110 value='/etc/rad/key.pem' /> |
110 value='/etc/rad/key.pem' /> |
111 <propval name='generate' type='boolean' value='true' /> |
111 <propval name='generate' type='boolean' value='true' /> |
112 </property_group> |
112 </property_group> |
113 </instance> |
113 </instance> |
114 |
114 |
115 <stability value='Unstable' /> |
115 <stability value='Unstable' /> |
116 |
116 |
117 <template> |
117 <template> |
118 <common_name> |
118 <common_name> |
119 <loctext xml:lang='C'> |
119 <loctext xml:lang='C'> |
120 Remote Administration Daemon |
120 Remote Administration Daemon |
121 </loctext> |
121 </loctext> |
122 </common_name> |
122 </common_name> |
|
123 <description> |
|
124 <loctext xml:lang='C'> |
|
125 The Remote Administration Daemon, or rad, is a service that provides secure, remote administrative access to a Solaris system. |
|
126 </loctext> |
|
127 </description> |
123 <documentation> |
128 <documentation> |
124 <manpage title='rad' section='1M' |
129 <manpage title='rad' section='1M' |
125 manpath='/usr/share/man' /> |
130 manpath='/usr/share/man' /> |
126 </documentation> |
131 </documentation> |
|
132 |
|
133 <pg_pattern name='config' type='application' target='this' |
|
134 required='true'> |
|
135 <common_name> |
|
136 <loctext xml:lang='C'> |
|
137 Rad configuration |
|
138 </loctext> |
|
139 </common_name> |
|
140 <description> |
|
141 <loctext xml:lang='C'> |
|
142 General configuration parameters for rad as described in rad(1M). In addition to the general configuration parameters, at least one transport must be configured for each instance of rad. |
|
143 </loctext> |
|
144 </description> |
|
145 <prop_pattern name='moduledir' type='astring' |
|
146 required='false'> |
|
147 <common_name> |
|
148 <loctext xml:lang='C'> |
|
149 Module directory |
|
150 </loctext> |
|
151 </common_name> |
|
152 <description> |
|
153 <loctext xml:lang='C'> |
|
154 List of directories to scan and load modules from. A module directory or a specific module must be specified. |
|
155 </loctext> |
|
156 </description> |
|
157 <visibility value='readwrite'/> |
|
158 </prop_pattern> |
|
159 <prop_pattern name='modules' type='astring' |
|
160 required='false'> |
|
161 <common_name> |
|
162 <loctext xml:lang='C'> |
|
163 Module name |
|
164 </loctext> |
|
165 </common_name> |
|
166 <description> |
|
167 <loctext xml:lang='C'> |
|
168 File names of specific modules to load. A specific module directory or module directory must be specified. |
|
169 </loctext> |
|
170 </description> |
|
171 <visibility value='readwrite'/> |
|
172 </prop_pattern> |
|
173 <prop_pattern name='pam_service' type='astring' |
|
174 required='false'> |
|
175 <common_name> |
|
176 <loctext xml:lang='C'> |
|
177 PAM service name |
|
178 </loctext> |
|
179 </common_name> |
|
180 <description> |
|
181 <loctext xml:lang='C'> |
|
182 PAM service name to use when authenticating. Defaults to "rad". |
|
183 </loctext> |
|
184 </description> |
|
185 <visibility value='readwrite'/> |
|
186 <cardinality min='1' max='1' /> |
|
187 </prop_pattern> |
|
188 <prop_pattern name='debug' type='boolean' |
|
189 required='false'> |
|
190 <common_name> |
|
191 <loctext xml:lang='C'> |
|
192 Verbose debug flag |
|
193 </loctext> |
|
194 </common_name> |
|
195 <description> |
|
196 <loctext xml:lang='C'> |
|
