pdu/v3.4.0/Security_8idl_source.html

 #include <UserEvent.idl>

 module security {

     enumeration IpfwPolicy {
         ACCEPT,
         DROP,
         REJECT
     };

     structure IpfwRule {
         string ipMask;
         IpfwPolicy policy;
     };

     structure IpFw_2_0_0 {
         boolean enabled;
         IpfwPolicy defaultPolicyIn;
         IpfwPolicy defaultPolicyOut;
         vector<IpfwRule> ruleSetIn;
         vector<IpfwRule> ruleSetOut;
     };

     enumeration RoleAccessPolicy {
         ALLOW,
         DENY
     };

     structure RoleAccessRule {
         string           startIp;
         string           endIp;
         int              roleId;
         RoleAccessPolicy policy;
     };

     structure RoleAccessControl {
         boolean enabled;
         RoleAccessPolicy defaultPolicy;
         vector<RoleAccessRule> rules;
     };

     structure PasswordSettings {
         boolean   enableAging;
         int       agingInterval;
         boolean   enableStrongReq;
         int       minPwLength;
         int       maxPwLength;
         boolean   enforceLower;
         boolean   enforceUpper;
         boolean   enforceNumeric;
         boolean   enforceSpecial;
         int       pwHistoryDepth;
     };

     structure SSHSettings {
         boolean  allowPasswordAuth;
         boolean  allowPublicKeyAuth;
     };

     structure RestrictedServiceAgreement {
         boolean enabled;
         string  banner;
     };

     valueobject PasswordSettingsChanged extends event.UserEvent {
         PasswordSettings oldSettings;
         PasswordSettings newSettings;
     };

     interface Security_3_0_1 {

         constant int ERR_INVALID_VALUE = 1;

         structure Settings {
             boolean             http2httpsRedir;
             int                 userBlockTimeout;
             int                 userMaxFailedLogins;
             IpFw_2_0_0          ipFw;
             IpFw_2_0_0          ipV6Fw;
             RoleAccessControl   roleAccessControl;
             RoleAccessControl   roleAccessControlV6;
             PasswordSettings    pwSettings;
             int                 idleTimeout;
             boolean             singleLogin;
             SSHSettings         sshSettings;
         };

         [deprecated]
         Settings getSettings();

         [deprecated]
         int setSettings(in Settings settings);

         boolean getHttpRedirSettings();

         void setHttpRedirSettings(in boolean http2httpsRedir);

         IpFw_2_0_0 getIpFwSettings();

         int setIpFwSettings(in IpFw_2_0_0 ipFw);

         IpFw_2_0_0 getIpV6FwSettings();

         int setIpV6FwSettings(in IpFw_2_0_0 ipV6Fw);

         RoleAccessControl getRoleAccessControlSettings();

         int setRoleAccessControlSettings(in RoleAccessControl settings);

         RoleAccessControl getRoleAccessControlSettingsV6();

         int setRoleAccessControlSettingsV6(in RoleAccessControl settings);

         void getBlockSettings(out int blockTimeout, out int maxFailedLogins);

         int setBlockSettings(in int blockTimeout, in int maxFailedLogins);

         PasswordSettings getPwSettings();

         int setPwSettings(in PasswordSettings pwSettings);

         int getIdleTimeoutSettings();

         int setIdleTimeoutSettings(in int idleTimeout);

         boolean getSingleLoginLimitation();

         void setSingleLoginLimitation(in boolean singleLogin);

         SSHSettings getSSHSettings();

         void setSSHSettings(in SSHSettings settings);

         RestrictedServiceAgreement getRestrictedServiceAgreement();

         int setRestrictedServiceAgreement(in RestrictedServiceAgreement settings);

         vector<string> getSupportedFrontPanelPrivileges();

         vector<string> getFrontPanelPrivileges();

         int setFrontPanelPrivileges(in vector<string> privileges);

     };

 }
security::RoleAccessRule::roleId
int roleId
Role id.
Definition: Security.idl:40

security::PasswordSettings::maxPwLength
int maxPwLength
Maximum password length.
Definition: Security.idl:57

security::IpfwRule
IP packet filter rule.
Definition: Security.idl:16

security::IpfwRule::ipMask
string ipMask
Remote IP and network mask.
Definition: Security.idl:17

security::RoleAccessControl::enabled
boolean enabled
true to enable role-based access control
Definition: Security.idl:46

security::PasswordSettings::enableStrongReq
boolean enableStrongReq
true to enable strong password requirements
Definition: Security.idl:55

security::RoleAccessRule::endIp
string endIp
End of IP range.
Definition: Security.idl:39

security::Security_3_0_1::Settings
Security configuration This structure is deprecated and will be removed in V3.0, use concrete getters...
Definition: Security.idl:95

security::Security_3_0_1::Settings::roleAccessControl
RoleAccessControl roleAccessControl
Role-based access control settings.
Definition: Security.idl:101

security::RoleAccessRule
Role-based access rule.
Definition: Security.idl:37

security::PasswordSettings
Password settings.
Definition: Security.idl:52

security::IpFw_2_0_0
IP packet filter configuration.
Definition: Security.idl:22

security::Security_3_0_1::Settings::pwSettings
PasswordSettings pwSettings
Password settings.
Definition: Security.idl:103

security::IpfwPolicy
IpfwPolicy
IP packet filter policy.
Definition: Security.idl:9

