SunScreen EFS Release 3.0 Reference Manual

Previous: Command Access to the Screen
Next: ACE/Server Setup

SunScreen EFS 3.0 ACE/Client Rules

You can allow the ACE/Clients to contact the ACE/Servers to perform the SecurID authentication when configuring ACE/Server rules.

The following is an example of what you type to create another address group to contain the various ACE/Client and ACE/Agent hosts addresses, then create a rule that allows them to communicate with the ACE/Server(s) in the address group created above:

# ssadm edit configedit> add rule securid ace-clients ace-servers ALLOW ...

Again, the above assumes un-secured communication and relies on the variety of forms of encryption within the ACE/Client protocol itself; but if SunScreen SKIP security is also needed, the above simple rule will not suffice.

Previous: Command Access to the Screen
Next: ACE/Server Setup