NIS Port Access, Where | Logical Solutions SCS-R specification

System Administration

7.9.3 NIS Port Access

The file lsi_port_access contains the port permissions for connect, monitor and clear. It is referenced by a group; you may define any number of groups you need. The following example will illustrate how the group file is constructed.

group name : console server name : connect perm : monitor perm : clear perm

where:

group name	is the name of the user’s group
console server name	is the SCS’s hostname
connect perm	port that a group can connect with
monitor perm	ports that a group can monitor
clear perm	ports that a group are allowed to clear

For example:

pbxgrp : tvscs320 : 1,2-6,13 : 5-9 : 1,7

itgrp : tvscs160 : 8-16 : 7 : 1,3,5,7-11

The above example shows two groups (pbxgrp and itgrp) that are allowed to access port on a secure console server.

The first group, pbxgrp, can access an SCS with the hostname of tvscs320. The group can connect to ports 1,2,3,4,5,6 and 13. It can monitor ports 5,6,7,8 and 9. This group is allowed to clear ports 1,2,3,4,5,6 and 7.

The second group, itgrp, can access the SCS with a hostname of tvscs160. This group can connect to ports 8,9,10,11,12,13,14, 15 and 16. It can monitor port 7, and can clear ports 1,3,5,7,8,9,10 and 11.

#LSI Port Access Permission file...

#Port Access Permission for the user defined group name(s) are defined below

#Permissions can be any or all of the forms:

#- decimal value

#- decimal range using a dash (-) as the range indicator

#- a comma (,) is used to separate digits and/or ranges

#- a colon (:) is used as the field separator.

#

# group name : console server name : connect perm : monitor perm : clear perm

user_group1 : scs160_milford : 1-16 : 1-3,5,8,16 : 0

user_group2 : scs320_boston : 1-6 : 12,15 : 3-7

SCS160 / SCS320 / SCS480	Page 62	www.thinklogical.com
SCS160R / SCS320R

Image 62

Logical Solutions SCS-R manual NIS Port Access, Where

Contents

Product Manual SCS and SCS-R Models Copyright Notice Product Overview Initial Configuration Commands Administering Users Regulatory & Safety File System Introduction SCS Models Covered in this Manual System Features Introduction Software Features Hardware Features 1 SCS160R / SCS320R Hardware SCS480, 48-Port Secure Console Server, front and rear views Technical Specifications TCP/IP SCS320R, showing front and rear views Product Overview Intended Application 2 SCS160R / SCS320R System Chassis1 SCS160 / SCS320 / SCS480 Break Safe Connecting to the SCSSerial Devices 3.1 SCS160 / SCS320 / SCS480 AC PowerIP Network 3.2 SCS160R / SCS320R User Sessions User Access ControlPort Buffers For Your Notes Rack Mount or Desktop InstallationMounting the SCS Front Panel Display and Buttons PowerConnections 3 It’s Convection Cooled 3.1 SCS160R / SCS320R Dual NIC Interface Connecting to the Network PortConnect your Console Port Adapters Connect to the Ports4.1 SCS160R / SCS320R Dual Console Interface Serial Port Pinout Pin SCS160R / SCS320R Power Modules Left Supply Failed Tue Mar 18 154307 Secure Console Servers SCS160R / SCS320R Power Modules AC Power Module Replacement Replacing an AC Module Left Module shown partially removed Initial Configuration Default Configuration Network Connection Requirements Initial System Security ConcernsInitial Connection via Network Route via Linux workstation Route via Windows workstation From a DOS prompt, enter PuTTY Configuration Screen Front Panel Network Setup Front Panel Edit Mode Start Front Panel Edit Mode SCS Front Panel Display, showing first Edit Mode display Program Network Network IP Address Edit IP Address 192.168.075.239 Net Mask Edit Net Mask 255.200.000.000 Gateway Edit Gateway Exit to Main Menu Exit to Main Menu For Your Notes Linux General Public License System AdministrationSCS Systems are Linux-based Understanding Linux SCS System Architecture Initial Sysadmin AccessConnect using a Terminal Log Out Enter CommandsLog In as root Default Services Configure the Services Configure the Services For Your Notes Commands System Commands Save Command Reboot Poweroff Other Linux Commands Ssh-keygen SftpSsh Stty Change Logging Level Versions For Your Notes Security Change Network Address Run netconfig Example of netconfig fill-in fields More Than One Nameserver Change NIC Speed Time ConfigurationChange Hostname Configure Authentications Front Panel Display Options View Display Mode ParametersEdit LINE2 Network Time ServiceLINE1 Display OFF Configure NTP Start the NTP Service User Port Control Changing Serial Port settingsNIS and User Port Permissions NIS Port Access Where Group Permissions User Names and GroupsNIS Database file NIS Make file NIS Configuration File10 NFS Remote NFS Directory Start Snmp SnmpSyslog Timeouts Administering Users User Setup Edituser Other Editing CommandsAdduser Deluser Editbrk name Editesc name For Your Notes SCS Users User OperationsUser Accounts Root user Port Identities What Can a User Do Editbrk Break SequenceEscape Sequence Edit Escape Sequence Symbols found on the Product Regulatory & SafetySafety Requirements Product Serial Number European Union Regulatory ComplianceNorth America Declaration of Conformity Standards With Which the Products Comply Supplementary Information Lithium Battery Australia & New Zealand 10.7 SCS160R / SCS320R Power Modules For Your Notes Website How to Contact LogicalCustomer Support 11.1.4 Fax MailTelephone Product Support WarrantyReturn Authorization Our Address For Your Notes Appendix a File System Read-Only vs. Read-Write LSI Directories Appendix B FAQ How do I do this? View a Buffer Product Support For Your Notes