The Bastion
3.19.00
Presentation
Principles
Features
Security
FAQ
Installation
Basic Installation
Advanced Installation
Upgrading
Sandbox using Docker
Restoring from backup
Usage
The basics
PIV keys support
SFTP, SCP & RSYNC support
HTTPS Proxy
JSON API
Specific SSH clients tutorials
Administration
Configuration files
Logs
Multi-Factor Authentication
Security Advisories
Development
Environment setup
Writing tests
Plugins
admin plugins
group-aclkeeper plugins
group-gatekeeper plugins
group-owner plugins
open plugins
restricted plugins
The Bastion
Index
Index
Symbols
|
A
|
B
|
C
|
G
|
I
|
M
|
N
|
P
|
R
|
S
|
W
Symbols
--account
accountAddPersonalAccess command line option
accountCreate command line option
accountDelete command line option
accountDelPersonalAccess command line option
accountFreeze command line option
accountGeneratePassword command line option
accountGrantCommand command line option
accountInfo command line option
accountList command line option
accountListAccesses command line option
accountListEgressKeys command line option
accountListIngressKeys command line option
accountListPasswords command line option
accountMFAResetPassword command line option
accountMFAResetTOTP command line option
accountModify command line option
accountPIV command line option
accountRevokeCommand command line option
accountUnexpire command line option
accountUnfreeze command line option
accountUnlock command line option
groupAddAclkeeper command line option
groupAddGatekeeper command line option
groupAddGuestAccess command line option
groupAddMember command line option
groupAddOwner command line option
groupDelAclkeeper command line option
groupDelGatekeeper command line option
groupDelGuestAccess command line option
groupDelMember command line option
groupDelOwner command line option
groupListGuestAccesses command line option
groupTransmitOwnership command line option
--after
selfListSessions command line option
--algo
groupCreate command line option
groupGenerateEgressKey command line option
selfGenerateEgressKey command line option
--all
accountInfo command line option
groupInfo command line option
groupList command line option
--allowed
selfListSessions command line option
--always-active
accountCreate command line option
accountModify command line option
--audit
accountList command line option
--before
selfListSessions command line option
--command
accountGrantCommand command line option
accountRevokeCommand command line option
clush command line option
--comment
accountAddPersonalAccess command line option
accountCreate command line option
groupAddGuestAccess command line option
groupAddServer command line option
realmCreate command line option
selfAddPersonalAccess command line option
--denied
selfListSessions command line option
--detailed
selfListSessions command line option
--do-it
accountGeneratePassword command line option
groupGeneratePassword command line option
selfGeneratePassword command line option
selfGenerateProxyPassword command line option
--dry-run
groupSetServers command line option
--egress-session-multiplexing
accountModify command line option
--egress-strict-host-key-checking
accountModify command line option
--encrypted
groupCreate command line option
groupGenerateEgressKey command line option
selfGenerateEgressKey command line option
--exclude
accountList command line option
accountListAccesses command line option
groupList command line option
groupListGuestAccesses command line option
groupListServers command line option
selfListAccesses command line option
--fingerprint-to-delete
selfDelIngressKey command line option
--force
groupAddServer command line option
selfAddPersonalAccess command line option
--force-key
accountAddPersonalAccess command line option
groupAddServer command line option
selfAddPersonalAccess command line option
--force-password
accountAddPersonalAccess command line option
groupAddServer command line option
selfAddPersonalAccess command line option
--from
realmCreate command line option
--group
groupAddAclkeeper command line option
groupAddGatekeeper command line option
groupAddGuestAccess command line option
groupAddMember command line option
groupAddOwner command line option
groupAddServer command line option
groupCreate command line option
groupDelAclkeeper command line option
groupDelEgressKey command line option
groupDelete command line option
groupDelGatekeeper command line option
groupDelGuestAccess command line option
groupDelMember command line option
groupDelOwner command line option
groupDelServer command line option
groupDestroy command line option
groupGenerateEgressKey command line option
groupGeneratePassword command line option
groupInfo command line option
groupListGuestAccesses command line option
groupListPasswords command line option
groupListServers command line option
groupModify command line option
groupSetServers command line option
groupTransmitOwnership command line option
--guest-ttl-limit
groupModify command line option
--hide-groups
accountListAccesses command line option
selfListAccesses command line option
--host
accountAddPersonalAccess command line option
accountDelPersonalAccess command line option
alive command line option
assetForgetHostKey command line option
groupAddGuestAccess command line option
groupAddServer command line option
groupDelGuestAccess command line option
