TCP (TCP) Properties

Use the TCP (TCP class) properties windows for creating, modifying, or viewing a record of this class. Each record defines a TCP/IP service such as mail, FTP, and HTTP. When the TCP class is being used for authorization, hosts can obtain services from the local host only if the TCP resources grant access. Also, users or groups on a local host can use the TCP/IP services to access remote hosts only if the TCP resources grant access. The TCP class controls both outgoing services and incoming services.
cminderpim14
Use the TCP (TCP class) properties windows for creating, modifying, or viewing a record of this class. Each record defines a TCP/IP service such as mail, FTP, and HTTP. When the TCP class is being used for authorization, hosts can obtain services from the local host only if the TCP resources grant access. Also, users or groups on a local host can use the TCP/IP services to access remote hosts only if the TCP resources grant access. The TCP class controls both outgoing services and incoming services.
This window contains the following fields in the General tab:
  • Name
    Defines the name of the resource. Indicates the name of the TCP/IP service.
  • Comment
    Defines extra information that you want to include in the record. CA Privileged Identity Manager does not use this information for authorization.
    Limit:
     255 alphanumeric characters
  • Owner
    Defines the owner of a record.
This window contains the following fields in the Default Access tab:
  • Permissions
    Defines the default access authority for the resource. The default access is granted to accessors who match either of the following criteria:
    • Are not defined to CA Privileged Identity Manager
    • Do not appear in the ACL of the resource.
This window contains the following fields in the Authorize tab:
  • Accessors
    Defines the access control list (ACL) for the resource. This list specifies the hosts for which the local host provides service and the access types that are allowed.
    Each element in the access control list contains the following information:
    • Host Name
      Defines a reference to a host, host group, host network, or host protection by name record.
    • Outgoing Connection
      Defines the accessor that has an ACL governing outbound traffic to the protected host.
    • ACL
      Defines the access authority for obtaining TCP service from the local host.
This window contains the following fields in the Audit tab:
  • Audit Modes
    Defines the types of access events that CA Privileged Identity Manager records in the audit log. You can select any combination of the following activities:
    • Audit Success
      Granted access requests.
    • Audit Failure
      Denied access requests (default).
    • Warning Mode
      Specifies whether Warning mode is enabled. When Warning mode is enabled on a resource, all resource access requests are granted. If an access request violates an access rule, a record is written to the audit log.
This window contains the following fields in the Time Restrictions tab:
  • Days Restriction
    Defines the native day restrictions that govern when an accessor can access the resource.
  • Restrictions
    Defines the native time restrictions that govern when an accessor can access the resource.
This window contains the following fields in the Information tab:
  • Update Time
    Displays the date and time when the record was last modified.
  • Updated By
    Displays the administrator who performed the update.
  • Create Time
    Indicate the date and time when a record gets created.