apply-cli
This command specifies whether the RBM policy applies to the CLI.
Syntax
apply-cli { on | off }
Parameters
on- Applies the RBM policy to CLI access. The access profile applies to both GUI and CLI.
off- Does not apply the RBM policy to CLI access. The access profile applies to GUI access only. CLI access is controlled by command groups for the user group and by the specified user accounts for application domains. This setting is the default value.
Guidelines
The apply-cli command controls whether the RBM policy applies to both GUI and CLI access or applies to GUI access only. When enabled, command groups assignment that is part of the User Group configuration and user access that is part of application domain configuration are ignored.
Do not enable this option when the authentication method set with the
au-method command is client-ssl. When enabled and you use client
certificates for authentication, only local fallback users set with the
fallback-login and fallback-users commands can access the DataPower® Gateway from the CLI.
When enabled, the following commands are available to only the
admin account.- audit delete-backup (Global)
- audit level (Global)
- clear intrusion-detection (Common)
- cli remote open (Global)
- diagnostics (Common)
- logsize (Global)
- reinitialize (Flash)
- service nagle (Global)
- startup (Global)
- syslog (Global)
- watchdog (Global)
Examples
- Apply the RBM policy to GUI and CLI access.
# apply-cli on - Remove the RBM policy from the CLI. Does not affect GUI
access.
# apply-cli off