Neoview User Management and Security Administration Guide (R2.5)

INFO CERT POLICY Command

This command lets you view the current password encryption policy settings. Only a user who

has the ROLE.SECMGR role may enter this command.

Syntax

[.SEC] INFO {CERT | CERTIFICATE} POLICY SYSTEM_NAME

Parameters

• SYSTEM_NAME is required and identifies the Neoview platform whose policy you wish to

display. The name consists of the first five characters of the platform name, for example

SEC01.

This command has no parameters or variable elements, other than that you can choose whether

to type CERT or CERTIFICATE.

The command fails and an error is returned if

• You are not logged on in the ROLE.SECMGR role.

• You are not in .sec mode.

Examples

The following example displays the current values of the Auto_Download and CertExpiry

attributes. To display all the encryption attributes, use HPDM rather than NCI.

.sec info cert policy chi0101

AUTODOWNLOAD: Yes

CERTIFICATE EXPIRY: No

Changing Password Encryption Policy Settings

The Security Manager can use the Certificate and Connection tab in the HPDM Policies folder

to modify any of the current password encryption policy settings. He or she can use the NCI

ALTER CERT POLICY command to change the setting for Auto_Download or CertExpiry

but no other policies.

For additional information about using the HPDM Policies dialog to change policy settings, see

the HPDM Online Help.

ALTER CERT POLICY Command

This command modifies the password encryption policy for a Neoview platform. Only a user

who has the ROLE.SECMGR role may enter this command.

Syntax

[.SEC] ALTER {CERT | CERTIFICATE} POLICY SYSTEM_NAME, {AUTO-DOWNLOAD [YES|NO|Y|N]|CERTEXPIRY[YES|NO|Y|N]}

Parameters

This command requires you to specify either of two parameters. For the parameter you do not

specify, the existing value remains in effect. If you specify a parameter name without a

Managing Security Policies 43