|
|
This option modifies the behavior of the Group ownership check. When this option is enabled, Symantec ESM allows any privileged group to own a file if the template specifies a privileged group owner. Privileged groups are groups with low GID values. In most situations, ownership of system files by any privileged group is acceptable. For example, if the template specifies group ownership by root, then Symantec ESM allows ownership by any privileged group including system, staff, bin, sys, or adm. This option lets you accommodate variations in ownership between different versions or installations of the same operating system and still use the same templates.