IBM Support

Identity Insight & WebSphere Installer Script opens up ewas Directory Permissions to "Other" Users

Flashes (Alerts)


Abstract

The embedded WebSphere Application Server in Identity Insight was created with elevated permissions for all system users, even those outside of the installation group.

Content

The WebSphere install script - which is called by the Identity Insight Installer- does some 'chmod' commands which open up the ewas directory to permissions by "other" users on UNIX platforms.

To remove the elevated permissions:
cd <install>/ewas
chmod -R o-w .
find . -type f -exec chmod a-x {} \;
find . -type f -name '*.sh' -exec chmod u+x {} \;
chmod -R a+x java/bin/
chmod -R a+x java/jre/bin/

[{"Product":{"code":"SS2HSB","label":"InfoSphere Identity Insight"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"--","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"}],"Version":"8.0;8.1","Edition":"","Line of Business":{"code":"LOB10","label":"Data and AI"}}]

Document Information

Modified date:
25 September 2022

UID

swg21679772