6.6

Table Of Contents
Table 31. Linux Files and Permissions (Continued)
Directory or File
Permissi
ons
Groups or
Users Read Write Execute
agent directory/bin/ep-
agent.sh
700 Owner Yes Yes Yes
Group No No No
All No No No
agent directory/conf/*
(all les in the conf
directory)
600 Owner Yes Yes Yes
Group No No No
All No No No
agent directory/log/*
(all les in the log
directory)
600 Owner Yes Yes No
Group No No No
All No No No
agent directory/data/*
(all les in the data
directory)
600 Owner Yes Yes No
Group No No No
All No No No
Windows Based Platform Files and Permissions
For a Windows based installation of the End Point Operations Management agent, the user installing the
agent must have permissions to install and modify the service.
After you install the End Point Operations Management agent, the installation folder including all
subdirectories and les should only be accessible by the SYSTEM, the administrators group, and the
installation user. When you install the End Point Operations Management agent using ep-agent.bat, ensure
that the hardening process succeeds. As the user installing the agent, it is advised that you take note of any
error messages. If the hardening process fails, the user can apply these permissions manually.
Table 32. Windows Files and Permissions
Directory or File
Groups or
Users Full Control Modify
Read and
Execute Read Write
<agent
directory>/bin
SYSTEM Yes - - - -
Administrator Yes - - - -
Installation
User
Yes - - - -
Users - - - -
<agent
directory>/conf
SYSTEM Yes - - - -
Administrator Yes - - - -
Installation
User
Yes - - - -
Users - - - -
<agent
directory>/log
SYSTEM Yes - - - -
Administrator Yes - - - -
Installation
User
Yes - - - -
Users - - - -
<agent
directory>/data
SYSTEM Yes - - - -
Chapter 3 Secure Configuration of vRealize Operations Manager
VMware, Inc. 33