Simulating user privileges: SECSIMUL

This section describes how to configure access management when not using Central Governance.

This command generates simulated privileges for an individual user or a user group from the parameter setting commands recorded in the security file.

If the results of the simulation are satisfactory, you can use the SECVALID command to validate the privileges.

Syntax

SECSIMUL
[ID =     identifier,]
[TYPE =     {SECUSER | SECGROUP},]
[ORIGIN =     {BOTH | LOCAL | REMOTE},]
[FNAME =     filename,]
[MODE =     {BRIEF | DEBUG | FULL}]

Description

Use this command to generate simulated privileges for a user or used group.

Parameters

[ID = identifier]

Identifier of a SECUSER or SECGROUP command.

You can generate the privileges of a specific user or group.

The * and ? wildcard characters cannot be used.

[FNAME = filename]

Name of the security file to be used for the generate operation.

If this parameter is omitted, the name of this file is determined with reference to the most recent CONFIG command.

[MODE = {BRIEF | DEBUG | FULL}]

Display mode for generation messages.

  • BRIEF:displays minimal details (success or failure of the operation)
  • DEBUG: displays everything that occurs during the process (including actions and basic objects)
  • FULL: displays errors without explanation (indicates that a category cannot be found, but does not specify its name)

[ORIGIN = {BOTH | LOCAL | REMOTE}]

Origin of the user group: local or remote.

You can use this parameter to assign different profiles to users who can execute both local and remote actions.

Note: the REMOTE origin is not implemented in the current release.

[TYPE     = {SECUSER | SECGROUP}]

Type of user for whom you are generating privileges.

If you include the TYPE parameter with the command, the ID parameter is mandatory.

Related Links