Administering users, 1 user setup, 1 adduser – Thinklogical Secure Console Server Manual User Manual

S e c u r e C o n s o l e S e r v e r M a n u a l , R e v . K , J u l y , 2 0 1 3

Page 51

8. Administering Users

The following commands are used to change settings for users. You can define as many
users as you wish, up to the memory capacity of the system. The limiting factor for users is not
the number of users but the number of simultaneous sessions invoked by any number of users
(250 sessions maximum).

8.1 User Setup

Each user account must have a unique name and its own password. Each User account has
the following parameters:

PARAMETER

CONSTRAINTS

Name

A unique user name made up of contiguous characters that cannot be
renamed.
This name will be displayed at the command prompt when a user has
logged in.

Password Linux password for this user account.

Port range or

Port group

(used below)

Default is set to access all ports in the SCS chassis (1-16, 1-32 or 1-48).
Ports can be assigned individually (1), in a contiguous range (2-7),
in random ports (3,6,9,15) or any combination of the above valid port numbers for
that chassis (1, 4-7, 12, 15-16).
.

ESCAPE_SEQ Escape sequence. Default is “Esc-A”. Displayed in ASCII (x1bA)

BREAK_SEQ Break sequence. Default is “Esc-B”. Displayed in ASCII (x1bB)

ALLOW_CLEAR Range or group of Ports for which this User account can Clear the Port

ALLOW_CONNECT Range or group of Ports to which this User account can connect

ALLOW_MONITOR Range or group of Ports which the User can monitor

There are three permissions in the user config files:

•

ALLOW_CONNECT:

The user can enter Interactive mode. The file name is

/dev/ttyBnnn).

T

o browse a buffer a user must have connect permissions on that port.

•

ALLOW_MONITOR

: The user can view a specified port. The file name is

/dev/monitor_portnnn

and

must be opened in Read-Only mode.

•

ALLOW_CLEAR

: A user can clear a specified buffer. The file name is

/proc/port_buffers/nnn)

8.1.1 adduser

SCS users are identified with a user name and the

adduser

command is used to create a new

user account. The user’s name, password and port access configurations are set, along with
the

escape

and

break

command keystrokes. After a user has been added, this user can log

into the system from a network or console port connection.