SSH Reference Manual
• If ALLOWPASSWORDSTORE is set to TRUE, passwords can be added manually to the user's password store
using the SSHCOM ADD PASSWORD command.
Passwords can also be added interactively, when users are prompted after a successful SSH password
authentication with a remote SSH daemon.
Example
ALLOWPASSWORDSTORE TRUE
ALLOWTCPFORWARDING
Use this parameter to specify whether the SSH2 daemon will completely reject TCP port forwarding through SSH or
allow TCP port forwarding depending on user configuration.
Parameter Syntax
ALLOWTCPFORWARDING TRUE|FALSE
Arguments
TRUE|FALSE
Specifies whether to allow port forwarding or not. Valid values are
o TRUE: port forwarding will be allowed unless user attribute ALLOW-TCP-FORWARDING is set to NO
for a specific user.
o FALSE: port forwarding will be generally denied, independent of the value of user attribute ALLOW-TCP-
FORWARDING.
Default
If omitted, SSH2 will reject port forwarding.
Considerations
This SSH2 parameter specifies on a global scope whether TCP port forwarding is allowed. Even if you set this parameter
to TRUE, you may allow or deny port forwarding at the user level by setting the ALLOW-TCP-FORWARDING USER
attribute. See the SSHCOM Reference for details.
Example
ALLOWTCPFORWARDING TRUE
AUDITCONSOLE
Use this parameter to define if and to what console device SSH2 audit messages are written to.
Parameter Syntax
AUDITCONSOLE * | % | $0 | auditdevice
Arguments
*
Signifies that no audit messages are written to a console.
%
Means that audit messages are written to the home terminal of the SSH2 process.
$0
Specifies that audit messages are written to $0.
auditdevice
HP NonStop SSH Reference Manual Configuring and Running SSH2 • 57