Manualshelf

SSH Reference Manual

ManualsBrandsHP ManualsServerHP NonStop G-Series
61626364656667686970
o TRUE: PRINCIPAL will be added if and only if either the 'password' or the 'keyboard-interactive'
authentication method was successful and only if the 'gssapi-with-mic' authentication was executed
successfully on Kerberos level.
o FALSE: PRINCIPAL will not be added even when either the 'password' or the 'keyboard-interactive'
authentication method was successful and the 'gssapi-with-mic' authentication was executed successfully on
Kerberos level.
Default
If omitted, AUTOADDAUTHPRINCIPAL is set to FALSE.
Example
AUTOADDAUTHPRINCIPAL TRUE
AUTOADDSYSTEMUSERS
Use this parameter to control whether remote users can log on via SSH using a Guardian user ID or alias, without
configuring them explicitly via SSHCOM in the SSHCTL
.
Parameter Syntax
AUTOADDSYSTEMUSERS TRUE|FALSE
Arguments
TRUE|FALSE
Specifies whether users logging on with a system User ID are automatically added to SSHCTL. Following are
the two valid options:
o TRUE: system users are automatically added upon first login
o FALSE: logons of any user not contained in the SSHCTL
will be denied.
Considerations
Values of parameters AUTOADDSYSTEMUSERS, AUTOADDSYSTEMUSERSLIKE
and
USETEMPLATESYSTEMUSER are used together for automatic addition of SSH USER records:
o If AUTOADDSYSTEMUSERS is FALSE, then the other two parameters will not be looked at, i.e. no SSH
USER record added automatically.
o If AUTOADDSYSTEMUSERS is TRUE and AUTOADDSYSTEMUSERSLIKE
is not set, then parameter
USETEMPLATESYSTEMUSER is not looked at. Assuming a client command like ssh <ssh-user>@host,
the value of <ssh-user> is taken as SYSTEM-USER and a system user <ssh-user> must exist in order to
successfully add the SSH USER entry automatically. All but SSH USER attributes user name and
SYSTEM-USER are set to default values (ALLOWED-AUTHENTICATIONS attribute is taken from
parameter
ALLOWEDAUTHENTICATIONS if that is defined).
o If AUTOADDSYSTEMUSERS is TRUE and AUTOADDSYSTEMUSERSLIKE is set, then parameter
USETEMPLATESYSTEMUSER is checked: If parameter USETEMPLATESYSTEMUSER is FALSE,
then the value of <ssh-user> is taken as SYSTEM-USER and a system user <ssh-user> must exist in order
to successfully add the SSH USER entry automatically. All USER attributes but the SSH USER name and
the SYSTEM-USER attribute are taken from the template user entry in this case. If parameter
USETEMPLATESYSTEMUSER is TRUE, then all USER attributes but the SSH USER name, are taken
from the template user entry, i.e. including the SYSTEM-USER attribute.
Default
If omitted, AUTOADDSYSTEMUSERS is set to FALSE.
Example
HP NonStop SSH Reference Manual Configuring and Running SSH2 63