sesu -" to switch to root, an error is returned:

"Privileged ENTM User (root) is denied access by ENTM - sesu denied!."

All of our current policies and rules should allow this user sesu access. 

Environment:  

Linux and Unix 12.8 PIM Endpoints

Workaround:

The best workaround is to disable the Terminal Integration feature in seos.ini if you are not using it. It's under PUPMAgent section in the token EnableLogonIntegration token which needs to be set to 0 (zero). You can do this via a policy with command: env config;er CONFIG seos.ini section(PUPMAgent) token(EnableLogonIntegration) value(0)

Additional Information:

Configure Terminal Integration

Environment

Release: ACP1M005900-12.9-Privileged Identity Manager
Component: