uxconsole -status Display UNIX Authentication Broker Status
Valid on UNIX
capamsc141
Valid on UNIX
Use this command to display the status of UNIX Authentication Broker on the endpoint. Using the -detail argument displays all the available information about the status of UNIX Authentication Broker.
This command has the following format:
uxconsole -status [-detail]
- -statusSpecifies to display the UNIX Authentication Broker status.
- -detailSpecifies to display the UNIX Authentication Broker status in detail.
Example: Display the UNIX Authentication Broker Status in Detail.
The following example shows you the output that you receive when you run the uxconsole - status -detail command.
#./uxconsole -status -detailCA PAMSC uxconsole v12.52.0.160 - console utilityCopyright (c) YYYY CA. All rights reserved.Registration domain - example.comDCs - computer1, computer2User search base - DC=unixauth,DC=example,DC=comUser search filtersInclude - CN=Users; OU=TestExclude - OU=WrongOUGroup search base - CN=Users,DC=example,DC=comGroup search filtersExclude - OU=ComputersTrusted domain - DC=unab,DC=example,DC=comDCs - winserverUser search base - DC=unabdom,dc=example,dc=comUser search filtersInclude - CN=usersGroup search base - DC=unab,DC=example,DC=comUNAB mode - full integrationUNAB status - activatedAgent status - running, pid = 6178SELinux status - permissiveSELinux UNAB policy - uxauth_ex (version: 1.0)CA AC server host - ssl://acserver.example.com:7243CA AC server status - connected (updated: Wed Jun 27 18:11:36 YYYY)Time sync- enabled (NTP server: 192.168.1.10.0 or fd6d:8d64:af0c:1:0:242:22:233)Enterprise policy - [email protected] (updated: Wed Jun 27 18:11:36 YYYY)Enterprise policy - loginHG@GHNODE#01 (updated: Wed Jun 27 18:11:36 YYYY)Local policy - enabledDefault login access - denyAD Unix users - 16 (updated: Wed Jun 27 18:11:36 YYYY)AD Unix groups - 8 (updated: Wed Jun 27 18:11:36 YYYY)AD Windows groups - 19 (updated: Wed Jun 27 18:11:36 YYYY)Migration - not migratedCA PAMSC - installedInclude AD users and groups in AC ladb : yesDisplay AD names in AC Audit : noSupport AD non-Unix groups in AC: yesPAM authentication in AC utilities : yes
In this example, the output displays the following information:
- The Active Directory domain name - example.com
- The DCs with which the endpoint communicates - computer1, computer2
- The user and group search base filters
- The trusted domain - unab.example.com
- UNAB mode - full integration
- UNAB status - activated
- UNAB agent (uxauthd) status - running, pid = 6178
- The SELinux installation status - permissive
- The deployed SELinux UNAB policy - uxauth_ex (version: 1.0)
- The CA AC server host name or IP address
- The CA AC server connection status
- Whether time synchronization was activated - enabled
- The NTP server IP address - 192.168.1.100 (IPv4) or fd6d:8d64:af0c:1:0:242:22:233 (IPv6)
- The name of deployed enterprise login polices - [email protected], loginHG@GHNODE#01
- When the enterprise login policies were last updated
- Whether local login policy is activated - enabled
- Whether the default login policy is enabled - deny
- The number of UNIX users in Active Directory - 16 and the time that they were last updated
- The number of UNIX groups in Active Directory - 8 and the time that they were last updated
- The number of Windows groups in Active Directory - 19
- The time that the UNIX users and groups and Windows groups were last updated
- The migration status of the users - not migrated
- WhetherPrivileged Access Manageris installed on this endpoint - installed
- Whether to include information regarding Active Directory users and groups in thePrivileged Access Managerladb - yes
- Whether to display Active Directory users and groups names inPrivileged Access Manageraudit records - yes
- WhetherPrivileged Access Managersupports non-UNIX Active Directory groups - yes
- Whether to support PAM authentication inPrivileged Access Managerutilities - yes