197 If true, rad will emit verbose debugging output. Defaults to "false". |
|
198 </loctext> |
|
199 </description> |
|
200 <visibility value='readwrite'/> |
|
201 <cardinality min='1' max='1' /> |
|
202 </prop_pattern> |
|
203 <prop_pattern name='timeout' type='integer' |
|
204 required='false'> |
|
205 <common_name> |
|
206 <loctext xml:lang='C'> |
|
207 Response timeout |
|
208 </loctext> |
|
209 </common_name> |
|
210 <description> |
|
211 <loctext xml:lang='C'> |
|
212 Number of seconds to wait for an individual response from the client while authenticating. Defaults to "180". |
|
213 </loctext> |
|
214 </description> |
|
215 <units> |
|
216 <loctext xml:lang='C'> |
|
217 seconds |
|
218 </loctext> |
|
219 </units> |
|
220 <visibility value='readwrite'/> |
|
221 <cardinality min='1' max='1'/> |
|
222 </prop_pattern> |
|
223 </pg_pattern> |
|
224 |
|
225 <pg_pattern type='xport_unix' target='this' required='false'> |
|
226 <common_name> |
|
227 <loctext xml:lang='C'> |
|
228 Rad AF_UNIX socket transport configuration |
|
229 </loctext> |
|
230 </common_name> |
|
231 <description> |
|
232 <loctext xml:lang='C'> |
|
233 The "unix" transport instance configuration parameters. The "unix" transport listens for connections on a unix-domain socket. |
|
234 </loctext> |
|
235 </description> |
|
236 <prop_pattern name='proto' type='astring' |
|
237 required='false'> |
|
238 <common_name> |
|
239 <loctext xml:lang='C'> |
|
240 Protocol |
|
241 </loctext> |
|
242 </common_name> |
|
243 <description> |
|
244 <loctext xml:lang='C'> |
|
245 The protocol to use with the "unix" transport instance. Defaults to "rad". |
|
246 </loctext> |
|
247 </description> |
|
248 <visibility value='readonly'/> |
|
249 <cardinality min='1' max='1' /> |
|
250 <choices> |
|
251 <value name='rad'> |
|
252 <description> |
|
253 <loctext xml:lang='C'> |
|
254 The rad protocol. |
|
255 </loctext> |
|
256 </description> |
|
257 </value> |
|
258 </choices> |
|
259 </prop_pattern> |
|
260 <prop_pattern name='path' type='astring' |
|
261 required='true'> |
|
262 <common_name> |
|
263 <loctext xml:lang='C'> |
|
264 Path |
|
265 </loctext> |
|
266 </common_name> |
|
267 <description> |
|
268 <loctext xml:lang='C'> |
|
269 The path to listen on for connections. |
|
270 </loctext> |
|
271 </description> |
|
272 <visibility value='readwrite'/> |
|
273 <cardinality min='1' max='1' /> |
|
274 </prop_pattern> |
|
275 <prop_pattern name='control' type='boolean' |
|
276 required='false'> |
|
277 <common_name> |
|
278 <loctext xml:lang='C'> |
|
279 Control port flag |
|
280 </loctext> |
|
281 </common_name> |
|
282 <description> |
|
283 <loctext xml:lang='C'> |
|
284 If true, rad will accept connections on the control port. Defaults to "false". |
|
285 </loctext> |
|
286 </description> |
|
287 <visibility value='hidden'/> |
|
288 <cardinality min='1' max='1' /> |
|
289 </prop_pattern> |
|
290 <prop_pattern name='peercred' type='boolean' |
|
291 required='false'> |
|
292 <common_name> |
|
293 <loctext xml:lang='C'> |
|
294 Authentication flag |
|
295 </loctext> |
|
296 </common_name> |
|
297 <description> |
|
298 <loctext xml:lang='C'> |
|
299 If true, rad will attempt to automatically authenticate client connections using getpeerucred(3C). Defaults to "true". |
|
300 </loctext> |
|
