Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

Access Control Arguments

 

The Access Control arguments control the access between the server and client.

Syntax

Syntax

Arguments

Arguments

Table 108 describes the functions of each Access Control argument. Mandatory arguments must be included in the access_arguments section of the command line utility.

Table 108: Access Control Arguments

Access Arguments

Description

Mandatory or Optional

Example

-authuser adminname

Administrator’s username (of Admin level or Operator level access) for accessing the server.

mandatory

-authuser my_user_name

-authpass adminpass

Password of the administrator.

mandatory

-authpass my_password

-s server

Server name or IP address if the server is not the local host. If this attribute is not used, the localhost is assumed to be the server.

optional

-s my_server_name

-s 123.45.6.78

-p port

TCP port on the server into which the command line utility connects to the server.

mandatory

-p 1814

-rootca certfile

Filename containing the certificate name that must be passed by the client to the server to validate the client’s right to access the server. The filename is usually root.cer. The file always has a .cer extension. Include the entire path of the file.

mandatory

-rootca /opt/JNPRsbr/root

/autoGeneratedRoot.cer

-tls ver

TLS protocol version on which the server expects the client to initiate the handshake process. Default value is 31.

If you set a value other than 31, 32, or 33, then the default TLS protocol version 1.0 (31) is considered.

optional

-tls 32

-ciphersuites ciphersuites

TLS cipher suites (in order of preference) that the server is to use.

Default value is 0xC00A, 0xC014, 0xC019, 0xC009, 0xC013.

Note: If you are specifying more than one cipher suite, the cipher suites must be enclosed with double quotation marks (“”).

optional

-ciphersuites “0xC014,0xC019”

Example

Example

The following example shows the command line entry for accessing the server and querying for all users: