Operating System - OpenVMS
cancel
Showing results for 
Search instead for 
Did you mean: 

Use of SET LOGIN/INTER=nn

 
Craig A
Valued Contributor

Use of SET LOGIN/INTER=nn

I'm running OpenVMS v7.3-2 on an Alpha VMScluster.

Is there a way I can audit and restrict use of the SET LOGIN/INTER=nn command? (I am aware that the command requires OPER privilege but I can;t remove this privilege from relevant accounts since it will break *lots* of things.)

Thanks in advance

Craig
2 REPLIES 2
Craig A
Valued Contributor

Re: Use of SET LOGIN/INTER=nn

It is possible to enable an alarm/audit event for use of OPER:

$ set audit/alarm/enable=priv=success=oper
$ set audit/audit/enable=priv=success=oper
Hoff
Honored Contributor

Re: Use of SET LOGIN/INTER=nn

IIRC, it's OPER in the default mask that's needed here, which means that you can clear OPER in the default and leave it set in the authorized mask and then (upon successful login, and after the login override check is made) selectively enable the privilege within SYLOGIN.COM or LOGIN.COM.

Or sure, audit it.