59
Access Control for Administration
6
The restorer adminaccess command allows remote hosts to use the FTP, TELNET, and SSH
administrative protocols on the restorer. The command is available only to restorer administrative
users. See
“adminaccess” on page 197 for the complete command syntax.
The FTP and TELNET protocols have host-machine access lists that limit access. The SSH
protocol is open to the default user sysadmin and to all restorer users added with the
user add
command. By default, only the SSH protocol is enabled.
Add a Host
To add a host (IP address or hostname) to the FTP or TELNET protocol access lists, use the
adminaccess add operation. For the FTP list, use an IP address for each host or a class-C
network address that includes the hosts. You can enter a list that is comma-separated,
space-separated, or both. To give access to all hosts, the host-list can be an asterisk (*).
Administrative users only.
adminaccess add {ftp | telnet} host-list
For example, to add srvr24 and srvr25 to the list of hosts that can use TELNET on the restorer:
# adminaccess add telnet srvr24,srvr25
To allow an entire local subnet to use TELNET on the restorer:
# adminaccess add telnet 192.123.45.
Remove a Host
To remove hosts (IP addresses, hostnames, or asterisk (*)) from the FTP or TELNET access lists,
use the
adminaccess del operation. You can enter a list that is comma-separated,
space-separated, or both. Administrative users only.
adminaccess del {ftp | telnet} host-list
For example, to remove srvr24 from the list of hosts that can use TELNET on the restorer:
# adminaccess del telnet srvr24
To Next Page
Loading...