- Notes, cautions, and warnings
- Additional resources
- Introduction
- Manage the System
- Configure general system settings
- Configure system information
- Manage software versions
- View faulted storage resources
- Upgrade the system
- Manage security settings
- Manage system time
- Manage schedule time zone
- Manage support configuration and proxy server settings
- Manage support contracts
- Manage Centralized ESRS
- Manage SupportAssist (physical deployments only)
- Manage Connect Home
- Manage user roles
- Manage user accounts
- Manage user account settings
- Manage support credentials
- Manage system limits
- View installed feature licenses
- View and accept the End User License Agreement
- Manage remote logging
- Manage system certificates
- Manage snapshot protection schedules
- Manage task rules
- Manage jobs
- Manage job step
- Configure Network Communication
- Manage NAS servers
- Manage VLANs
- Manage tenants
- Manage CIFS Servers
- Manage NFS servers
- Manage Common Anti Virus Agent (CAVA)
- Manage Events Publishing configuration settings
- Manage CEPA pool configuration settings
- Manage VMware NAS protocol endpoint servers
- Manage reverse CHAP for mutual CHAP authentication
- Set up iSNS for iSCSI storage
- Manage iSCSI configuration
- Manage iSCSI nodes (servers)
- Manage Ethernet ports
- Manage SAS ports (physical deployments only)
- Manage FC ports
- Manage uncommitted ports
- Manage Management network interfaces
- Manage network interfaces
- Manage static IP routes
- Manage link aggregations
- Manage Fail-safe networking (physical deployments only)
- Manage DNS settings
- Manage NTP server settings
- Manage NIS server domains
- Manage SMTP server settings
- Manage NDMP server settings
- Manage LDAP settings
- Utility commands
- Manage Distributed Hierarchical Storage Management
- Manage DHSM Connection
- Manage the tie breaker node (dual-SP virtual deployments only)
- Manage a tie breaker node configuration (dual-SP virtual deployments only)
- Manage Hosts
- Manage host configurations
- Manage host LUNs
- Manage host groups
- Manage host initiators
- Manage host initiator paths
- Manage iSCSI CHAP accounts for one-way CHAP authentication
- Manage iSCSI connections
- Manage iSCSI connection paths
- Manage remote storage systems
- Create remote system configurations
- Verify settings for remote storage systems
- View settings for remote storage systems
- Change settings for remote storage systems
- Delete remote system configurations
- Cabinet level unplanned failover of replication sessions
- Pause replication sessions
- Resume replication sessions
- Manage VMware vCenter
- Manage ESXi hosts
- Virtual machine
- VM hard disk
- Manage Hardware Components
- Manage Storage Processor (SP)
- Manage disk
- Manage battery (physical deployments only)
- Manage power supply (physical deployments only)
- Manage link control card (LCC) (physical deployments only)
- Manage SSD (physical deployments only)
- Manage disk array enclosure (DAE)
- Manage disk processor enclosure (DPE)
- Manage memory module (physical deployments only)
- Manage System Status Card (physical deployments only)
- Manage fan modules (physical deployments only)
- Manage I/O modules, embedded modules, and 4-port cards (physical deployments only)
- Manage Storage
- Configure pools automatically
- Configure custom pools
- Manage pool tiers
- View pool resources
- Manage FAST VP general settings
- Manage FAST Cache (supported physical deployments only)
- Manage FAST Cache storage objects (physical deployments only)
- View storage profiles (physical deployments only)
- Manage drive groups (physical deployments only)
- Manage storage system capacity settings
- Manage system tier capacity settings
- Manage file systems
- Manage user quotas for file systems and quota trees
- Manage quota trees
- Manage quota settings
- Manage NFS network shares
- Manage SMB network shares
- Manage LUNs
- Manage consistency groups
- Manage VMware NFS datastores
- Manage VMware VMFS datastores
- Manage VMware protocol endpoints
- Manage vVol datastores
- Manage vVol objects
- Manage capability profiles
- Manage I/O limits
- Manage I/O limit configuration
- Protect Data
- Manage snapshots
- Manage snapshot NFS shares
- Manage snapshot CIFS shares
- Manage replication sessions
- Create replication sessions
- View replication sessions
- Change replication session settings
- Pause replication sessions
- Resume replication sessions
- Manually synchronize replication sessions
- Delete replication sessions
- Fail over replication sessions
- Fail back replication sessions
- Preserve asynchronous replication sessions
- Re-create a replication session
- Manage virtual RecoverPoint appliance CHAP accounts
- Manage Data at Rest Encryption (physical deployments only)
- Manage KMIP support (physical deployments only)
- Data Mobility
- Manage Events and Alerts
- Service the System
- Manage Metrics
- Use Cases
- Pool use cases
- File sharing use cases
- Resource configuration use cases
- Replication configuration use case
- Configure local replication
- Configure asynchronous replication
- Configure synchronous replication
- Create a replication interface
- Create a replication connection
- Create a replication session for block storage
- Create an asynchronous replication session for file storage
- Create a synchronous replication session for file storage
- View replication sessions
- Reference
Dell Unity™ Family Unisphere® Command Line Interface User Guide
Change FTP settings
Modify existing FTP or SFTP settings of a NAS server.
