|
Home > |
|---|
The standard administrative roles associated with the SafeNet appliance and HSM are
•Admin, who has the possibility to perform all possible commands (red, blue, or black in the table, below)
•Operator who can perform a subset of commands, including some that affect the state of the appliance or its HSM (blue or black in the table below)
•Monitor who can perform observational commands only, but cannot affect the state or contents of the appliance or its HSM (black-only in the table below).
Thus, when you connect via SSH and log into the appliance as one of the standard roles, you are able to see and use the subset of all possible commands that is listed in the relevant column of the table. If you create additional named roles on the SafeNet appliance, they have the same command access as their equivalent standard-named role. The following table lists, by category, the commands that each role can use :
| Admin | Operator | Monitor |
|---|---|---|
|
help |
||
|
help |
help |
help |
|
exit |
||
|
exit |
exit |
exit |
|
client |
||
|
client assignPartition client delete client fingerprint client hostip map client hostip show client hostip unmap client list client register client revokePartition client show -client |
client assignPartition client delete client fingerprint client hostip map client hostip show client hostip unmap client list client register client revokePartition client show -client |
client hostip show
client list
client show -client |
|
hsm |
||
|
hsm selfTest hsm init hsm login hsm logout hsm show hsm supportInfo hsm fwupdateInfo hsm displayLicenses hsm changePolicy hsm showPolicies hsm changePw hsm generateDAK hsm checkCertificates hsm loadCustomerCert hsm setLegacyDomain hsm backup hsm restore hsm zeroize hsm factoryReset hsm debug show hsm information reset hsm information show hsm information monitor hsm ped set hsm ped connect hsm ped disconnect hsm ped show hsm ped timeout set hsm ped timeout show hsm ped vector init hsm ped vector erase hsm update show hsm update capability hsm firmware show
hsm firmware upgrade hsm firmware rollback hsm srk show hsm srk transportMode enter hsm srk transportMode recover hsm srk keys resplit hsm srk keys verify |
hsm selfTest
hsm login hsm logout hsm show hsm supportInfo hsm fwupdateInfo hsm displayLicenses
hsm showPolicies
hsm generateDAK hsm checkCertificates hsm loadCustomerCert hsm backup
hsm restore
hsm debug show hsm information reset hsm information show hsm information monitor
hsm ped connect hsm ped disconnect hsm ped show hsm ped timeout set hsm ped timeout show
hsm update show hsm update capability hsm firmware show
hsm firmware upgrade hsm firmware rollback hsm srk show hsm srk transportMode enter hsm srk transportMode recover hsm srk keys resplit hsm srk keys verify |
hsm selfTest
hsm show hsm supportInfo hsm fwupdateInfo hsm displayLicenses
hsm showPolicies
hsm checkCertificates
hsm debug show
hsm information show hsm information monitor
hsm ped show
hsm ped timeout show
hsm firmware show
|
| htl | ||
|
htl clearOtt htl generateOtt htl show htl set gracePeriod htl set ottExpiry htl set defaultOttExpiry |
htl clearOtt htl generateOtt htl show htl set gracePeriod htl set ottExpiry htl set defaultOttExpiry |
htl show |
| my | ||
|
my file list my file delete my file clear my password set my password expiry show my public-key add my public-key list my public-key delete my public-key clear |
my file list my file delete my file clear my password set my password expiry show my public-key add my public-key list my public-key delete my public-key clear |
my file list my file delete my file clear my password set my password expiry show my public-key add my public-key list my public-key delete my public-key clear |
|
network |
||
|
network domain network hostname network show network ping network interface network interface static network interface dhcp network interface delete network interface bonding network dns add nameserver network dns add searchdomain network dns delete nameserver network dns delete searchdomain network route add -device network route show network route delete network route clear network route show |
network domain network hostname network show network ping network interface network interface static network interface dhcp network interface delete network interface bonding network dns add nameserver network dns add searchdomain network dns delete nameserver network dns delete searchdomain network route add -device network route show network route delete network route clear network route show |
network show network ping
network interface bonding show
network route show |
|
ntls |
||
|
ntls bind ntls activateKeys ntls deactivateKeys ntls sslOpsAll ntls sslOpsRSA ntls show ntls information reset ntls information show ntls certificate monitor enable ntls certificate monitor disable ntls certificate monitor show ntls certificate monitor trap trigger ntls certificate show ntls tcp_keepalive set ntls tcp_keepalive show ntls timer set ntls timer show ntls threads set ntls threads show ntls ipcheck enable ntls ipcheck disable ntls ipcheck show |
ntls bind ntls activateKeys ntls deactivateKeys
ntls show ntls information reset ntls information show ntls certificate monitor enable ntls certificate monitor disable ntls certificate monitor show ntls certificate monitor trap trigger ntls certificate show ntls tcp_keepalive set ntls tcp_keepalive show ntls timer set ntls timer show ntls threads set ntls threads show ntls ipcheck enable ntls ipcheck disable ntls ipcheck show
