wiki

AIX expert is a set of xml files which applies security settings at different level. You can find some samples into the directory /etc/security/aixpert/core depending on predefined security level needed: low, medium, high, SOX-COBIT…

All settings available can be found in the following file: /etc/security/aixpert/core/aixpertall.xml

Take a snapshot of the current security settings applied to your environment

# aixpert -f appliedaixpert.xml

To reverse the settings applied from a previous activation:

# aixpert - u undo.xml

Logs for applied settings can be found into /etc/security/aixpert/log/aixpert.log

When you use auditing, the file etc/security/aixpert/check_report.txt, will keep a trace of all changes outsite aixpert.

root@aixtest /etc/security/aixpert> aixpert -l l -n -o /etc/security/aixpert/custom/my_low.xml -a -o /etc/security/aixpert/custom/my_shortinfo.xml