Settings

The Endpoint Privilege Management for Unix and Linux (EPM-UL) settings file contains settings that control its operation. This section describes in detail how to configure these settings.

Base Directory

basedir

Version 21.1.0 and earlier: basedir setting not available.
Version 22.1.0 and later: basedir setting available.

During installation and at runtime, EPM-UL creates helper files and directories. Some files/subdirectories are created in the default location /opt/<prefix>pbul<suffix>. Consequently, some settings such as databasedir, licensestatsdb, and writequeuepath, automatically use /opt/<prefix>pbul<suffix> as the default path.

Starting with EPM-UL v22.1.0, pbinstall has an option for administrators to change the default location from /opt/pbul and automatically updates and enables the settings that normally use /opt/pbul as the parent directory. After installation, the changed path is saved in the basedir setting.

For more information, see pbinstall at https://www.beyondtrust.com/docs/privilege-management/unix-linux/install/programs/index.htm#pb-install.

Default

basedir  /opt/<prefix>pbul<suffix>

Used on

All hosts

Client and ServerPrograms

EPM-UL is a multi-level client-server application. The client programs are the programs that request services. The server programs are the programs that provide services. Any combination of client or server programs can exist on the same or different hosts.

EPM-UL Client Programs

Program	Started From	Runs On
pbksh	submit host	submit host
pbrun	submit host	submit host
pbsh	submit host	submit host
pbssh	submit host	submit host

EPM-UL Server Programs

Program	Started By	Runs On
pblocald	pbmastered	run host
pblogd	pbmastered pblocald Client programs in local mode	log host
pbmastered	Client programs	policy server host