Endpoint Privilege Management for Unix and Linux Overview
To effectively administer Endpoint Privilege Management for Unix and Linux, it is necessary to understand how the product works. A typical Endpoint Privilege Management for Unix and Linux configuration consists of the following primary components:
- pbrun: Used for secured task submission
- pbmasterd: Used for security policy file processing
- pblocald: Used for task execution
- pblogd: Used for writing event logs and I/O logs
It is possible to install any or all of these components on a single machine, or to distribute them among different machines. For optimal security, the policy server hosts and log hosts should be separate machines that are isolated from normal activity.