Logon Access not being limited to users defined in users.allow
The "A||||6||LOCAL" line in the following output is the default there is no users.allow file entry that everyone matches against. That shouldn't be in there with other entries.
#/opt/quest/libexec/vas/sqlite3 /var/opt/quest/vas/vasd/vas_ident.vdb "select * from access_control;"
A||||6||LOCAL
A|G|EKC1\administrators|S-1-5-20-2096264109-819545743-2094694110-389559|2||LOCAL
A|G|EKC1\database1|S-1-5-20-2096264109-819545743-2094694110-366665|2||LOCAL
A|G|EKC2\database2|S-1-5-20-2053929589-334770668-1270368156-102083|2||LOCAL
Run the following:
/opt/quest/libexec/vas/vasd/vasac_helper --debug --debug-stderr -g5 unset vgp allow
It is just going to force a re-processing of the access control rules in the users.allow file
© 2024 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center