Command validation

The allowlist validates remote command running. The commands defined in the master site and root level are also allowed in the current site.

  • Only remote commands are validated. Internal commands and commands not issued through an RMI invocation can be bypassed.
  • An error message opens when a command fails on allowlist validation.
  • All validation results are recorded in server\audit\audit.log. Failed results are logged in server\logs\allowlist.log for troubleshooting.

Commands that are configured in the Alert Configurator are validated before being saved. The runtime alert exec validation is through hcimonitord.