Tech Docs Home > Endpoint Privilege Management >

Syntax Checking

Always check the syntax of a security policy file before putting it into production. If a request encounters a security policy file syntax error, then the task that causes the error is immediately rejected. The Reject event is logged in the Endpoint Privilege Management for Unix and Linux event log.

Syntax checking is done with pbcheck, an Endpoint Privilege Management for Unix and Linux utility program. It performs two functions:

Security policy file syntax validation
Simulates security processing for test task requests to determine if that task request would be accepted or rejected during production processing

For more information on how to use pbcheck, see the Endpoint Privilege Management for Unix and Linux Administration Guide.

Policy Debugging

Policies can be debugged via the pbadmin --poldbg command.

For more information, see the Endpoint Privilege Management for Unix and Linux Administration Guide.

BeyondTrust is the worldwide leader in intelligent identity and access security, enabling organizations to protect identities, stop threats, and deliver dynamic access. We offer the only platform with both intelligent identity threat detection and a privilege control plane that delivers zero-trust based least privilege to shrink your attack surface and eliminate security blind spots.

©2003-2024 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority. 4/12/2024

Top