|
ntls show
ntls information show
ntls certificate monitor show
ntls certificate show
ntls tcp_keepalive show
ntls timer show
ntls threads show
ntls ipcheck show
|
|
package |
||
|
package verify package update package list package listfile package deletefile package erase |
package verify package update - package list package listfile package deletefile package erase |
package list package listfile
|
|
partition |
||
|
partition create partition resize partition createuser partition activate partition deactivate partition list partition show partition showContents partition showPolicies partition changePolicy partition changePw partition resetPw partition delete partition clear partition backup partition policyTemplate change partition policyTemplate create partition policyTemplate delete partition policyTemplate export partition policyTemplate import partition policyTemplate list partition policyTemplate list partition policyTemplate load partition policyTemplate save partition policyTemplate show partition restore partition setLegacyDomain partition sff backup partition sff restore partition sff list partition sff showContents partition sff clear |
partition create partition resize partition createuser partition activate partition deactivate partition list partition show partition showContents partition showPolicies partition changePolicy partition changePw partition resetPw partition delete partition clear partition backup partition policyTemplate change partition policyTemplate create partition policyTemplate delete partition policyTemplate export partition policyTemplate import partition policyTemplate list partition policyTemplate list partition policyTemplate load partition policyTemplate save partition policyTemplate show partition restore partition setLegacyDomain partition sff backup partition sff restore partition sff list partition sff showContents partition sff clear |
partition list partition show partition showContents partition showPolicies
partition policyTemplate list
partition policyTemplate show
|
|
service |
||
|
service start service stop service restart service list service status |
service start service stop service restart service list service status |
service list service status |
|
status |
||
|
status cpu status mem status disk status ps status interface status mac status netstat status date status time status zone sensors status sysstat show status sysstat code handles memmap |
status cpu status mem status disk status ps status interface status mac status netstat status date status time status zone sensors status sysstat show status sysstat code handles memmap
|
status cpu status mem status disk status ps status interface status mac status netstat status date status time status zone sensors status sysstat show status sysstat code handles memmap |
|
stc |
||
|
stc activationTimeOut set stc activationTimeOut show stc cipher enable stc cipher disable stc cipher show stc client list stc client register stc client deregister stc hmac enable stc hmac disable stc hmac show stc partition export stc partition show stc rekeyThreshold set stc rekeyThreshold show stc replayWindow set stc replayWindow show |
stc activationTimeOut set stc activationTimeOut show stc cipher enable stc cipher disable stc cipher show stc client list stc client register stc client deregister stc hmac enable stc hmac disable stc hmac show stc partition export stc partition show stc rekeyThreshold set stc rekeyThreshold show stc replayWindow set stc replayWindow show |
stc activationTimeOut show
stc cipher show
stc hmac show
stc partition show
stc rekeyThreshold show
stc replayWindow show |
|
sysconf |
||
|
sysconf regenCert sysconf hwRegenCert sysconf secureKeys
sysconf time
sysconf appliance reboot sysconf appliance hardReboot sysconf appliance poweroff sysconf appliance rebootOnPanic enable sysconf appliance rebootOnPanic disable sysconf appliance rebootOnPanic show sysconf appliance watchdog enable sysconf appliance watchdog disable sysconf appliance watchdog show sysconf appliance cpuGovernor enable sysconf appliance cpuGovernor disable sysconf appliance cpuGovernor show
sysconf ssh device sysconf ssh ip sysconf ssh port sysconf ssh regenKeyPair sysconf ssh show sysconf ssh password enable sysconf ssh password disable sysconf ssh publickey enable sysconf ssh publickey disable
sysconf fingerprint ntls sysconf fingerprint ssh
sysconf ntp addserver sysconf ntp deleteserver sysconf ntp listservers sysconf ntp enable sysconf ntp disable sysconf ntp ntpdate sysconf ntp show sysconf ntp status sysconf ntp autokeyAuth generate sysconf ntp autokeyAuth install sysconf ntp autokeyAuth update sysconf ntp autokeyAuth list sysconf ntp autokeyAuth clear sysconf ntp symmetricAuth key add sysconf ntp symmetricAuth key list sysconf ntp symmetricAuth key delete sysconf ntp symmetricAuth key clear sysconf ntp symmetricAuth trustedKeys add sysconf ntp symmetricAuth trustedKeys list sysconf ntp symmetricAuth trustedKeys delete sysconf ntp symmetricAuth trustedKeys clear sysconf ntp log tail
