Safeguard is provided in native platform install packages, which include binary files, online man pages, installation files, and configuration file examples.
The install packages are located in the zip archive in two directories called:
- /server
- /agent
- /sudo_plugin
where <platform> is the name of the platform on which you are running Safeguard.
There are three different packages:
- qpm-agent package, which contains only the client (pmrun) and agent (pmlocald) components for Safeguard for Sudo.
- qpm-server package, which contains the server (pmmasterd), the client (pmrun) and agent (pmlocald), and the Sudo Plugin (qpm4u_plugin.so) components for Safeguard.
- qpm-plugin package, which contains the offline policy cache server (pmmasterd), the Sudo Plugin (qpm4u_plugin.so) components for Safeguard.
The Solaris server and agent packages have filenames that start with QSFTpmsrv and QSFTpmagt, respectively.
Once installed, the packaged files are placed in an installation directory under /opt/quest which contains subdirectories and files.
The platform directories contain the Safeguard installer packages for each platform supported by Safeguard.
Table 48: Privilege Manager kit directories
|
aix71-rs6k |
IBM®AIX 7.1, 7.2 |
|
freebsd-x86_64 |
FreeBSD on x86 64-bit architecture |
| hpux-hppa11 |
HP-UX 11.31 PA-RISC architecture |
| hpux11-ia64 |
HP-UX 11.31 Itanium architecture |
|
linux-aarch64 |
Linux on ARM 64-bit architecture |
|
linux-ia64 |
Linux on Itanium architecture |
| linux-intel |
Linux x86 |
| linux-ppc64 |
Linux on ppc little endian 64-bit architecture |
|
linux-ppc64le |
Linux on ppc little endian 64-bit architecture |
| linux-s390 |
Linux s390 |
| linux-x86_64 |
Linux on x86 64-bit architecture |
|
macos-x86_64 |
macOS on x86 64-bit architecture |
| Solaris-intel |
Solaris Intel architecture |
|
Solaris-sparc |
SolarisSPARC® architecture |
The following table lists files and directories installed on your system.
Table 49: Installed files and directories
| /opt/quest/qpm4u |
Install directory containing readme, default trial license file, examples directory, templates, etc. |
INSTALL |
| /etc/opt/quest/qpm4u/pm.settings |
Configuration file for Safeguard component communications. |
CONFIG |
| /etc/opt/quest/qpm4u/policy/pm.conf |
Default production policy file when using the pmpolicy policy type. |
CONFIG |
| /etc/opt/quest/qpm4u/policies |
Default production policy framework directory when using the pmpolicy type. |
CONFIG |
| /etc/opt/quest/qpm4u/policies/sudoers |
Default production policy file for the sudo policy type. |
CONFIG |
| /opt/quest/bin |
Install directory containing the binaries for user programs, such as pmrun, pmksh and pmvi.
These user programs only apply to Safeguard for Sudo. |
CONFIG |
| /opt/quest/sbin |
Install directory containing the binaries for admin programs, such as pmlog and pmreplay. |
INSTALL |
| /opt/quest/lib |
Install directory for shared libraries |
INSTALL |
| /opt/quest/libexec |
Install directory for dynamically loaded objects. |
INSTALL |
| /opt/quest/man |
This directory contains all the man pages for Safeguard daemons and programs. |
INSTALL |
| /opt/quest/qpm4u/examples |
This directory contains useful programs, scripts, or examples which show how to use Safeguard for Sudo. It also contains a sample configuration file which you can use as a template for implementing your own policies.
These scripts and examples only apply to Safeguard for Sudo. |
INSTALL |
| /opt/quest/qpm4u/license |
This file contains the license information (policy server only). For information about updating license information, see pmlicense. |
INSTALL |
| /opt/quest/qpm4u/qpm4u_eula.txt |
This file contains the End User License Agreement for the Safeguard product. |
INSTALL |
| /opt/quest/qpm4u/README. <architecture> |
This file contains the latest information about your version of Safeguard. |
INSTALL |
| /var/opt/quest/qpm4u/iolog |
This directory contains the keystroke logs. |
EVENTDATA |
|
/var/opt/quest/qpm4u/pmevents.db |
This file contains the event logs. |
EVENTDATA |
Sudo Plugin supports all sudo command options except those listed in the following tables:
