access.ini File

[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]

Steel Belted Radius Carrier 7.0 Reference Guide > Operations Files > access.ini File
access.ini File

The access.ini file maps operating system user or group account names to levels of administrative privilege. The user account name and password used by an administrator when interacting with the Steel-Belted Radius Carrier server is granted access privileges according to the settings in this file.

[Settings] Section

The [Settings] section of access.ini contains overall configuration parameters; do not edit this section.

[Users] and [Groups] Sections

The syntax for the [Users] and [Groups] sections of the access.ini file (Table 6) is:
[Users]
UserName = AccessLevel
_system.localhost = SnmpAgent
M
[Groups]
GroupName = AccessLevel
GroupName = AccessLevel
M
 NOTE: If you use SNMP to monitor your Steel-Belted Radius Carrier server, the [Users] section of your access.ini file must contain this entry:
   _system.localhost = SnmpAgent

If you are not using SNMP, comment out or delete the _system.localhost = SnmpAgent entry as a security precaution.



 
Table 6: access.ini Syntax

Parameter

Function

UserName

GroupName

Each UserName or GroupName is the name of an authorized administrator account on the server. UserName and GroupName refer to Solaris /etc/passwd user/group.

You must list user accounts in the [Users] section and group accounts in the [Groups] section. List groups in priority order; rights are granted based on the first group found of which the user is a member.

AccessLevel

The AccessLevel in each access.ini entry is the access level that you want to assign to that account.

Each AccessLevel string must match the name of an [AccessLevel] section in admin.ini. You can define as many [AccessLevel] sections as you require. After an [AccessLevel] section is defined in admin.ini, you can use access.ini to assign the access privileges associated with that level to users and group accounts.

A special access level called SuperAdmin grants read/write access to all types of administrative data. This access level is always defined, and can be assigned to a user or group account in access.ini without appearing in admin.ini.

Parameter	Function
`UserName` `GroupName`	Each `UserName` or `GroupName` is the name of an authorized administrator account on the server. `UserName` and `GroupName` refer to Solaris /etc/passwd user/group. You must list user accounts in the [Users] section and group accounts in the [Groups] section. List groups in priority order; rights are granted based on the first group found of which the user is a member.
`AccessLevel`	The AccessLevel in each access.ini entry is the access level that you want to assign to that account. Each AccessLevel string must match the name of an [AccessLevel] section in admin.ini. You can define as many [AccessLevel] sections as you require. After an [AccessLevel] section is defined in admin.ini, you can use access.ini to assign the access privileges associated with that level to users and group accounts.

[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]