Creating directory lists and rules for fapolicyd

The File Access Policy Daemon (fapolicyd) helps you protect your system by applying special permissions.
You can configure fapolicyd to include a list of RICOH ProcessDirector directories in the trusted list or add a set of rules that allows RICOH ProcessDirector files to run. The files containing the directories list and the set of rules are generated by a RICOH ProcessDirector script. To use the files generated by the script, make sure that you have already installed the fapolicyd package on your Linux operating system.

To create directory lists and rules for fapolicyd:

  1. Log in to the primary computer as the RICOH ProcessDirector system user (aiw1 is the default).
  2. Open a command prompt and change directories to the /aiw/aiw1/bin directory.
  3. To create a list of directories, run:
    ./fapolicyd-build-list.sh
    The command creates a list of RICOH ProcessDirector directories and stores it in: /aiw/aiw1/config/fapolicyd/fapolicyd-directories.txt. The list contains all the standard RICOH ProcessDirector directories. You can add the directories listed to the fapolicyd trust database.
  4. To create a list of rules, run:
    ./fapolicyd-build-list.sh -r
    The command creates a file containing a list of rules and stores it in: /aiw/aiw1/config/fapolicyd/fapolicyd-rules.rules.
  5. Copy the fapolicyd-rules.rules file to /etc/fapolicyd/rules.d directory.
Parent topic: Completing post-installation tasks