security::PasswordSettings::enforceNumeric
boolean enforceNumeric
Passwords must contain at least one numeric character.
Definition: Security.idl:60

security::Security_3_0_1::Settings::sshSettings
SSHSettings sshSettings
SSH authentication settings.
Definition: Security.idl:106

security::PasswordSettingsChanged
valueobject PasswordSettingsChanged
This Event is emitted after any of the password-settings has been changed.
Definition: Security.idl:82

security::DENY
Access denied.
Definition: Security.idl:33

security::Security_3_0_1::Settings::http2httpsRedir
boolean http2httpsRedir
true to enable HTTP-to-HTTPS redirection
Definition: Security.idl:96

security::ACCEPT
Accept the packet.
Definition: Security.idl:10

security::Security_3_0_1::Settings::userBlockTimeout
int userBlockTimeout
User blocking timeout in minutes.
Definition: Security.idl:97

security::PasswordSettings::minPwLength
int minPwLength
Minimum password length.
Definition: Security.idl:56

security::RoleAccessPolicy
RoleAccessPolicy
Role-based access policy.
Definition: Security.idl:31

security::PasswordSettings::enforceSpecial
boolean enforceSpecial
Passwords must contain at least one special character.
Definition: Security.idl:61

security::PasswordSettings::agingInterval
int agingInterval
Aging interval in days.
Definition: Security.idl:54

security::RestrictedServiceAgreement::enabled
boolean enabled
Enforce Restricted Service Agreement.
Definition: Security.idl:73

security::RoleAccessControl::rules
vector< RoleAccessRule > rules
List of access rules.
Definition: Security.idl:48

security::RoleAccessRule::startIp
string startIp
Start of IP range.
Definition: Security.idl:38

security::ALLOW
Access granted.
Definition: Security.idl:32

security::IpFw_2_0_0::defaultPolicyOut
IpfwPolicy defaultPolicyOut
The default policy for outbound traffic in case no rule matches.
Definition: Security.idl:25

security::PasswordSettings::enableAging
boolean enableAging
true to enable password aging
Definition: Security.idl:53

security::Security_3_0_1::Settings::roleAccessControlV6
RoleAccessControl roleAccessControlV6
Role-based access control settings for IPv6.
Definition: Security.idl:102

security::Security_3_0_1::Settings::ipFw
IpFw_2_0_0 ipFw
IP packet filter configuration.
Definition: Security.idl:99

security::RoleAccessControl
Role-based access control settings.
Definition: Security.idl:45

security::SSHSettings::allowPasswordAuth
boolean allowPasswordAuth
Allow password authentication.
Definition: Security.idl:67

security::SSHSettings::allowPublicKeyAuth
boolean allowPublicKeyAuth
Allow public key authentication.
Definition: Security.idl:68

security::Security_3_0_1
Security configuration interface
Definition: Security.idl:87

security::IpfwRule::policy
IpfwPolicy policy
Filter policy.
Definition: Security.idl:18

security::IpFw_2_0_0::defaultPolicyIn
IpfwPolicy defaultPolicyIn
The default policy for inbound traffic in case no rule matches.
Definition: Security.idl:24

security::REJECT
Discard packet, send error response.
Definition: Security.idl:12

security::RoleAccessControl::defaultPolicy
RoleAccessPolicy defaultPolicy
Default policy.
Definition: Security.idl:47

security::PasswordSettings::enforceUpper
boolean enforceUpper
Passwords must contain at least one upper case character.
Definition: Security.idl:59

security::PasswordSettings::enforceLower
boolean enforceLower
Passwords must contain at least one lower case character.
Definition: Security.idl:58

security::RestrictedServiceAgreement::banner
string banner
Restricted Service Agreement Banner.
Definition: Security.idl:74

security::IpFw_2_0_0::ruleSetOut
vector< IpfwRule > ruleSetOut
Ordered list of outbound firewall rules.
Definition: Security.idl:27

security::SSHSettings
SSH authentication settings.
Definition: Security.idl:66

security::RestrictedServiceAgreement
Restricted Service Agreement settings.
Definition: Security.idl:72

security::DROP
Silently discard the packet.
Definition: Security.idl:11

security::IpFw_2_0_0::enabled
boolean enabled
true to enable packet filtering
Definition: Security.idl:23

security::IpFw_2_0_0::ruleSetIn
vector< IpfwRule > ruleSetIn
Ordered list of inbound firewall rules.
Definition: Security.idl:26

security
Security Configuration
Definition: Security.idl:6

security::Security_3_0_1::Settings::ipV6Fw
IpFw_2_0_0 ipV6Fw
IPv6 packet filter configuration.
Definition: Security.idl:100

security::PasswordSettings::pwHistoryDepth
int pwHistoryDepth
Number of entries in password history.
Definition: Security.idl:62

security::Security_3_0_1::Settings::singleLogin
boolean singleLogin
true to enable single login limitation
Definition: Security.idl:105

security::Security_3_0_1::Settings::idleTimeout
int idleTimeout
Session idle timeout in minutes.
Definition: Security.idl:104

security::Security_3_0_1::Settings::userMaxFailedLogins
int userMaxFailedLogins
Maximum number of failed logins before blocking a user.
Definition: Security.idl:98

security::RoleAccessRule::policy
RoleAccessPolicy policy
Access policy.
Definition: Security.idl:41