aix:powersc
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
aix:powersc [2025/08/21 14:13] manu [PowerSC standalone command line] |
aix:powersc [2025/10/01 15:40] (current) manu [Server installation] |
||
|---|---|---|---|
| Line 109: | Line 109: | ||
| powersc:x:10000:qualysagent | powersc:x:10000:qualysagent | ||
| - | [root@lnxpwrsc01 powersc]# pscuiserverctl set logonGroupList powersc | + | [root@lnxpwrsc01 powersc]# pscuiserverctl set logonGroupList powersc,root |
| - | logonGroupList=powersc | + | logonGroupList=powersc,root |
| - | [root@lnxpwrsc01 powersc]# pscuiserverctl set administratorGroupList powersc | + | [root@lnxpwrsc01 powersc]# pscuiserverctl set administratorGroupList powersc,root |
| - | administratorGroupList=powersc | + | administratorGroupList=powersc,root |
| </cli> | </cli> | ||
| Line 121: | Line 121: | ||
| [root@lnxpwrsc01 powersc]# cat /etc/security/powersc/uiServer/uiServer.conf.properties | [root@lnxpwrsc01 powersc]# cat /etc/security/powersc/uiServer/uiServer.conf.properties | ||
| - | logonGroupList=powersc | + | logonGroupList=powersc,root |
| httpPort=80 | httpPort=80 | ||
| httpsPort=443 | httpsPort=443 | ||
| - | administratorGroupList=powersc | + | administratorGroupList=powersc,root |
| bindAddress=192.168.1.2 | bindAddress=192.168.1.2 | ||
| + | powervcKeystoneUrl=https://lnxpwrsc01.test.lu/ | ||
| + | </cli> | ||
| + | |||
| + | <cli prompt='#'> | ||
| + | [root@lnxpwrsc01 powersc]# cat /etc/security/powersc/uiServer/groups.txt | ||
| + | security=* | ||
| + | pscadm=* | ||
| + | powersc=* | ||
| </cli> | </cli> | ||
| Line 217: | Line 225: | ||
| </code> | </code> | ||
| - | **<color #ed1c24>Best practice for AIX is to use CISv3_Lev1.xml</color>** | + | **<color #ed1c24>Best practice for AIX is to use CISv3_Lev1.xml</color>**, it combine the best practice for AIX 7.2 and 7.3 |
| ==== Apply the accurate policy ==== | ==== Apply the accurate policy ==== | ||
| Line 225: | Line 233: | ||
| # pscxpert -f /etc/security/aixpert/custom/CISv2_Lev1.xml CIS Security Benchmark for AIX 7.2 | # pscxpert -f /etc/security/aixpert/custom/CISv2_Lev1.xml CIS Security Benchmark for AIX 7.2 | ||
| # pscxpert -f /etc/security/aixpert/custom/CISv2_Lev2.xml CIS Security Benchmark for AIX 7.2 | # pscxpert -f /etc/security/aixpert/custom/CISv2_Lev2.xml CIS Security Benchmark for AIX 7.2 | ||
| + | # pscxpert -f /etc/security/aixpert/custom/CISv3_Lev1.xml CIS Security Benchmark for AIX 7 | ||
| + | # pscxpert -f /etc/security/aixpert/custom/CISv3_Lev2.xml CIS Security Benchmark for AIX 7 | ||
| # pscxpert -f /etc/security/aixpert/custom/GDPRv1.xml General Data Protection Regulation (GDPR) | # pscxpert -f /etc/security/aixpert/custom/GDPRv1.xml General Data Protection Regulation (GDPR) | ||
| </cli> | </cli> | ||
| Line 269: | Line 279: | ||
| Compare current settings to CISv2 level 1 | Compare current settings to CISv2 level 1 | ||
| <cli prompt='#'> | <cli prompt='#'> | ||
| - | root@nim ~# pscxpert -c -P /etc/security/aixpert/custom/CISv2_Lev1.xml -p -r | + | root@nim ~# pscxpert -c -P /etc/security/aixpert/custom/CISv3_Lev1.xml -p -r |
| Processing cisv2_sysintegrity : failed. | Processing cisv2_sysintegrity : failed. | ||
| Processing cisv2_brokenlinks : failed. | Processing cisv2_brokenlinks : failed. | ||
aix/powersc.1755778384.txt.gz · Last modified: 2025/08/21 14:13 by manu
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: GNU Free Documentation License 1.3
