Logical Solutions SCS-R manual User Names and Groups, NIS Database file, Group Permissions

Page 63

SECURE CONSOLE SERVERS

NIS and User Port Permissions

7.9.4 User Names and Groups

The LSI Port User Definition file (/nis/lsi_port_users) is used to assign a user to a given Port Access group. This file information is found in /usr/doc/nis.

The following example will illustrate how it is set up.

user name : group name

where

user name

a valid SCS user

group name

a valid user’s group

Example:

tomv : pbxgrp

billf : itgrp

The above example shows two users, tomv and billf. User tomv is in the group pbxgrp and billf is in the group itgrp. When user with the lsi_port_access file, it illus- trates how tomv can log into tvscs320 and be able to connect, monitor and clear the ports that were set up in the previous example. The same goes for billf.

#LSI Port Access User definition file...

#Port Access user and their respective ‘port access group name is defined

#below.

#Users must be valid system usernames.

#Group names are those defined in the “lsi_port_access” file.

#

# user_name : group_name

lsiuser1 : user_group1

lsiuser2 : user_group1

lsiuser3 : user_group2

lsiuser4 : user_group2

Group Permissions

A user may not get access to a port, depending on their group permissions. Only members of the scsusers group (group id of 701) may access SCS ports. Only members of the monitor group (group id of 702) may access SCS monitor ports.

7.9.5 NIS Database file

The lsi_port_awk file is used to create the lsi database file (lsiportdbase) on the NIS server. It contains the awk code that the Make file needs.

tel (203) 647-8700

Page 63

Product Manual - MAN-000001C

Image 63
Contents SCS and SCS-R Models Product ManualCopyright Notice Product Overview Initial Configuration Commands Administering Users Regulatory & Safety File System SCS Models Covered in this Manual IntroductionIntroduction System FeaturesHardware Features Software FeaturesSCS480, 48-Port Secure Console Server, front and rear views 1 SCS160R / SCS320R HardwareTCP/IP Technical SpecificationsSCS320R, showing front and rear views Intended Application Product OverviewSystem Chassis 1 SCS160 / SCS320 / SCS4802 SCS160R / SCS320R Connecting to the SCS Serial DevicesBreak Safe 3.2 SCS160R / SCS320R AC PowerIP Network 3.1 SCS160 / SCS320 / SCS480User Access Control Port BuffersUser Sessions For Your Notes Installation Mounting the SCSRack Mount or Desktop 3 It’s Convection Cooled PowerConnections Front Panel Display and ButtonsConnecting to the Network Port Connect your Console3.1 SCS160R / SCS320R Dual NIC Interface Connect to the Ports 4.1 SCS160R / SCS320R Dual Console InterfacePort Adapters Pin Serial Port PinoutLeft Supply Failed Tue Mar 18 154307 SCS160R / SCS320R Power ModulesAC Power Module Replacement Secure Console Servers SCS160R / SCS320R Power ModulesReplacing an AC Module Left Module shown partially removed Default Configuration Initial ConfigurationRoute via Linux workstation Initial System Security ConcernsInitial Connection via Network Network Connection RequirementsFrom a DOS prompt, enter Route via Windows workstationPuTTY Configuration Screen Front Panel Edit Mode Front Panel Network SetupSCS Front Panel Display, showing first Edit Mode display Start Front Panel Edit ModeNetwork IP Address Program NetworkNet Mask Edit IP Address 192.168.075.239Gateway Edit Net Mask 255.200.000.000Exit to Main Menu Edit GatewayExit to Main Menu For Your Notes Understanding Linux System AdministrationSCS Systems are Linux-based Linux General Public LicenseInitial Sysadmin Access Connect using a TerminalSCS System Architecture Enter Commands Log In as rootLog Out Configure the Services Default ServicesConfigure the Services For Your Notes System Commands CommandsReboot Save CommandOther Linux Commands PoweroffStty SftpSsh Ssh-keygenVersions Change Logging LevelFor Your Notes Change Network Address SecurityRun netconfig More Than One Nameserver Example of netconfig fill-in fieldsTime Configuration Change HostnameChange NIC Speed Front Panel Display Options Configure AuthenticationsDisplay Mode Parameters EditView Display OFF Network Time ServiceLINE1 LINE2Start the NTP Service Configure NTPChanging Serial Port settings NIS and User Port PermissionsUser Port Control Where NIS Port AccessUser Names and Groups NIS Database fileGroup Permissions Remote NFS Directory NIS Configuration File10 NFS NIS Make fileSnmp SyslogStart Snmp Timeouts User Setup Administering UsersDeluser Other Editing CommandsAdduser EdituserEditesc name Editbrk nameFor Your Notes Root user User OperationsUser Accounts SCS UsersWhat Can a User Do Port IdentitiesBreak Sequence Escape SequenceEditbrk Edit Escape Sequence Product Serial Number Regulatory & SafetySafety Requirements Symbols found on the ProductDeclaration of Conformity Regulatory ComplianceNorth America European UnionSupplementary Information Standards With Which the Products ComplyAustralia & New Zealand Lithium Battery10.7 SCS160R / SCS320R Power Modules For Your Notes How to Contact Logical Customer SupportWebsite Mail Telephone11.1.4 Fax Our Address WarrantyReturn Authorization Product SupportFor Your Notes Read-Only vs. Read-Write Appendix a File SystemLSI Directories How do I do this? Appendix B FAQView a Buffer Product Support For Your Notes