Socket Filter cannot control against the user that has the same privilege as the root user?
Document ID :
Last Modified Date :
Show Technical Document Details
CA Privileged Access Management
PRIVILEGED ACCESS MANAGEMENT:CAPAMX
Regarding the SFA, the DocOps explains as follows. It does not work for root user, but do work for non-root user that has the same level permission as the root user?
Install and Configure a Socket Filter Agent on UNIX
Note: On UNIX and Linux targets, the Socket Filter Agent only filters non-root users. A Socket Filter List defined in a policy becomes effective for non-root users logging in to targets through CA Privileged Access Manager.
CA Privileged Access Manager r3.x
A specific "root" user cannot be controlled by the SFA.
The SFA can control the user who has the same permission as the root user.
Was this information helpful?