Format
/net/nas/ftp -server <value> set [-ftpEnabled <value>] [-sftpEnabled <value>] [-cifsUserEnabled <value>] [-unixUserEnabled <value>] [-anonymousUserEnabled <value>] [-homedirLimitEnabled <value>] [-defaultHomedir <value>] [-welcome <value>] [-motd <value>] [-auditEnabled {yes|no}] [-auditDir <value>] [-auditMaxSize <value>] {[-allowHost <value>] | [-appendAllowHost <value>] | [-removeAllowHost <value>] | [-denyHost <value>] | [-appendDenyHost <value>] | [-removeDenyHost <value>]} {[-allowUser <value>] | [-appendAllowUser <value>] | [-removeAllowUser <value>] | [-denyUser <value>] | [-appendDenyUser <value>] | [-removeDenyUser <value>]} {[-allowGroup <value>]| [-appendAllowGroup <value>] | [-removeAllowGroup <value>] |[-denyGroup <value>] | [-appendDenyGroup <value>] | [-removeDenyGroup <value>]}Object qualifier
| Qualifier | Description |
|---|---|
| -server | Type the name of the NAS server. |
Action qualifier
| Qualifier | Description |
|---|---|
| -ftpEnabled | Indicates whether the FTP server is enabled on the NAS server. Valid values are:
|
| -sftpEnabled | Indicates whether the SFTP server is enabled on the NAS server. Valid values are:
|
| -cifsUserEnabled | Indicates whether Windows (SMB) users can be authenticated by the FTP or SFTP server. Valid values are:
|
| -unixUserEnabled | Indicates whether Unix users can be authenticated by the FTP or SFTP server. Valid values are:
|
| -anonymousUserEnabled | Indicates whether the FTP server supports anonymous user authentication. Valid values are:
|
| -homedirLimitEnabled | Indicates whether authenticated FTP or SFTP users are limited to their home directories. Valid values are:
|
| -defaultHomedir | Type the default home directory for the FTP or SFTP users with no defined or accessible home directory. |
| -welcome | Type the welcome message that appears to FTP or SFTP users before authentication. |
| -motd | Type the message of the day that appears once the FTP or SFTP users log on. |
| -auditEnabled | Indicates whether FTP/SFTP auditing is enabled on the NAS server. Valid values are:
|
| -auditDir | Type the directory where the audit files should be saved. |
| -auditMaxSize | Type the maximum size for the audit log file. When this maximum is exceeded, a new audit file is created. |
| -allowHost | Type the comma-separated list of allowed client host IPs. The IP can be the IPv4, IPv6, or subnet address.
