Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
George_Ellis
Advisor

Orchestrator "member" command using a specific user id?

So far, I am stumped.  I could not craft a search to find it and did not find this in the Maestro Admin guide.  

How the heck to you use the "member <sg> <device>" command to use something other than automatically assuming 'admin' as the user id?  TACACS is setup and works to the Orchestrator itself, but if you wish to then look at a specific gateway, 'M 1 1' always uses 'admin'.  We should all be using an assigned, independent userid for accountability.  But I can't find any reference to do so.

0 Kudos
3 Replies
Dario_Perez
Employee Employee
Employee

Move to member use admin user

you can use the addressing from orch to orch 2 user@192.0.2.y

from orch to SGM use userx@198.51.10x.y where x is security group ID and y is SGM id

0 Kudos
George_Ellis
Advisor

Maybe this is a R81.10 feature (soon for us...)?

I have tried:
member userid@1 1

member 1 userid@1

member userid@198.51.101.1

member 1 1 userid@198.51.101.1

I get this everytime
Usage:
member <security_group_id> <member_id>

Also, from the orchestrator, I tried
ssh userid@198.51.101.1

ssh -l userid 198.51.101.1

Connection timed out (bet this is a FW rule, but I was thinking it might be an implied rule.)

0 Kudos
Dario_Perez
Employee Employee
Employee

Hi, 

seems to be blocked on orch I have run on SGM and I was able to jump from SGM to other SGM and to the Orch it selt. 

Let me check and go back to you. 

0 Kudos