sysconf snmp enable sysconf snmp disable sysconf snmp show sysconf snmp notification add sysconf snmp notification list sysconf snmp notification delete sysconf snmp notification clear sysconf snmp notification add sysconf snmp user add sysconf snmp user list sysconf snmp user delete sysconf snmp user clear sysconf snmp trap enable sysconf snmp trap disable sysconf snmp trap set sysconf snmp trap show sysconf snmp trap clear sysconf snmp trap test
sysconf drift init sysconf drift set sysconf drift reset sysconf drift status sysconf drift startmeasure sysconf drift stopmeasure
sysconf timezone set sysconf timezone show
sysconf config backup sysconf config restore sysconf config clear sysconf config delete sysconf config list sysconf config show sysconf config export sysconf config import sysconf config factoryReset
sysconf radius enable sysconf radius disable sysconf radius show sysconf radius addServer sysconf radius deleteServer
sysconf banner add sysconf banner clear
sysconf forceSOLogin enable sysconf forceSOLogin disable sysconf forceSOLogin show |
sysconf time
sysconf appliance reboot
sysconf appliance poweroff sysconf appliance rebootOnPanic enable sysconf appliance rebootOnPanic disable sysconf appliance rebootOnPanic show sysconf appliance watchdog enable sysconf appliance watchdog disable sysconf appliance watchdog show sysconf appliance cpuGovernor enable sysconf appliance cpuGovernor disable sysconf appliance cpuGovernor show
sysconf ssh device sysconf ssh ip
sysconf ssh regenKeyPair sysconf ssh show sysconf ssh password enable sysconf ssh password disable sysconf ssh publickey enable sysconf ssh publickey disable
sysconf fingerprint ntls sysconf fingerprint ssh
sysconf ntp addserver sysconf ntp deleteserver sysconf ntp listservers sysconf ntp enable sysconf ntp disable sysconf ntp ntpdate sysconf ntp show sysconf ntp status sysconf ntp autokeyAuth generate sysconf ntp autokeyAuth install sysconf ntp autokeyAuth update sysconf ntp autokeyAuth list sysconf ntp autokeyAuth clear sysconf ntp symmetricAuth key add sysconf ntp symmetricAuth key list sysconf ntp symmetricAuth key delete sysconf ntp symmetricAuth key clear sysconf ntp symmetricAuth trustedKeys add sysconf ntp symmetricAuth trustedKeys list sysconf ntp symmetricAuth trustedKeys delete sysconf ntp symmetricAuth trustedKeys clear sysconf ntp log tail
sysconf snmp enable sysconf snmp disable sysconf snmp show sysconf snmp notification add sysconf snmp notification list sysconf snmp notification delete sysconf snmp notification clear sysconf snmp notification add sysconf snmp user add sysconf snmp user list sysconf snmp user delete sysconf snmp user clear sysconf snmp trap enable sysconf snmp trap disable sysconf snmp trap set sysconf snmp trap show sysconf snmp trap clear sysconf snmp trap test
sysconf drift init sysconf drift set sysconf drift reset sysconf drift status sysconf drift startmeasure sysconf drift stopmeasure
sysconf timezone set sysconf timezone show
sysconf config list sysconf config show
|
sysconf appliance rebootOnPanic show
sysconf appliance watchdog show
sysconf appliance cpuGovernor show
sysconf ssh show
sysconf fingerprint ntls sysconf fingerprint ssh
sysconf ntp listservers
sysconf ntp show sysconf ntp status
sysconf ntp symmetricAuth key list
sysconf ntp symmetricAuth trustedKeys list
sysconf snmp show
sysconf snmp notification list
sysconf snmp user list
sysconf snmp trap show
sysconf drift status
sysconf timezone show
sysconf config list sysconf config show
|
|
syslog |
||
|
syslog period syslog rotations syslog rotate syslog show syslog tail syslog export syslog tarlogs syslog cleanup syslog remotehost add syslog remotehost list syslog remotehost delete syslog remotehost clear syslog severity set |
syslog period syslog rotations syslog rotate syslog show syslog tail syslog export syslog tarlogs
syslog remotehost add syslog remotehost list syslog remotehost delete syslog remotehost clear
|
syslog show syslog tail
syslog tarlogs |
|
token |
||
|
token backup init token backup login token backup logout token backup list token backup show token backup factoryReset token backup partition delete token backup partition list token backup partition show token backup update show token backup update capability token backup update firmware
token pki activate token pki changePin token pki resetPin token pki clone token pki predeploy token pki deploy token pki undeploy token pki listDeployed token pki listAll token pki factoryReset token pki update login token pki update logout token pki update show token pki update capability token pki update firmware |
token backup init token backup login token backup logout token backup list token backup show token backup factoryReset token backup partition delete token backup partition list token backup partition show token backup update show token backup update capability token backup update firmware
token pki activate token pki changePin token pki resetPin token pki clone token pki predeploy token pki deploy token pki undeploy token pki listDeployed token pki listAll token pki factoryReset token pki update login token pki update logout token pki update show token pki update capability token pki update firmware |
token backup list token backup show
token backup partition list token backup partition show token backup update show
token pki listDeployed token pki listAll
token pki update show
|
|
User |
||
| user add user delete user list user enable user disable user password user role add user role list user role delete user role clear |
||