Documentation

File locations

Suggest Edits

environmentfile

  • Version 5.2 and earlier: environmentfile setting not available.
  • Version 6.0 and later: environmentfile setting available.

The environmentfile setting enables you to specify the absolute path and file name of an environment file. EPM-UL can incorporate the environment variables that are specified in the environment file into the run environment. These environment variables are applied on the run host after the Accept event has been logged.

The environmentfile setting can be overridden in the policy by setting the runenvironmentfile variable.

The environment file must consist of the following:

  • Comment lines, which have a # character in the first non-whitespace position
  • Blank lines
  • Bourne shell compatible environment variable setting lines with the form NAME=VALUE

ℹ️

Note

Each line in the file must contain less than 1024 characters. Line continuation is not supported. This file must not contain any shell commands or constructs other than the setting of environment variables. Comments must not appear on the same line as an environment variable.

ℹ️

Note

This keyword does not apply to pbssh. If it is present in the settings file, it does not have any effect on pbssh and is ignored.

Example

environmentfile "/etc/environment"
environmentfile "/etc/environment2"

Default

No default value

Used on

Run hosts

📘

For more information, see runenvironmentfile.

pbrunpath

  • Version 6.0 and earlier: pbrunpath setting not available.
  • Version 6.2.5 and later: pbrunpath setting available.

The pbrunpath setting specifies the absolute path to the directory that contains the pbrun and pbssh executable files on the host. This setting enables the Task Manager feature to work properly.

Example

pbrunpath /usr/bin/

Default

No default value

Used on

  • Run hosts

policydir and policyfile

  • Version 4.0.0 and later: policydir and policyfile settings available.

EPM-UL uses the settings file /etc/pb.settings (or a prefixed and/or suffixed settings file). By default, the main policy file is /opt/pbul/policies/pb.conf (/etc/pb.conf prior to v9.4.3). You can choose a different configuration policy file by using the policydir and policyfile settings.

The policyfile setting contains the name of a policy file. If the name is an absolute path (starting with a /), then that file name is used. If the policyfile setting does not start with a /, then the value of policydir is prepended to it.

Example

# Use /etc/my.pb.conf as the configuration policy file
policyfile /etc/my.pb.conf

# Use /usr/local/powerbroker/powerbroker.conf as the configuration
# policy file
policydir /usr/local/powerbroker
policyfile powerbroker.conf

policydir also controls include files in the configuration policy. If a file name in an include statement starts with a /, then that file is used. However, if the file name does not start with a /, the policydir setting is prepended to it.

Example

If policydir is set to /etc/pb.includes:

include "admin.conf";
# Includes /etc/pb.includes/admin.conf

but

include "/etc/admin.conf";
# Includes /etc/admin.conf

Defaults

policydir /opt/<prefix>pbul<suffix>/policies (/etc prior to v9.4.3)
policyfile /opt/<prefix>pbul<suffix>/policies/<prefix>pb.conf<suffix>

Used on

Policy server hosts

policypersistentvariabledb

  • Version 9.4.4 and earlier: policypersistentvariabledb setting not available.
  • Version 9.4.5 and later: policypersistentvariabledb setting available.

The policypersistentvariabledb option specifies the path to the Persistent Variable database used in script policy.

Example

policypersistentvariabledb /etc/pbpersist.db

Default

policypersistentvariabledb /opt/<prefix>pbul<suffix>/dbs/pbpolpersistvar.db

Used on

Policy servers

tempfilepath

  • Version 10.2.0 and earlier: tempfilepath setting not available.
  • Version 10.3.0 and later: tempfilepath setting available.

The tempfilepath option defines a temporary path to use as the temporary filesystem for EPM-UL binaries. The value can be any valid directory.

Default

/tmp

Used on

Policy servers

lockfilepath

  • Version 10.2.0 and earlier: lockfilepath setting not available.
  • Version 10.3.0 and later: lockfilepath setting available.

The lockfilepath option defines a lock file path for EPM-UL binaries, when needed. The value can be any valid secure directory.

Default

lockfilepath /opt/<prefix>pbul<suffix>/locks

Used on

Policy servers

lockfiletimeout

EPM-UL uses a lockfile when it writes into flat files (policy file or settings file, for example) on the filesystem. This prevents multiple processes overwriting each other's work. The lockfiletimeout setting specifies the maximum number of seconds for a process to wait for a lock to be free.

Example

lockfiletimeout 45

Default

lockfiletimeout 30

Updated 5 days ago

©2003-2025 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.