×
 
 
  •  
$helper.renderConfluenceMacro('{bmc-global-announcement:$space.key}')

Unsupported content

 

This version of the documentation is no longer supported. However, the documentation is available for your convenience. You will not be able to leave comments.
BMC Server Automation 8.3 ... Configuring after installation Administering security

How to deny NSH access

This topic was edited by a BMC Contributor and has not been approved.  More information.

In the past, removing a role's ability to use Network Shell involved a complex process of creating an empty role and assigning the default Network Shell role for that role as the empty role, along with removing the NSH Here custom command.

A much simpler process is now available for removing NSH access from a role.

To remove NSH access from a role

  1. Ensure you have a NSH Proxy server configured in your environment. 
    For more info, see Setting up a Network Shell proxy server
    Without an NSH Proxy enabled, this system will not work, as the NSH Proxy can only control the connections that go through it.
  2. Update RBAC authorizations in the relevant role, and then save the role.
    • To deny NSH access, remove the NSHProxy.Connect authorization.
    • To allow NSH access, add the NSHProxy.Connect authorization.

Was this page helpful? Yes No Submitting... Thank you
Last modified by Yechezkel Schatz on Mar 19, 2013
rbac nsh howto nsh_proxy bmc_contributor contributor_unapproved security

Comments

Log in or register to comment.

Limiting access through components
Configuring the Application Server
© Copyright 2017 BMC Software, Inc. © Copyright 2017 BladeLogic, Inc.
Legal notices

Powered by Atlassian Confluence and Scroll Viewport

© Copyright 2005-2024 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.