So far, I have run VT terminals for end-user's Alpha access. Now, I have got tens of user accounts using telnet terminal access through thin client or reflection. Mostly for displaying FMS screens.
I want to run monitoring process and restrict some access by checking their user name. What SYS$ or RTL$ routines are available for this? Can I have a sample in FORTRAN code using this ?
(9860) Network Authentication? User Access Restrictions?
(9860) Network Authentication? User Access Restrictions?
Last edited by marty.stu on Thu Aug 25, 2022 6:58 am, edited 1 time in total.
Re: (9860) Network Authentication? User Access Restrictions?
Your question is somewhat unclear, as normal OpenVMS authentication provides for typical user authentication requirements. Details on the particular authentication requirements would be useful, as well as the associated background. (The OpenVMS Wizard will here attempt to guess your requirements, and the following may or may not match your intended goals.)
If you require information on a particular session, the typical programming interfaces are sys$getdvi and f$getdvi, and one of the more common itemcodes used in this context is DVI$_ACCPORNAM. There are others, and a review of the lexical documentation in the User's Guide and the Programming Concepts documentation is in order.
TCP/IP does not offer a reliable means of determining the remote user; that information is simply not available within the IP stack (in contrast, DECnet provides it) and must be provided by the application layer protocol or directly by application code. Information on the remote system is available via the SYS$REM* logical names and via the response to the DVI$_ACCPORNAM itemcode.
Customizations to login processing are available via $acm (on current OpenVMS releases; your V7.2-1 is too old) and via the LGI callouts on current and on recent OpenVMS releases. Customizations are also commonly seen made within SYLOGIN.COM, as well, using standard DCL lexical functions.
Also available on current OpenVMS releases are Kerberos and LDAP authentication interfaces.
If you require information on a particular session, the typical programming interfaces are sys$getdvi and f$getdvi, and one of the more common itemcodes used in this context is DVI$_ACCPORNAM. There are others, and a review of the lexical documentation in the User's Guide and the Programming Concepts documentation is in order.
TCP/IP does not offer a reliable means of determining the remote user; that information is simply not available within the IP stack (in contrast, DECnet provides it) and must be provided by the application layer protocol or directly by application code. Information on the remote system is available via the SYS$REM* logical names and via the response to the DVI$_ACCPORNAM itemcode.
Customizations to login processing are available via $acm (on current OpenVMS releases; your V7.2-1 is too old) and via the LGI callouts on current and on recent OpenVMS releases. Customizations are also commonly seen made within SYLOGIN.COM, as well, using standard DCL lexical functions.
Also available on current OpenVMS releases are Kerberos and LDAP authentication interfaces.
Last edited by marty.stu on Thu Aug 25, 2022 7:03 am, edited 1 time in total.