AIX Security Expert security policy copy

You can use AIX Security Expert to copy a security policy from one system to another.

You can run AIX Security Expert on one system and apply the same security policy on other systems. For example, Bob wishes to apply AIX Security Expert on his six AIX systems. He applies the security settings on one system (Alpha) with High, Medium, Low, Advanced, or AIX Standard Settings security. He tests this system for compatibility issues within his environment. If he is satisfied with these settings, he can apply the same settings on the other AIX systems by name. He copies the settings from the system Alpha to the system where he wants to apply the same security settings by copying the /etc/security/aixpert/core/appliedaixpert.xml file from Alpha to the other system.

Note: Do not copy this file to the same directory and filename on the other system, because the aixpert command will write over /etc/security/aixpert/core/appliedaixpert.xml as it implements the security policy.

Instead, copy Alpha's security policy to the /etc/security/aixpert/custom/ directory. This allows the other system to view and apply Alpha's security policy through the AIX Security Expert system management GUI, or directly with the aixpert command.

For example, if the Alpha's appliedaixpert.xml security policy was placed on the other systems as /etc/security/aixpert/custom/AlphaPolicy, then the command aixpert -f /etc/security/aixpert/custom/AlphaPolicy would immediately apply this security policy and this system would have the same security configuration as machine Alpha. Additionaly, when Alpha's security policy is in this directory, it is visible and can be applied through the other systems system management console via the path of Aix Security Expert -> Overview and Tasks -> Customized Options -> AlphaPolicy.