Chat now with support
Chat with Support

Safeguard for Sudo 2.0 - Administrators Guide

One Identity Privileged Access Suite for Unix Introducing Privilege Manager for Unix Introducing Privilege Manager for Sudo Planning Deployment Installation and Configuration
Download Privilege Manager for Unix Software Packages Download Privilege Manager for Sudo Software Packages Quick Start and Evaluation Configure a Primary Policy Server Configure a Secondary Policy Server Install PM Agent or Sudo Plugin on a Remote Host Remove Configurations
Upgrading Privilege Manager System Administration Managing Security Policy The Privilege Manager for Unix Security Policy Advanced Privilege Manager for Unix Configuration Administering Log and Keystroke Files InTrust Plug-in for Privilege Manager Troubleshooting Privilege Manager for Unix Policy File Components Privilege Manager Variables Privilege Manager for Unix Flow Control Statements Privilege Manager for Unix Built-in Functions and Procedures Privilege Manager Programs Installation Packages Unsupported Sudo Options Sudo Plugin Policy Evaluation About us

host

Description

Type string READONLY

host identifies the host name where the user has requested to run the command. The value is set to the host name selected by the pmrun –h <hostname> option, and defaults to nodename. You may expand it to a fully qualified name, if shortnames are not used.

Example
# If the requested host is not in the allowed_hosts list, reject the command 
allowed_hosts = {“hosta.test.com”, “hostb.test.com”, “hostc.test.com”}; 
if ( host !in allowed_hosts ) 
{ 
   reject “Commands on host “ + host + “ are not allowed. \n”; 
}
Related Topics

runhost

hour

Description

Type integer READONLY

hour contains the hour the request was submitted (0 – 23).

Example
if (hour == 12) 
{ 
   // require the users password from 12:00 to 12:59 
   if(!(userpasswd()) 
   reject; 
} 
accept;
Related Topics

dayname

minute

day

month

year

time

date

masterhost

Description

Type string READONLY

masterhost contains the host name of the host running pmmasterd.

Example
printf("Privilege Manager is authorizing your request on host: %s\n",masterhost); 
accept;

masterversion

Description

Type string READONLY

masterversion contains the description of Privilege Manager policy server host.

Example
printf("Privilege Manager %s is authorizing your request on host %s\n", 
   masterversion, masterhost); 
accept;
Related Documents