Host Networks (HOSTNET) Properties

Use the Host Networks (HOSTNET class) properties windows for creating, modifying, or viewing a record of this class. Each record defines a group of hosts on a particular network. These records define rules that govern the access other hosts in the group have to the local host when using IPv4 communication. Mask and match values are applied to the IP address of the requesting host to determine whether the requesting host belongs to the group.
cminderpim14
Use the Host Networks (HOSTNET class) properties windows for creating, modifying, or viewing a record of this class. Each record defines a group of hosts on a particular network. These records define rules that govern the access other hosts in the group have to the local host when using IPv4 communication. Mask and match values are applied to the IP address of the requesting host to determine whether the requesting host belongs to the group.
This window contains the following fields in the General tab:
  • Name
    Defines the name of the resource.
  • Comment
    Defines extra information that you want to include in the record. CA Privileged Identity Manager does not use this information for authorization.
    Limit:
     255 alphanumeric characters
  • Owner
    Defines the owner of a record.
  • Network Mask
    Defines an IP address mask that specifies the group of hosts to which this record applies.
    If the IP address of the requesting host matches this pattern, the record 
    does not
     apply to that host.
    Limit:
     IPv4 format IP address
    Example: 
    Consider that you configure the IP address mask as 255.255.0.0. Any computer with an IP address whose first two qualifiers are 255.255 is considered as 
    not
     coming from the network that this record defines.
  • Match
    Defines an IP address that identifies the group of hosts to which this record applies. The first two qualifiers in the IP address of the requesting host are compared with the IP address that you configure. If the IP address of the requesting host matches this pattern, the record applies to that host.
    Limit:
     IPv4 format IP address
    Example:
     Consider that you configure the IP address as 192.168.0.0. Any computer with an IP address whose first two qualifiers are 192.168 is considered as coming from the network that this record defines.
This window contains the following fields in the Authorize tab:
  • Accessors
    Defines the access control list (ACL) for the resource. This list specifies services the local host can provide to the hosts in this network, with a specified access authority.
    Each element in the access control list contains the following information:
    • Service/Port Name
      Defines a service name or a port number for the service that the local host can then give to the hosts in this network.
    • ACL
      Defines the access authority that the accessor has to the resource.
This window contains the following fields in the Audit tab:
  • Audit Modes
    Defines the types of access events that CA Privileged Identity Manager records in the audit log. You can select any combination of the following activities:
    • Audit Success
      Granted access requests.
    • Audit Failure
      Denied access requests (default).
    • Warning Mode
      Specifies whether Warning mode is enabled. When Warning mode is enabled on a resource, all resource access requests are granted. If an access request violates an access rule, a record is written to the audit log.
This window contains the following fields in the Time Restrictions tab:
  • Calendar
    Represents a Unicenter TNG calendar object for user, group, and resource restrictions in CA Privileged Identity Manager. CA Privileged Identity Manager retrieves Unicenter TNG active calendars at specified time intervals.
  • Days Restriction
    Defines the native day restrictions that govern when an accessor can access the resource.
  • Restrictions
    Defines the native time restrictions that govern when an accessor can access the resource.
This window contains the following fields in the Information tab:
  • Update Time
    Displays the date and time when the record was last modified.
  • Updated By
    Displays the administrator who performed the update.
  • Create Time
    Indicate the date and time when a record gets created.