Execute Program Action - BlackListCommands
There are certain commands which are vulnerable to security threats in both Windows and Linux operating systems such as del and deltree.
Such commands can be restricted for execution from Execute Program action. By default, we are restricting the below commands:
Windows: del, deltree, netstat
Linux: chmod, crontab, netstat, rm, chattr
Apart from the above mentioned commands, customers can also choose to blacklist any other commands if he intends to. This can be achieved by adding an entry in BlackListCommands.properties file located under <Applications Manager Home>/conf/ directory.
Note: Customer has to restart the Applications Manager once he modifies the BlackListCommands.properties file.
If the user needs to allow the commands in a single shot without removing them from BlackListCommands.properties file, enable the "Allow Blacklisted Commands" checkbox featured in Action / Alarm Settings under Admin tab.
Example:
If the user tries to use the blacklisted commands while creating and updating the Execute Program Action (without enabling the Allow Blacklisted Commands checkbox), an alert message will popup as shown below:
New to ADSelfService Plus?
Related Articles
Execute Program action - Enterprise Admin server behavior & Known limitation
Behavior in Enterprise Admin server In case of Enterprise Admin users, following is the behavior of Execute Program action: All Host in the selected Monitor Group option is not supported Auto Select Host option is partially supported. Since the host ...Service Now Event Integration using Webhook / Rest API Action
Steps to perform in Service Now 1) Login to your ServiceNow Instance(dev*****133.service-now.com) 2) Search for the Rest API Explorer and open it 3) In the Rest API Explorer page choose the Namespace and API Name with the proper API version. For ...When I am executing programs from the Actions menu from Application Manager the program gives me the message: "The Program exited with code 1". The action has been successfully executed but nothing happens when I run the program.The batch file works fine when I execute it.
Solution: When you use batch scripts(.bat), always use at least 2 batch scripts, one script starting another one. E.g.: script1.bat: call scriptx.bat scriptx.bat: echo 'hello' It's also good to know how script1.bat works on the machine so send ...In Execute program action / script monitoring, it fails when trying to execute a .bat file with echo or rem. Also some commands like ftp are not working.
Solution: In few Windows machines, some commands inside the batch file will work if we put a '@' in front of these commands. Kindly try it out.Why don't I see the custom messages & replaceable tags given in an action in the alarm escalation notification ?
Alarm escalation provides the option for escalation if any alarm has not been attended for a given time period to an email address(s) or mobile number(s) or if a specific program was executed. The notification template & work flow logic used in the ...