KeeperPAMコマンド

パスワードのローテーションを含むKeeperPAM機能の管理

概要

パスワードのローテーション、PAM設定、およびKeeper Gateway設定を含むKeeperPAMは、pamコマンドおよびサブコマンドを使用して、Commanderで制御および管理できます。これらのコマンドは、Keeper Secrets Managerのパスワードローテーション機能をサポートしています。

pamコマンド

コマンド: pam

詳細: KeeperPAMの制御を行います。

pam command [--options]

Command    Description
---------  -----------------------------
gateway    Manage Gateways
config     Manage PAM Configurations
rotation   Manage Rotations
action     Execute action on the Gateway

サブコマンド: gateway

詳細: Keeper Gatewayサービスを表示、作成、削除します。Keeper Gatewayの詳細については、こちらをご参照ください。

My Vault> pam gateway help
pam command [--options]

Command    Description
---------  ------------------
list       List Gateways
new        Create new Gateway
remove     Remove Gateway

サブコマンド: config

詳細: Keeper PAMの設定を表示、作成、編集、削除します。PAM設定とKeeperのローテーション機能の詳細は、パスワードローテーションのページをご参照ください。

My Vault> pam config help
pam command [--options]

Command    Description
---------  -------------------------------------------------------------
new        Create new PAM Configuration
edit       Edit PAM Configuration
list       List available PAM Configurations associated with the Gateway
remove     Remove a PAM Configuration

サブコマンド: rotation

詳細: 記録のKeeper Rotationの設定を表示および作成します。PAM設定とKeeperのローテーション機能の詳細は、パスワードローテーションのページをご参照ください。コマンドの詳細については、-helpオプションをご利用ください。

My Vault> pam rotation help
pam command [--options]

Command    Description
---------  -----------------------------------
new        Create New Record Rotation Schedule
list       List Record Rotation Schedulers
info       Get Rotation Info

new

My Vault> pam rotation new --help
usage: pam rotation new [-h] --record RECORD_UID --config CONFIG_UID [--resource RESOURCE_UID] [--schedulejson SCHEDULE_JSON_DATA]
                        [--schedulecron SCHEDULE_CRON_DATA] [--complexity PWD_COMPLEXITY]

optional arguments:
  -h、--help            show this help message and exit
  --record RECORD_UID, -r RECORD_UID
                        Record UID that will be rotated manually or via schedule
  --config CONFIG_UID, -c CONFIG_UID
                        UID of the PAM Configuration.
  --resource RESOURCE_UID, -rs RESOURCE_UID
                        UID of the resource recourd.
  --schedulejson SCHEDULE_JSON_DATA, -sj SCHEDULE_JSON_DATA
                        Json of the scheduler.Example: -sj '{"type":"WEEKLY", "utcTime":"15:44", "weekday":"SUNDAY", "intervalCount":1}'
  --schedulecron SCHEDULE_CRON_DATA, -sc SCHEDULE_CRON_DATA
                        Cron tab string of the scheduler.Example: to run job daily at 5:56PM UTC enter following cron -sc "0 56 17 * * ?"
  --complexity PWD_COMPLEXITY, -x PWD_COMPLEXITY
                        Password complexity: length, upper, lower, digits, symbols.Ex.32,5,5,5,5

list

My Vault> pam rotation list --help
usage: pam rotation list [-h] [--verbose]

optional arguments:
  -h、--help     show this help message and exit
  --verbose、-v  Verbose output

info

My Vault> pam rotation info --help 
usage: dr-router-get-rotation-info-parser [-h] --record-uid RECORD_UID

optional arguments:
  -h、--help            show this help message and exit
  --record-uid RECORD_UID, -r RECORD_UID
                        Record UID to rotate

script

My Vault> pam rotation script --help
pam command [--options]

Command    Description
---------  ---------------------------------
list       List script fields
add        List Record Rotation Schedulers
edit       Add, delete, or edit script field
delete     Delete script field

サブコマンド: action

My Vault> pam action help
pam command [--options]

Command              Description
-------------------  ----------------
gateway-info         Info command
unreleased-discover  Discover command
rotate               Rotate command
job-info             View Job details
job-cancel           View Job details

gateway-info

My Vault> pam action gateway-info --help
usage: dr-info-command [-h] [--gateway GATEWAY_UID] [--verbose]

optional arguments:
  -h、--help            show this help message and exit
  --gateway GATEWAY_UID, -g GATEWAY_UID
                        Gateway UID
  --verbose、-v         Verbose Output

unreleased-discover

My Vault> pam action unreleased-discover --help
usage: dr-discover-command [-h] --shared-folder SHARED_FOLDER_UID --provider-record PROVIDER_RECORD_UID

optional arguments:
  -h、--help            show this help message and exit
  --shared-folder SHARED_FOLDER_UID, -f SHARED_FOLDER_UID
                        UID of the Shared Folder where results will be stored
  --provider-record PROVIDER_RECORD_UID, -p PROVIDER_RECORD_UID
                        Provider Record UID that defines network

rotate

My Vault> pam action rotate --help
usage: dr-rotate-command [-h] --record-uid RECORD_UID

optional arguments:
  -h、--help            show this help message and exit
  --record-uid RECORD_UID, -r RECORD_UID
                        Record UID to rotate

job-info

My Vault> pam action job-info --help
usage: pam-action-job-command [-h] [--gateway GATEWAY_UID] job_id

positional arguments:
  job_id

optional arguments:
  -h、--help            show this help message and exit
  --gateway GATEWAY_UID, -g GATEWAY_UID
                        Gateway UID.Needed only if there are more than one gateway running

job-cancel

My Vault> pam action job-cancel --help
usage: pam-action-job-command [-h] [--gateway GATEWAY_UID] job_id

positional arguments:
  job_id

optional arguments:
  -h、--help            show this help message and exit
  --gateway GATEWAY_UID, -g GATEWAY_UID
                        Gateway UID.Needed only if there are more than one gateway running

前へ共有コマンド次へ接続コマンド

最終更新 2 か月前