# Initial configuration for USSHoward
[EntityID]
USSH

[SelfReachable]
USEUCOM.NRetTacUsr<--USN.assignedNRet
USN.assignedNRet<--USSH

[PolicyReachable]
US.friendlyUsr<--SE.usr
US.friendlyUsr<--US.usr

[IssuerTracesAll]
friendlyUsr

[IssuerTracesDef]
getsSLocs

[SubjectTraceable]
NRetTacUsr
assignedNRet
usr

[AccessControl]
# Do we have to give a policy for the credential defining the sensitive role?

[AckPolicy]
USN.assignedNRet=US.friendlyUsr

[Strategy]
type=default