Table of Contents
Advertisement
•
SFTP-INITIAL-DIRECTORY: The initial directory the remote user will see after successful logon.
•
SFTP-GUARDIAN-FILESET: List of Guardian filename patterns identifying the files the ssh user can access
in a SFTPSERV session.
•
SFTP-SECURITY: A set of operations the remote user is allowed to perform (i.e. Read, Write, Purge).
•
SFTP-PRIORITY: This attribute is used to pre-set the priority for a specific user's SFTPSERV processes. If
omitted, the default priority of 100 is used.
•
SFTP-CPU-SET: List of CPUs ssh user's SFTPSERV processes are started in.
•
STATUS: Status of the USER record.
The USER entity also contains some additional information collected by SSH2 about each ssh user:
•
LAST-LOGON: Time of last logon.
•
LAST-UNSUCCESSFUL-ATTEMPT: Time of last failed logon attempt.
•
LAST-AUTH-METHOD: Authentication method used for last logon.
•
LAST-PUBLICKEY: Name of last public key (configured in USER record for incoming connections) used in
last public key authentication.
•
LAST-IP-ADDRESS: IP address the last incoming connection was initiated from.
•
LAST-MODIFIED: Record maintenance: Last time the record was modified.
Each PUBLICKEY entry of a USER entity contains the following attributes:
•
PUBLICKEY NAME: a free text field allowing you to enter a descriptive comment
•
COMMENT: a free text field allowing you to enter a descriptive comment
•
MD5: The MD5 fingerprint of the public key.
•
BABBLE: The bubble-babble fingerprint of the public key.
•
CREATION-DATE: the time the key was added to the USER record. A key is in state 'PENDING' if LIVE-
DATE has not been reached yet.
•
LIVE-DATE: the time the key changes or has changed to state 'LIVE'. If the attribute LIVE-DATE is not set,
then a key is automatically in state 'LIVE'. A key stays in this state until EXPIRE-DATE is reached.
•
EXPIRE-DATE: the time the key changes or has changed to state 'EXPIRED'.
•
LIFE-CYCLE-STATE: the life-cycle state the user public key is in. Possible values are 'PENDING', 'LIVE'
and 'EXPIRED'. This is actually not an explicit database field but its value will be determined by the three
database fields CREATION-DATE, LIFE-DATE and EXPIRE-DATE.
The database also contains some additional information collected by SSH2 about each public key:
•
LAST-USE: Key usage: Last time the public key was used.
•
LAST-MODIFIED: Maintenance: Last time the public key entry was modified.
The RESTRICTION-PROFILE entity has the following properties:
•
RESTRICTION-PROFILE: The name for the restriction profile, referenced by a USER entity.
•
COMMENT: Comment text for the restriction profile.
•
CONNECT-FROM: IP addresses the user is allowed to connect from.
•
CONNECT-TO: IP addresses a user is allowed to connect to.
•
PERMIT-LISTEN: Local ports the user is allowed to use for port forwarding.
HP NonStop SSH Reference Manual
The SSH User Database • 129
- Quick Links:
- The Ssh2 Solution
- Secure Sftp Transfer
Hide quick links:
Advertisement
Table of Contents
