Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Navigation  Back up to About Overview 
[+] Expand All
[-] Collapse All

Access Control Arguments

The Access Control arguments control the access between the server and client.


-authuser adminname -authpass adminpass [-s server] -p port [-tls ver] -rootca certfile [-ciphersuites ciphersuites]


Table 107 describes the functions of each Access Control argument. Mandatory arguments must be included in the access_arguments section of the command line utility.

Table 107: Access Control Arguments

Access Arguments


Mandatory or Optional


-authuser adminname

Administrator’s username (of Admin level or Operator level access) for accessing the server.


-authuser my_user_name

-authpass adminpass

Password of the administrator.


-authpass my_password

-s server

Server name or IP address if the server is not the local host. If this attribute is not used, the localhost is assumed to be the server.


-s my_server_name


-p port

TCP port on the server into which the command line utility connects to the server.


-p 1814

-rootca certfile

Filename containing the certificate name that must be passed by the client to the server to validate the client’s right to access the server. The filename is usually root.cer. The file always has a .cer extension. Include the entire path of the file.


-rootca /opt/JNPRsbr/root

-tls ver

TLS protocol version on which the server expects the client to initiate the handshake process. Default value is 31.

If you set a value other than 31, 32, or 33, then the default TLS protocol version 1.0 (31) is considered.


-tls 32

-ciphersuites ciphersuites

TLS cipher suites (in order of preference) that the server is to use.

Default value is 0x003C, 0x003D, 0x0035, 0x002F, 0x000A.

Note: If you are specifying more than one cipher suite, the cipher suites must be enclosed with double quotation marks (“”).


-ciphersuites “0x0035,0x002F”


The following example shows the command line entry for accessing the server and querying for all users:

$ -authuser my_user -authpass my_password -s my_server_name -p 1814 -rootca /opt/JNPRsbr/root/autoGeneratedRoot.cer -m query -u "*"

Modified: 2017-03-07