An access control list (ACL) is a list that specifies who and what is authorized to access Oracle Tuxedo system objects. The ACL enables a system manager to administer security through authenticating users, setting permissions, and controlling access. The Oracle Tuxedo Administration Console ACL objects allow the system manager to create and configure ACL objects. These objects are grouped into the following major categories:
• ACL Principals (users or domains)
•
• Group ID (TA_GROUPID) (optional)A decimal number representing the ACL group specified in the Group Name (TA_GROUPNAME). A value of 0 indicates the default group other. If not specified at creation time, it defaults to the next available (unique) identifier greater than 0.0 is reserved for a group named other which is provided by Oracle Tuxedo. (You can add users to this group but you cannot modify or delete the group.)The users and remote domains in an application that need authentication and authorization are collectively known as principals. To join an application as a specific user, it is necessary to present a user-specific password.
• Password (TA_PRINPASSWD) (optional)* (wildcard character)tpsysusr (logs you in as the Oracle Tuxedo application administrator)typsysop (logs you in as the Oracle Tuxedo application operator)Oracle Tuxedo reserves principal client names for the administrator and operator of a Tuxedo application. The name tpsysadm logs in the associated user as the administrator; tpsysop logs in the associated user as the operator. If you plan to use either of these names, be sure to specify it in this field. If you do not, authentication will fail and the designated user will not be able to log in as the administrator (or operator).A group ID number that specifies the group to which a principal belongs. A value of 0 indicates the default group other. If not specified at creation time, the default value 0 is assigned.0 (assigned to group other)0 is reserved for a group named other which is provided by Oracle Tuxedo. If you do not assign principals to a group, they will be assigned, by default, to group other.This field displays the state of your ACL principal. An ACL principal may be in only one state: VALID.
• ACL Entity Type (TA_ACLTYPE) (optional)A comma-separated list of numeric IDs for groups that are permitted access to the associated entity.