[Contents] [Prev] [Next] [Index]

System Management Configuration Statements

To configure system management, you can include the following statements in the configuration: 

 system { 
 	 authentication-order [ authentication-methods ]; 
 	 backup-router address <destination destination-address>;
 	 compress-configuration-files;
 	 default-address-selection;
 	 dhcp-relay (server address | disable); 
 	 diag-port-authentication (encrypted-password "password" | plain-text-password);
 	 domain-name domain-name; 
 	 domain-search [domain-list];
 	 host-name host-name; 
 	 location {
 	 	 altitude feet;
 	 	 country-code code;
 	 	 hcoord horizontal-coordinate;
 	 	 lata service-area;
 	 	 latitude degrees;
 	 	 longitude degrees;
 	 	 npa-nxx number;
 	 	 postal-code postal-code;
 	 	 vcoord vertical-coordinate;
 	 }
 	 login {
 	 	 message text;
 	 	 class class-name {
 	 	 	 allow-commands "regular-expression"; 
 	 	 	 deny-commands "regular-expression ";
 	 	 	 idle-timeout minutes;
 	 	 	 permissions [ permissions ]; 
 	 	 }
 	 	 user user-name {
 	 	 	 full-name complete-name;
 	 	 	 uid uid-value; 
 	 	 	 class class-name; 
 	 	 	 authentication {
 	 	 	 	 (encrypted-password "password" | plain-text-password); 
 	 	 	 	 ssh-rsa "public-key";
 	 	 	 }
 	 	 }
 	 }
 	 name-server {
 	 	 address; 
 	 }
 	 no-redirects; 
 	 ntp {
 	 	 authentication-key key-number type type value password;
 	 	 boot-server address;
 	 	 broadcast <address> <key key-number> <version value> <ttl value>;
 	 	 broadcast-client;
 	 	 multicast-client <address>;
 	 	 peer address <key key-number> <version value> <prefer>;
 	 	 server address <key key-number> <version value> <prefer>;
 	 	 trusted-key [ key-numbers ];
 	 }
 	 ports {
 	 	 auxiliary {
 	 	 	 insecure;
 	 	 	 speed baud-rate;
 	 	 	 type terminal-type;
 	 	 }
 	 	 console {
 	 	 	 insecure;
 	 	 	 speed baud-rate;
 	 	 	 type terminal-type;
 	 	 }
 	 }
 	 processes {
 	 	 inet-process (enable | disable);
 	 	 interface-control (enable | disable);
 	 	 mib-process (enable | disable);
 	 	 ntp (enable | disable);
 	 	 routing (enable | disable);
 	 	 snmp (enable | disable);
 	 	 watchdog (enable | disable) <timeout seconds>;
 	 }
 	 radius-server server-address {
 	 	 port number;
 	 	 retry number; 
 	 	 secret password;
 	 	 timeout seconds; 
 	 }
 	 root-authentication {
 	 	 (encrypted-password "password" | plain-text-password);
 	 	 ssh-rsa "public-key"; 
 	 }
 	 services {
 	 	 finger <connection-limit limit> <rate-limit limit>;
 	 	 ssh <connection-limit limit> <rate-limit limit>;
 	 	 telnet <connection-limit limit> <rate-limit limit>;
 	 }
 	 static-host-mapping {
 	 	 host-name {
 	 	 	 inet [ address ]; 
 	 	 	 sysid system-identifier; 
 	 	 	 alias [ alias ];
 	 	 }
 	 }
 	 syslog {
 	 	 file filename {
 	 	 	 facility level;
 	 	 	 archive {
 	 	 	 	 files number;
 	 	 	 	 size size; 
 	 	 	 	 (world-readable | no-world-readable); 
 	 	 	 }
 	 	 }
 	 	 host hostname {
 	 	 	 facility level;
 	 	 	 facility-override facility;
 	 	 	 log-prefix string;
 	 	 }
 	 	 user (username | *) {
 	 	 	 facility level;
 	 	 }
 	 	 console {
 	 	 	 facility level;
 	 	 }
 	 	 archive {
 	 	 	 files number;
 	 	 	 size size; 
 	 	 	 (world-readable | no-world-readable); 
 	 	 }
 	 }
 	 tacplus-server server-address {
 	 	 secret password;
 	 	 single-connection;
 	 	 timeout seconds; 
 	 }
 	 time-zone time-zone;
 }


[Contents] [Prev] [Next] [Index]