groupDelServer command line option
nc command line option
ping command line option
selfAddPersonalAccess command line option
selfDelPersonalAccess command line option
selfForgetHostKey command line option
selfListSessions command line option
whoHasAccessTo command line option
--id
groupDelEgressKey command line option
selfListSessions command line option
selfPlaySession command line option
--id-to-delete
selfDelIngressKey command line option
--idle-ignore
accountModify command line option
--ignore-group
whoHasAccessTo command line option
--ignore-personal
whoHasAccessTo command line option
--immutable-key
accountCreate command line option
--inactive-only
accountList command line option
--include
accountList command line option
accountListAccesses command line option
groupList command line option
groupListGuestAccesses command line option
groupListServers command line option
selfListAccesses command line option
--limit
selfListSessions command line option
--list
clush command line option
--lock
adminMaintenance command line option
--max-inactive-days
accountCreate command line option
accountModify command line option
--message
adminMaintenance command line option
--mfa-password-required
accountModify command line option
--mfa-required
groupModify command line option
--mfa-totp-required
accountModify command line option
--no-confirm
accountDelete command line option
clush command line option
groupDelete command line option
groupDestroy command line option
selfMFASetupTOTP command line option
--no-key
accountCreate command line option
groupCreate command line option
--no-output
accountList command line option
--no-password-info
accountList command line option
--no-pause-on-failure
clush command line option
--osh-only
accountCreate command line option
accountModify command line option
--owner
groupCreate command line option
--pam-auth-bypass
accountModify command line option
--personal-egress-mfa-required
accountModify command line option
--piv
selfAddIngressKey command line option
--policy
accountPIV command line option
--port
assetForgetHostKey command line option
clush command line option
nc command line option
selfForgetHostKey command line option
whoHasAccessTo command line option
--protocol
accountAddPersonalAccess command line option
accountDelPersonalAccess command line option
groupAddGuestAccess command line option
groupAddServer command line option
groupDelGuestAccess command line option
groupDelServer command line option
selfAddPersonalAccess command line option
selfDelPersonalAccess command line option
--pubkey-auth-optional
accountModify command line option
--public-key
accountCreate command line option
realmCreate command line option
selfAddIngressKey command line option
--realm
realmCreate command line option
realmDelete command line option
realmInfo command line option
realmList command line option
--reason
accountFreeze command line option
--report
mtr command line option
--reverse-dns
accountListAccesses command line option
groupListGuestAccesses command line option
groupListServers command line option
selfListAccesses command line option
--show-wildcards
whoHasAccessTo command line option
--size
accountGeneratePassword command line option
groupCreate command line option
groupGenerateEgressKey command line option
groupGeneratePassword command line option
selfGenerateEgressKey command line option
selfGeneratePassword command line option
--skip-errors
groupSetServers command line option
--step-by-step
clush command line option
--sudo-as
adminSudo command line option
--sudo-cmd
adminSudo command line option
--to-port
selfListSessions command line option
--ttl
accountAddPersonalAccess command line option
accountCreate command line option
accountPIV command line option
groupAddGuestAccess command line option
groupAddServer command line option
selfAddPersonalAccess command line option
--type
selfListSessions command line option
--uid
accountCreate command line option
--uid-auto
accountCreate command line option
--unlock
adminMaintenance command line option
--user
clush command line option
selfListSessions command line option
whoHasAccessTo command line option
--via
selfListSessions command line option
--via-port
selfListSessions command line option
--with[out]-egress-keys
accountInfo command line option
--with[out]-everything
accountInfo command line option
groupInfo command line option
--with[out]-groups
accountInfo command line option
--with[out]-keys
groupInfo command line option
--with[out]-mfa-password-info
accountInfo command line option
--yes
selfMFASetupPassword command line option
-c
ping command line option
-f
selfDelIngressKey command line option
-l
selfDelIngressKey command line option
-s
ping command line option
-t
ping command line option
-w
nc command line option
ping command line option
A
accountAddPersonalAccess command line option
--account
--comment
--force-key
--force-password
--host
--protocol
--ttl
between
boolean)
integer
self_remote_user_only
widest_v4_prefix
accountCreate command line option
--account
--always-active
--comment
--immutable-key
--max-inactive-days
--no-key
--osh-only
--public-key
--ttl
--uid
--uid-auto
accountDelete command line option
--account
--no-confirm
accountDelPersonalAccess command line option
--account
--host
--protocol
accountFreeze command line option
--account
--reason
accountGeneratePassword command line option
