Question

PMUL Policy Scripts: ACA

Forum|Forum|2 months ago
February 6, 2026
1 reply
24 views

+3

Prudhvi Keertipati
Guru

Hi everyone,

I’m trying to use aca to block some commands after user switch to a root account using pbrun. But I’m not able to achieve it, below is the sample script I have. Please suggest the changes to effectively use aca to block commands.

bash is an alias command to switch to root user. I can still run whoami command after switch to root.

if (command == bash){

aca("file", "/use/bin/whoami", "!all", "BLOCK");
accept;

}

Thanks,

A

Arvinder Kaur
BeyondTrust Employee
Forum|Forum|2 months ago
February 9, 2026

Hello Prudhvi,

Are you using role based policy, have defined a role with bash as one of the commands in the command group and want to block some commands for users with that role ?

Like

Badge Earners

Sign up

Login to the community

Scanning file for viruses.

This file cannot be downloaded