Important This documentation space contains information about PATROL Agents when deployed in a TrueSight Operations Management environment. If you are a BMC Helix Operations Management user, see PATROL Agent 22.1 for BMC Helix Operations Management.

HostName and UserName attribute conventions

In an ACL entry, you can use a number of masking techniques for the host name and user name attributes.

Note

Use the same naming convention in the ACL host name that you used when setting up connections to agents. If you used short names in the connections, use short names in the ACL entries. If you used fully qualified names in the connections, use fully qualified names in the ACL entries. The ability of PATROL to associate a short name with a fully qualified name depends upon how your DNS server is set up. Using the same naming convention ensures that your ACL entries work properly regardless of how your DNS server is set up.

UserName

The name of a local account that the connecting console may request to use. Following valid values are included:

  • * — any username (assuming the OS user account exists)
  • username — a specific OS user account
  • :groupname — a specific OS user-group account

    If the UserName value is not provided for an ACL entry, it defaults to *.

 HostName

A computer (console) that is authorized to connect to this agent. You can specify a hostname by using the fully qualified name, the short name, or a partial name (pattern) created with a wildcard specification in which the first character is a '*', with other characters  as follows:

  • * — any host name (assuming the host exists)
  • hostname — an IPv4 or IPv6 address, range of addresses, or actual name (Relative Distinguished or Fully Qualified Domain) of the host indicating that this entry is for that host only
  • *partial_hostname — a wildcard specification, in which the first character is an asterisk followed by other characters
  • :groupname — (Windows only) a computer-group name (applicable only for IPv4)

    To define a range of IP Addresses for the hostname value, define any string in the form of and IP Address and specify what bits must be allowed, such as A.B.C.D|e in which e is a number between 0 and 32 that specifies which bits are set in a 32-bit number.

IPv4 examples

  • */172.19.0.0|16/CDOP
     All hosts with IP Addresses matching the first 16 bits (172.19) are connected.
  • */172.19.20.30|24/CDOP
     All hosts with IP Addresses from 172.19.20.0 - 172.19.20.255 are connected.
  • */172|8/CDOP
     All hosts whose IP Addresses start with 172 are connected.
  • */172.19.|16/CDOP
     All hosts whose IP Addresses start with 172.19. are connected.
  • */:A/CDOP
     All hosts in group A are connected.

    If the HostName value is not provided for an ACL entry, it defaults to *.

IPv6 examples

From PATROL Agent 3.9.00 onwards, ACL supports Internet Protocol version 6 (IPv6). 

  • */2001:500:100:1100:20d:56ff:fefd:733d/DO
     All the users from the host having IP Address as 2001:500:100:1100:20d:56ff:fefd:733d are connected.
  • */2001:500:100:1100|54/CDOP
     All the hosts in the subnet represented by the subnet ID, 1100 are connected.
  • */2001:500:100|49/CDOP
     All the hosts in the subnet represented by the subnet ID 0000 are connected.

    If the HostName value is not provided for an ACL entry, it defaults to *.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*