301 </description> |
|
302 <visibility value='readwrite'/> |
|
303 <cardinality min='1' max='1' /> |
|
304 </prop_pattern> |
|
305 </pg_pattern> |
|
306 |
|
307 <pg_pattern type='xport_tcp' target='this' required='false'> |
|
308 <common_name> |
|
309 <loctext xml:lang='C'> |
|
310 Rad TCP socket transport configuration |
|
311 </loctext> |
|
312 </common_name> |
|
313 <description> |
|
314 <loctext xml:lang='C'> |
|
315 The "tcp" transport instance configuration parameters. The "tcp" transport listens for clear-text connections on a TCP socket. |
|
316 </loctext> |
|
317 </description> |
|
318 <prop_pattern name='proto' type='astring' |
|
319 required='false'> |
|
320 <common_name> |
|
321 <loctext xml:lang='C'> |
|
322 Protocol |
|
323 </loctext> |
|
324 </common_name> |
|
325 <description> |
|
326 <loctext xml:lang='C'> |
|
327 The protocol to use with the "tcp" transport instance. Defaults to "rad". |
|
328 </loctext> |
|
329 </description> |
|
330 <visibility value='readonly'/> |
|
331 <cardinality min='1' max='1' /> |
|
332 <choices> |
|
333 <value name='rad'> |
|
334 <description> |
|
335 <loctext xml:lang='C'> |
|
336 The rad protocol. |
|
337 </loctext> |
|
338 </description> |
|
339 </value> |
|
340 </choices> |
|
341 </prop_pattern> |
|
342 <prop_pattern name='port' type='integer' |
|
343 required='true'> |
|
344 <common_name> |
|
345 <loctext xml:lang='C'> |
|
346 Port |
|
347 </loctext> |
|
348 </common_name> |
|
349 <description> |
|
350 <loctext xml:lang='C'> |
|
351 The port to listen on for connections. |
|
352 </loctext> |
|
353 </description> |
|
354 <visibility value='readwrite'/> |
|
355 <cardinality min='1' max='1' /> |
|
356 <constraints> |
|
357 <range min='1024' max='65535'/> |
|
358 </constraints> |
|
359 </prop_pattern> |
|
360 <prop_pattern name='localonly' type='boolean' |
|
361 required='false'> |
|
362 <common_name> |
|
363 <loctext xml:lang='C'> |
|
364 Local flag |
|
365 </loctext> |
|
366 </common_name> |
|
367 <description> |
|
368 <loctext xml:lang='C'> |
|
369 If true, rad will only listen for connections from the local machine. Defaults to "true". |
|
370 </loctext> |
|
371 </description> |
|
372 <visibility value='readwrite'/> |
|
373 <cardinality min='1' max='1' /> |
|
374 </prop_pattern> |
|
375 <prop_pattern name='noauth' type='boolean' |
|
376 required='false'> |
|
377 <common_name> |
|
378 <loctext xml:lang='C'> |
|
379 Noauth flag |
|
380 </loctext> |
|
381 </common_name> |
|
382 <description> |
|
383 <loctext xml:lang='C'> |
|
384 If true, rad will not require connections to authenticate, and requests are run as the rad process's user. Defaults to "false". |
|
385 </loctext> |
|
386 </description> |
|
387 <visibility value='hidden'/> |
|
388 <cardinality min='1' max='1' /> |
|
389 </prop_pattern> |
|
390 </pg_pattern> |
|
391 |
|
392 <pg_pattern type='xport_tls' target='this' required='false'> |
|
393 <common_name> |
|
394 <loctext xml:lang='C'> |
|
395 Rad TLS transport configuration |
|
396 </loctext> |
|
397 </common_name> |
|
398 <description> |
|
399 <loctext xml:lang='C'> |
|
400 The "tls" transport instance configuration parameters. The "tls" transport listens for TLS connections on a TCP socket. |
|
401 </loctext> |
|
402 </description> |
|
403 <prop_pattern name='proto' type='astring' |
|
