Syntax
pmverifyprofilepolicy [-v | [-c][-z on|off[:<pid>]]] [-f <filename>] [-p <policydir>]
Description
Use pmverifyprofilepolicy to verify the syntax and structure of the policy file and check whether a particular command will be accepted or rejected. The policy is assumed to match the format of the default profile policy; if it is not in the expected format, then it displays an error for each file that is missing or is not in the correct format.
Options
pmverifyprofilepolicy has the following options.
Option | Description |
---|---|
-c |
Displays output in csv, rather than human-readable, format. The following line displays for each syntax error encountered: PMCHECKERROR,<filename>,<linenumber>,<error_description> The overall result displays in the following format: PMVERIFYPROFILERESULT,<result>,<description> where result can be: 0:success or -1:fail For each file expected to contain data only, it prints the following line to stdout for each statement found in the file that is not a comment or variable assignment: PMVERIFYPROFILECHECK,<filename>,<linenumber>,<description> For each file expected to be unchanged, it prints the following line to stdout: PMVERIFYPROFILENOMATCH,<filename>,<linenumber>,<description> |
-f <filename> |
Provides an alternative policy filename to check. If not fully qualified, this path is interpreted as relative to the policydir, rather than to the current directory. |
-p <policydir> |
Forces pmverifyprofilepolicy to search for a different policy directory for include files identified by relative path. The default location is the policydir setting in pm.setting. |
-v |
Prints the Privilege Manager for Unix version and exits. |
-z |
Enables or disables debug tracing, and optionally sends SIGHUP to running process. Before using this option, see Enabling program-level tracing. |