How to control login from the command line

Overview

The command line tool "VISULOX policy login" allows to control the Login Policy.

Usage

The following subcommands are available:

Command	Description
list	List and print Login Policies.
add	Add a new Login Policy.
edit	Modify fields of a Login Policy.
delete	Remove a Login Policy.
fields	List available fields in the database (-raw = enhanced output)

Login Policy elements (edit)

Element	Description
-name <>	Name of Policy or use AUTO <>.
-mode <>	Mode of login: off, reject, allow, otp, verbal, sms, email, both. Default value: allow
-optmode <>	Mode of OTP: config, enabled, enforced. Default value: config
-object <>	Policy filter: mask or unique distinguished object of user or group <>
-remoteip <>	Policy filter: remote IP or remote IP mask <>
-accesspoint <>	Policy filter: Access Point <>
-script <>	Trigger script. Usage: -script "<script-name>: args". Example with arguments: -script "Dump: -arg arg -arg1 <>"
-validationscript <>	Ticket script for extended Login <>
-pinscript <>	PIN script <>
-pinscripttext <>	Text provided to PIN script <>
-pintext <>	PIN welcome text in login dialog <>
-lifetime <>	PIN lifetime in minutes. Default value: 15
-comment <>	Comment for policy. Default value: CLI.
-grant <>	Set granted user in database record <>

Examples

List current available Login Policies

CODE

visulox policy login list
    ---------------------------------
    |    basicname |     policymode |
    ---------------------------------
    | DefaultLogin | allowlogin.map |
    ---------------------------------

List available fields

CODE

visulox policy login fields

Display selected fields

CODE

visulox policy login list -fields basicname,pin_script,login_script

Allow login for user Miller

CODE

visulox policy login add -mode allow -name LOG1 -object Miller

Edit policy

CODE

visulox policy login edit -name LOG1 -remoteip 172.192.15.123

Remove an entry

CODE

visulox policy login delete -name LOG1