--account
--do-it
--size
accountGrantCommand command line option
--account
--command
accountInfo command line option
--account
--all
--with[out]-egress-keys
--with[out]-everything
--with[out]-groups
--with[out]-mfa-password-info
accountList command line option
--account
--audit
--exclude
--inactive-only
--include
--no-output
--no-password-info
accountListAccesses command line option
--account
--exclude
--hide-groups
--include
--reverse-dns
accountListEgressKeys command line option
--account
accountListIngressKeys command line option
--account
accountListPasswords command line option
--account
accountMFAResetPassword command line option
--account
accountMFAResetTOTP command line option
--account
accountModify command line option
--account
--always-active
--egress-session-multiplexing
--egress-strict-host-key-checking
--idle-ignore
--max-inactive-days
--mfa-password-required
--mfa-totp-required
--osh-only
--pam-auth-bypass
--personal-egress-mfa-required
--pubkey-auth-optional
accountPIV command line option
--account
--policy
--ttl
accountRevokeCommand command line option
--account
--command
accountUnexpire command line option
--account
accountUnfreeze command line option
--account
accountUnlock command line option
--account
admin_show_system_info
info command line option
adminMaintenance command line option
--lock
--message
--unlock
adminSudo command line option
--sudo-as
--sudo-cmd
alive command line option
--host
assetForgetHostKey command line option
--host
--port
B
between
accountAddPersonalAccess command line option
selfAddPersonalAccess command line option
boolean)
accountAddPersonalAccess command line option
info command line option
,
[1]
selfAddPersonalAccess command line option
C
clush command line option
--command
--list
--no-confirm
--no-pause-on-failure
--port
--step-by-step
--user
G
groupAddAclkeeper command line option
--account
--group
groupAddGatekeeper command line option
--account
--group
groupAddGuestAccess command line option
--account
--comment
--group
--host
--protocol
--ttl
groupAddMember command line option
--account
--group
groupAddOwner command line option
--account
--group
groupAddServer command line option
--comment
--force
--force-key
--force-password
--group
--host
--protocol
--ttl
groupCreate command line option
--algo
--encrypted
--group
--no-key
--owner
--size
groupDelAclkeeper command line option
--account
--group
groupDelEgressKey command line option
--group
--id
groupDelete command line option
--group
--no-confirm
groupDelGatekeeper command line option
--account
--group
groupDelGuestAccess command line option
--account
--group
--host
--protocol
groupDelMember command line option
--account
--group
groupDelOwner command line option
--account
--group
groupDelServer command line option
--group
--host
--protocol
groupDestroy command line option
--group
--no-confirm
groupGenerateEgressKey command line option
--algo
--encrypted
--group
--size
groupGeneratePassword command line option
--do-it
--group
--size
groupInfo command line option
--all
--group
--with[out]-everything
--with[out]-keys
groupList command line option
--all
--exclude
--include
groupListGuestAccesses command line option
--account
--exclude
--group
--include
--reverse-dns
groupListPasswords command line option
--group
groupListServers command line option
--exclude
--group
--include
--reverse-dns
groupModify command line option
--group
--guest-ttl-limit
--mfa-required
groupSetServers command line option
--dry-run
--group
--skip-errors
groupTransmitOwnership command line option
--account
--group
I
info command line option
admin_show_system_info
boolean)
,
[1]
show_fortune
integer
accountAddPersonalAccess command line option
selfAddPersonalAccess command line option
M
mtr command line option
--report
N
nc command line option
--host
--port
-w
P
ping command line option
--host
-c
-s
-t
-w
R
realmCreate command line option
--comment
--from
--public-key
--realm
realmDelete command line option
--realm
realmInfo command line option
--realm
realmList command line option
--realm
S
self_remote_user_only
accountAddPersonalAccess command line option
selfAddPersonalAccess command line option
selfAddIngressKey command line option
--piv
--public-key
selfAddPersonalAccess command line option
--comment
--force
--force-key
--force-password
--host
--protocol
--ttl
between
boolean)
integer
self_remote_user_only
widest_v4_prefix
selfDelIngressKey command line option
--fingerprint-to-delete
--id-to-delete
-f
-l
selfDelPersonalAccess command line option
--host
--protocol
selfForgetHostKey command line option
--host
--port
selfGenerateEgressKey command line option
--algo
--encrypted
--size
selfGeneratePassword command line option
--do-it
--size
selfGenerateProxyPassword command line option
--do-it
selfListAccesses command line option
--exclude
--hide-groups
--include
--reverse-dns
selfListSessions command line option
--after
--allowed
--before
--denied
--detailed
--host
--id
--limit
--to-port
--type
--user
--via
--via-port
selfMFASetupPassword command line option
--yes
selfMFASetupTOTP command line option
--no-confirm
selfPlaySession command line option
--id
show_fortune
info command line option
W
whoHasAccessTo command line option
--host
--ignore-group
--ignore-personal
--port
--show-wildcards
--user
widest_v4_prefix
accountAddPersonalAccess command line option
selfAddPersonalAccess command line option