Host Networks (HOSTNET) Properties
Use the Host Networks (HOSTNET class) properties windows for creating, modifying, or viewing a record of this class. Each record defines a group of hosts on a particular network. These records define rules that govern the access other hosts in the group have to the local host when using IPv4 communication. Mask and match values are applied to the IP address of the requesting host to determine whether the requesting host belongs to the group.
cminderpim14
Use the Host Networks (HOSTNET class) properties windows for creating, modifying, or viewing a record of this class. Each record defines a group of hosts on a particular network. These records define rules that govern the access other hosts in the group have to the local host when using IPv4 communication. Mask and match values are applied to the IP address of the requesting host to determine whether the requesting host belongs to the group.
This window contains the following fields in the General tab:
- NameDefines the name of the resource.
- CommentDefines extra information that you want to include in the record. CA Privileged Identity Manager does not use this information for authorization.Limit:255 alphanumeric characters
- OwnerDefines the owner of a record.
- Network MaskDefines an IP address mask that specifies the group of hosts to which this record applies.If the IP address of the requesting host matches this pattern, the recorddoes notapply to that host.Limit:IPv4 format IP addressExample:Consider that you configure the IP address mask as 255.255.0.0. Any computer with an IP address whose first two qualifiers are 255.255 is considered asnotcoming from the network that this record defines.
- MatchDefines an IP address that identifies the group of hosts to which this record applies. The first two qualifiers in the IP address of the requesting host are compared with the IP address that you configure. If the IP address of the requesting host matches this pattern, the record applies to that host.Limit:IPv4 format IP addressExample:Consider that you configure the IP address as 192.168.0.0. Any computer with an IP address whose first two qualifiers are 192.168 is considered as coming from the network that this record defines.
This window contains the following fields in the Authorize tab:
- AccessorsDefines the access control list (ACL) for the resource. This list specifies services the local host can provide to the hosts in this network, with a specified access authority.Each element in the access control list contains the following information:
- Service/Port NameDefines a service name or a port number for the service that the local host can then give to the hosts in this network.
- ACLDefines the access authority that the accessor has to the resource.
This window contains the following fields in the Audit tab:
- Audit ModesDefines the types of access events that CA Privileged Identity Manager records in the audit log. You can select any combination of the following activities:
- Audit SuccessGranted access requests.
- Audit FailureDenied access requests (default).
- Warning ModeSpecifies whether Warning mode is enabled. When Warning mode is enabled on a resource, all resource access requests are granted. If an access request violates an access rule, a record is written to the audit log.
This window contains the following fields in the Time Restrictions tab:
- CalendarRepresents a Unicenter TNG calendar object for user, group, and resource restrictions in CA Privileged Identity Manager. CA Privileged Identity Manager retrieves Unicenter TNG active calendars at specified time intervals.
- Days RestrictionDefines the native day restrictions that govern when an accessor can access the resource.
- RestrictionsDefines the native time restrictions that govern when an accessor can access the resource.
This window contains the following fields in the Information tab:
- Update TimeDisplays the date and time when the record was last modified.
- Updated ByDisplays the administrator who performed the update.
- Create TimeIndicate the date and time when a record gets created.