404 required='false'> |
|
405 <common_name> |
|
406 <loctext xml:lang='C'> |
|
407 Protocol |
|
408 </loctext> |
|
409 </common_name> |
|
410 <description> |
|
411 <loctext xml:lang='C'> |
|
412 The protocol to use with the "tls" transport instance. Defaults to "rad". |
|
413 </loctext> |
|
414 </description> |
|
415 <visibility value='readonly'/> |
|
416 <cardinality min='1' max='1' /> |
|
417 <choices> |
|
418 <value name='rad'> |
|
419 <description> |
|
420 <loctext xml:lang='C'> |
|
421 The rad protocol. |
|
422 </loctext> |
|
423 </description> |
|
424 </value> |
|
425 </choices> |
|
426 </prop_pattern> |
|
427 <prop_pattern name='port' type='integer' |
|
428 required='true'> |
|
429 <common_name> |
|
430 <loctext xml:lang='C'> |
|
431 Port |
|
432 </loctext> |
|
433 </common_name> |
|
434 <description> |
|
435 <loctext xml:lang='C'> |
|
436 The port to listen on for connections. |
|
437 </loctext> |
|
438 </description> |
|
439 <visibility value='readwrite'/> |
|
440 <cardinality min='1' max='1' /> |
|
441 <constraints> |
|
442 <range min='1024' max='65535'/> |
|
443 </constraints> |
|
444 </prop_pattern> |
|
445 <prop_pattern name='localonly' type='boolean' |
|
446 required='false'> |
|
447 <common_name> |
|
448 <loctext xml:lang='C'> |
|
449 Local flag |
|
450 </loctext> |
|
451 </common_name> |
|
452 <description> |
|
453 <loctext xml:lang='C'> |
|
454 If true, rad will only listen for connections from the local machine. Defaults to "true". |
|
455 </loctext> |
|
456 </description> |
|
457 <visibility value='readwrite'/> |
|
458 <cardinality min='1' max='1' /> |
|
459 </prop_pattern> |
|
460 <prop_pattern name='certificate' type='astring' |
|
461 required='true'> |
|
462 <common_name> |
|
463 <loctext xml:lang='C'> |
|
464 Certificate location |
|
465 </loctext> |
|
466 </common_name> |
|
467 <description> |
|
468 <loctext xml:lang='C'> |
|
469 The location of the PEM-formatted x509 certificate to use for SSL. |
|
470 </loctext> |
|
471 </description> |
|
472 <visibility value='readwrite'/> |
|
473 <cardinality min='1' max='1' /> |
|
474 </prop_pattern> |
|
475 <prop_pattern name='privatekey' type='astring' |
|
476 required='true'> |
|
477 <common_name> |
|
478 <loctext xml:lang='C'> |
|
479 Private key location |
|
480 </loctext> |
|
481 </common_name> |
|
482 <description> |
|
483 <loctext xml:lang='C'> |
|
484 The location of the PEM-formatted private key to use for SSL. |
|
485 </loctext> |
|
486 </description> |
|
487 <visibility value='readwrite'/> |
|
488 <cardinality min='1' max='1' /> |
|
489 </prop_pattern> |
|
490 <prop_pattern name='generate' type='boolean' |
|
491 required='false'> |
|
492 <common_name> |
|
493 <loctext xml:lang='C'> |
|
494 Generate key/certificate pair |
|
495 </loctext> |
|
496 </common_name> |
|
497 <description> |
|
498 <loctext xml:lang='C'> |
|
499 If true, and if the specified certificate and privatekey do not exist, rad will generate a certificate and private key using openssl(aopenssl). Defaults to "false". |
|
500 </loctext> |
|
501 </description> |
|
502 <visibility value='readwrite'/> |
|
503 <cardinality min='1' max='1' /> |
|
504 </prop_pattern> |
|
505 </pg_pattern> |
127 </template> |
506 </template> |
128 </service> |
507 </service> |
129 |
508 |
130 </service_bundle> |
509 </service_bundle> |