• Spaces
  • Collections
  • Help
    • ×
     
     
    •  
    BMC PATROL Agent 9.5

    Page tree

    Unsupported content

     

    This version of the documentation is no longer supported. However, the documentation is available for your convenience. You will not be able to leave comments.

    In an ACL entry, you can use a number of masking techniques for the host name and user name attributes.

    Note

    Use the same naming convention in the ACL host name that you used when setting up connections to agents. If you used short names in the connections, use short names in the ACL entries. If you used fully qualified names in the connections, use fully qualified names in the ACL entries. The ability of PATROL to associate a short name with a fully qualified name depends upon how your DNS server is set up. Using the same naming convention ensures that your ACL entries work properly regardless of how your DNS server is set up.

    UserName

    The name of a local account that the connecting console may request to use. Following valid values are included:

    • * — any username (assuming the OS user account exists)
    • username — a specific OS user account
    • :groupname — a specific OS user-group account

      If the UserName value is not provided for an ACL entry, it defaults to *.

    HostName

    A computer (console) that is authorized to connect to this agent. You can specify a hostname by using the fully qualified name, the short name, or a partial name (pattern) created with a wildcard specification in which the first character is a '*', with other characters  as follows:

    • * — any host name (assuming the host exists)
    • hostname — an IPv4 or IPv6 address, range of addresses, or actual name (Relative Distinguished or Fully Qualified Domain) of the host indicating that this entry is for that host only
    • *partial_hostname — a wildcard specification, in which the first character is an asterisk followed by other characters
    • :groupname — (Windows only) a computer-group name (applicable only for IPv4)

      To define a range of IP Addresses for the hostname value, define any string in the form of and IP Address and specify what bits must be allowed, such as A.B.C.D|e in which e is a number between 0 and 32 that specifies which bits are set in a 32-bit number.

    IPv4 examples 

    • */172.19.0.0|16/CDOP
      All hosts with IP Addresses matching the first 16 bits (172.19) are connected.
    • */172.19.20.30|24/CDOP
      All hosts with IP Addresses from 172.19.20.0 - 172.19.20.255 are connected.
    • */172|8/CDOP
      All hosts whose IP Addresses start with 172 are connected.
    • */172.19.|16/CDOP
      All hosts whose IP Addresses start with 172.19. are connected.
    • */:A/CDOP
      All hosts in group A are connected.

      If the HostName value is not provided for an ACL entry, it defaults to *.

    IPv6 examples

    • */2001:500:100:1100:20d:56ff:fefd:733d/DO
      All the users from the host having IP Address as 2001:500:100:1100:20d:56ff:fefd:733d are connected.
    • */2001:500:100:1100|54/CDOP
      All the hosts in the subnet represented by the subnet ID, 1100 are connected.
    • */2001:500:100|49/CDOP
      All the hosts in the subnet represented by the subnet ID 0000 are connected.

      If the HostName value is not provided for an ACL entry, it defaults to *.
    © Copyright 2005-2023 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.