syslock command
Use this command to display and configure system lockdown settings.
Syntax:
syslock [-options]
| Option | Description | Values |
|---|---|---|
| -en | Enable or disable system configuration lock function. Note Enable with | enabled, disabled |
| -e | Enable system configuration lock settings with or without enforcing current inventory into trusted snapshot. Note A default value will be set if there is not a | enabled, disabled |
| -l [x] | List inventory of specific snapshot at index x. | The index number, x, is specified as an integer in the command option. |
| -m | Take manual snapshot. | |
| -d | Description for manual snapshot. | String of up to 32 characters. |
| -c | List inventory difference from trusted snapshot. | |
| -po | Set lockdown policy. Note The action will prevent server booting if System Guard is in noncompliant status. | none, osboot, pperm |
| -cpu | Set cpu lockdown. | on, off |
| -dimm | Set dimm lockdown. | on, off |
| -pci | Set pci lockdown. | on, off |
| -drive | Set drive lockdown. | on, off |
| -riser | Set riser lockdown. | on, off |
| -bp | Set bp lockdown. | on, off |
Give documentation feedback