For subnets, the following notation convention must be used:
NOTE:If specified, FTP/SFTP connections are allowed only for clients whose IP addresses are included in those specified in the allowed hosts list. Any clients whose IP is not specified in this list are denied access. If a subnet is defined in the allowed hosts list, the client IP must belong to the specified subnet to be allowed to connect to the NAS FTP/SFTP server. If
-allowHost is defined,
-denyHost cannot be defined.
|
| -appendAllowHost | Specify one or multiple comma-separated host IPs to append to existing list of allowed host IP addresses. |
| -removeAllowHost | Specify one or multiple comma-separated host IPs to remove from the existing list of allowed host IP addresses. |
| -denyHost | Type the comma-separated list of client host IPs that will be denied access to the FTP/SFTP server. The IP can be the IPv4, IPv6, or subnet address.
For subnets, the following notation convention must be used:
NOTE:If specified, FTP/SFTP connections are denied only for clients whose IP addresses are included in those specified in the
-denyHost list. Any clients whose IP is not specified in this list are allowed access. If a subnet is defined in the denied hosts list, client IPs which belong to the specified subnet will be denied access to the NAS FTP/SFTP server. If
-denyHost is defined,
-allowHost cannot be defined.
|
| -appendDenyHost | Specify one or multiple comma-separated host IPs to append to existing list of denied host IP addresses. |
| -removeDenyHost | Specify one or multiple comma-separated host IPs to remove from the existing list of denied host IP addresses. |
| -allowUser | Type the comma-separated list of user names that will be allowed access to the FTP/SFTP server (numerical user IDs are invalid and ignored).
NOTE:If this option is specified, FTP/SFTP connections are allowed only for the specified users. Any users not specified in this list are denied access. If
-allowUser is defined,
-denyUser cannot be defined.
|
| -appendAllowUser | Specify one or multiple comma-separated user names to append to existing list of allowed users. |
| -removeAllowUser | Specify one or multiple comma-separated user names to remove from the existing list of allowed users. |
| -denyUser | Type the comma-separated list of user names that will be denied access to the FTP/SFTP server (numerical user IDs are invalid and ignored).
NOTE:If this option is specified, FTP/SFTP connections are denied only for the specified users. Any users not specified in this list are denied access. If
-denyUser is defined,
-allowUser cannot be defined.
|
| -appendDenyUser | Specify one or multiple comma-separated user names to append to existing list of denied users. |
| -removeDenyUser | Specify one or multiple comma-separated user names to remove from the existing list of denied users. |
| -allowGroup | Type the comma-separated list of user group names that will be allowed access to the FTP/SFTP server (numerical group IDs are invalid and ignored).
NOTE:If this option is specified, FTP/SFTP connections are allowed only for the listed groups. Any user groups not specified in this list will be denied access. If
-allowGroup is defined,
-denyGroup cannot be defined.
|
| -appendAllowGroup | Specify one or multiple comma-separated user group names to append to existing list of allowed groups. |
| -removeAllowGroup | Specify one or multiple comma-separated user group names to remove from the existing list of allowed groups. |
| -denyGroup | Type the comma-separated list of user group names that will be denied access to the FTP/SFTP server (numerical group IDs are invalid and ignored).
NOTE: If this option is specified, FTP/SFTP connections are denied only for the listed groups. Any user groups not specified in this list will be allowed access. If
-denyGroup is defined,
-allowGroup cannot be defined.
|
| -appendDenyGroup | Specify one or multiple comma-separated user group names to append to existing list of denied groups. |
| -removeDenyGroup | Specify one or multiple comma-separated user group names to remove from the existing list of denied groups. |
Example 1
uemcli -d 10.0.0.1 -u Local/joe -p MyPassword456! /net/nas/ftp -server nas_1 set -ftpEnabled yes -sftpEnabled no -cifsUserEnabled yes -unixUserEnabled yes -anonymousUserEnabled no -homedirLimitEnabled no -defaultHomedir /home/public -welcome "Welcome to this awesome server"Storage system address: 10.0.0.1 Storage system port: 443 HTTPS connection Operation completed successfully.
Example 2
uemcli -d 10.0.0.1 -u Local/joe -p MyPassword456! /net/nas/ftp -server nas_1 set -denyUser "guest,jack,john" -appendAllowHost 1.2.3.4,1.2.3.5Storage system address: 10.0.0.1 Storage system port: 443 HTTPS connection Operation completed successfully.
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\