uxconsole -status Display UNIX Authentication Broker Status

Valid on UNIX
capamsc141
Valid on UNIX
Use this command to display the status of UNIX Authentication Broker on the endpoint. Using the -detail argument displays all the available information about the status of UNIX Authentication Broker.
This command has the following format:
uxconsole -status [-detail]
  • -status
    Specifies to display the UNIX Authentication Broker status.
  • -detail
    Specifies to display the UNIX Authentication Broker status in detail.
Example: Display the UNIX Authentication Broker Status in Detail.
The following example shows you the output that you receive when you run the uxconsole - status -detail command.
#./uxconsole -status -detail
CA PAMSC uxconsole v12.52.0.160 - console utility
Copyright (c) YYYY CA. All rights reserved.
Registration domain - example.com
DCs - computer1, computer2
User search base - DC=unixauth,DC=example,DC=com
User search filters
Include - CN=Users; OU=Test
Exclude - OU=WrongOU
Group search base - CN=Users,DC=example,DC=com
Group search filters
Exclude - OU=Computers
Trusted domain - DC=unab,DC=example,DC=com
DCs - winserver
User search base - DC=unabdom,dc=example,dc=com
User search filters
Include - CN=users
Group search base - DC=unab,DC=example,DC=com
UNAB mode - full integration
UNAB status - activated
Agent status - running, pid = 6178
SELinux status - permissive
SELinux UNAB policy - uxauth_ex (version: 1.0)
CA AC server host - ssl://acserver.example.com:7243
CA AC server status - connected (updated: Wed Jun 27 18:11:36 YYYY)
Time sync- enabled (NTP server: 192.168.1.10.0 or fd6d:8d64:af0c:1:0:242:22:233)
Enterprise policy - [email protected] (updated: Wed Jun 27 18:11:36 YYYY)
Enterprise policy - loginHG@GHNODE#01 (updated: Wed Jun 27 18:11:36 YYYY)
Local policy - enabled
Default login access - deny
AD Unix users - 16 (updated: Wed Jun 27 18:11:36 YYYY)
AD Unix groups - 8 (updated: Wed Jun 27 18:11:36 YYYY)
AD Windows groups - 19 (updated: Wed Jun 27 18:11:36 YYYY)
Migration - not migrated
CA PAMSC - installed
Include AD users and groups in AC ladb : yes
Display AD names in AC Audit : no
Support AD non-Unix groups in AC: yes
PAM authentication in AC utilities : yes
In this example, the output displays the following information:
  • The Active Directory domain name - example.com
  • The DCs with which the endpoint communicates - computer1, computer2
  • The user and group search base filters
  • The trusted domain - unab.example.com
  • UNAB mode - full integration
  • UNAB status - activated
  • UNAB agent (uxauthd) status - running, pid = 6178
  • The SELinux installation status - permissive
  • The deployed SELinux UNAB policy - uxauth_ex (version: 1.0)
  • The CA AC server host name or IP address
  • The CA AC server connection status
  • Whether time synchronization was activated - enabled
  • The NTP server IP address - 192.168.1.100 (IPv4) or fd6d:8d64:af0c:1:0:242:22:233 (IPv6)
  • The name of deployed enterprise login polices - [email protected], loginHG@GHNODE#01
  • When the enterprise login policies were last updated
  • Whether local login policy is activated - enabled
  • Whether the default login policy is enabled - deny
  • The number of UNIX users in Active Directory - 16 and the time that they were last updated
  • The number of UNIX groups in Active Directory - 8 and the time that they were last updated
  • The number of Windows groups in Active Directory - 19
  • The time that the UNIX users and groups and Windows groups were last updated
  • The migration status of the users - not migrated
  • Whether
    Privileged Access Manager
    is installed on this endpoint - installed
  • Whether to include information regarding Active Directory users and groups in the
    Privileged Access Manager
    ladb - yes
  • Whether to display Active Directory users and groups names in
    Privileged Access Manager
    audit records - yes
  • Whether
    Privileged Access Manager
    supports non-UNIX Active Directory groups - yes
  • Whether to support PAM authentication in
    Privileged Access Manager
    utilities - yes