The CA PAM Server recognizes the following commands. These commands are issued on the virtual console of the PAM server. They may also be issued as secondary console commands with the CP SEND command from the secondary console user.
This command causes the PAM Server to terminate.
This command causes the server to reread the configuration file. If pathname is specified, it is the name of a new configuration file. It replaces the last configuration file specified, on the command line with the -f command line option or on a previous MODIFY command. When rereading the configuration file, not all configuration options are applied; some are ignored. The options from the configuration file that are applied are as follows:
Specified debug level replaces the existing debug level. The new value controls what trace information is subsequently written to the trace file.
Server closes the current trace file and begins writing trace records to the file specified on the LOGFILE option.
Specified syslog level replaces the existing syslog level. The new value controls what trace information is subsequently written to the syslog file
Requests value specified replaces the existing value.
Specified thread values replaces the existing threads value. If the new value is less than the old value, and the number of started worker threads exceeds the new threads value, the server will terminate enough worker threads to bring the total number of started threads down to the threads value.
Requests value specified replaces the existing value.
Requests value specified replaces the existing value.
Requests value specified replaces the existing value.
Requests value specified replaces the existing value.
All other configuration file options are checked for syntax but ignored.
Note: If pathname is specified, it cannot name an HFS file whose name has both upper and lowercase characters. This limit is imposed because the operator interface translates all characters on the MODIFY command to uppercase before passing the data to the application. The server will attempt to open the file using the name passed. If that fails, the server will convert pathname to lowercase and try again.
This command causes the server to display the current options in effect to the console. The options displayed are:
Security product, debug level, syslog level, log file name, maximum threads, maximum requests, host address, port, gentlehup, gentlestop, identity mapping, segment being used and max password length.
To display only a single value, issue the following:
STATUS,option
where option can be:
PROD, DEBUG, LOGLEVEL, LOGFILE, THREADS, REQUESTS, HOST, PORT, GENTLEHUP, GENTLESTOP, MAPPING, SEGMENT, MAXPSWD
Causes the server to change the current debug level in effect to the new value. This change takes effect immediately without having to stop and restart the server.
Causes the server to change the current syslog level in effect to the new value. This change takes effect immediately without having to stop and restart the server.
Causes the server to change the maximum password length that it supports to the new value. This change takes effect immediately without having to stop and restart the server. The maximum is 200.
Causes the server to change the segment to extract the user's Linux information from. The valid values are Linux and OMVS. The default is OMVS. This change takes effect immediately without having to stop and restart the server.
|
Copyright © 2013 CA Technologies.
All rights reserved.
|
|