Atmf Restricted-Login - Centrecom FS980M/9 Command Reference Manual

A T M F
LLIED ELESIS ANAGEMENT
-
ATMF RESTRICTED LOGIN

atmf restricted-login

Overview By default, users who are logged into any node on an AMF network are able to
manage any other node by using either working-sets or an AMF remote login. If the
access provided by this feature is too wide, or contravenes network security
restrictions, it can be limited by running this command, which changes the access
so that:
•
•
Once entered on any AMF master node, this command will propagate across the
network.
Use the no variant of this command to disable restricted login on the AMF
network. This allows access to the atmf working-set command from any node in
the AMF network.
atmf restricted-login
Syntax
no atmf restricted-login
Mode Privileged Exec
Default Master nodes operate with atmf restricted-login disabled.
Member nodes operate with atmf restricted-login enabled.
NOTE
variant. This is because the restricted-login action is only applied by master nodes, and
in the absence of a master node, the default is to apply the restricted action to all
member nodes with AMF configured.
Usage In the presence of a master node, its default of atmf restricted-login disabled
will propagate to all its member nodes. Similarly, any change in this command's
status that is made on a master node, will also propagate to all its member nodes
Note that once you have run this command, certain other commands that utilize
the AMF working-set command, such as the include, atmf reboot-rolling and
show atmf group members commands, will operate only on master nodes.
Restricted-login must be enabled on AMF areas with more than 120 nodes.
Example To enable restricted login, use the command
Node_20(config)#
Related atmf remote-login
Commands
show atmf
613-50137-01 Rev A
™ (AMF) C
RAMEWORK OMMANDS
users who are logged into non-master nodes cannot execute any commands
that involve working-sets, and
from non-master nodes, users can use remote-login, but only to login to a
user account that is valid on the remote device (via a statically configured
account or RADIUS/TACACS+). Users are also required to enter the password
for that user account.
: The default conditions of this command vary from those applied by its "no"
atmf restricted-login node20
Command Reference for FS980M Series
AlliedWare Plus™ Operating System - Version 5.4.6-2.x
1349