Product Documentation

vpn global

Sep 12, 2016

The following operations can be performed on "vpn global":

bind vpn global

Binds NetScaler Gateway entities, including policies, globally.

Synopsys

bind vpn global [-policyName <string> [-priority <positive_integer>] [-secondary] [-groupExtraction]] [-intranetDomain <string>] [-intranetApplication <string>] [-nextHopServer <string>] [-urlName <string>] [-intranetIP <ip_addr> <netmask>] [-intranetIP6 <ip_addr|ipv6_addr|*> <numaddr>] [-staServer <URL> [-staAddressType ( IPV4 | IPV6 )]] [-appController <URL>] [-sharefile <string>] [-portaltheme <string>] [-eula <string>]

Arguments

policyName

Name of the policy to bind globally.

priority

Priority assigned to this session policy. A lower number indicates a higher priority.

Maximum value for default syntax policies is 4294967295 and for classic policies is 64000.

Minimum value: 0

secondary

Bind the authentication policy as the secondary policy to use in a two-factor configuration. A user must then authenticate not only to a primary authentication server but also to a secondary authentication server. User groups are aggregated across both authentication servers. The user name must be exactly the same on both authentication servers, but the authentication servers can require different passwords.

groupExtraction

Bind the Authentication policy to a tertiary chain which will be used only for group extraction. The user will not authenticate against this server, and this will only be called it primary and/or secondary authentication has succeeded.

intranetDomain

Intranet domain name for single sign-on.

intranetApplication

Name of the intranet application to bind globally.

nextHopServer

Name of the next hop server to bind globally.

urlName

Name of the URL of the virtual server to bind globally.

intranetIP

Range of IP addresses in an address pool or individual IP addresses to bind globally.

netmask

The intranet ip or range's netmask.

intranetIP6

Starting address in the range of IPv6 addresses in an address pool or individual IPv6 addresses to bind globally.

numaddr

The intranet ipv6 address.

Minimum value: 1

staServer

Web address of the Secure Ticketing Authority (STA) server to be bound globally, in the following format: 'http(s)://FQDN/URLPATH'

staAddressType

Type of the STA server address(ipv4/v6).

Possible values: IPV4, IPV6

appController

App Controller server, in the format 'http(s)://IP/FQDN'

sharefile

ShareFile server, in the format 'IP:PORT / FQDN:PORT'

portaltheme

Portaltheme name to bind globally

eula

EULA name to bind globally

unbind vpn global

Unbinds NetScaler Gateway policies to the virtual server globally.

Synopsys

unbind vpn global [-policyName <string> [-secondary] [-groupExtraction]] [-intranetDomain <string>] [-intranetApplication <string>] [-nextHopServer <string>] [-urlName <string>] [-intranetIP <ip_addr> <netmask>] [-intranetIP6 <ip_addr|ipv6_addr|*> <numaddr>] [-staServer <URL>] [-appController <URL>] [-sharefile <string>] [-portaltheme <string>] [-eula <string>]

Arguments

policyName

Name of the policy to unbind globally.

secondary

Bind the authentication policy as the secondary policy to use in a two-factor configuration. A user must then authenticate not only to a primary authentication server but also to a secondary authentication server. User groups are aggregated across both authentication servers. The user name must be exactly the same on both authentication servers, but the authentication servers can require different passwords.

groupExtraction

Bind the Authentication policy to a tertiary chain which will be used only for group extraction. The user will not authenticate against this server, and this will only be called it primary and/or secondary authentication has succeeded.

intranetDomain

A conflicting intranet domain name to be unbound.

intranetApplication

The name of a VPN intranet application to be unbound.

nextHopServer

The name of the next hop server to be unbound globally.

urlName

The name of a VPN url to be unbound from vpn global.

intranetIP

The intranet IP address or range to be unbound.

netmask

The intranet IP or range's netmask to be unbound from vpn global.

intranetIP6

The intranet ip address or range to be unbound.

numaddr

The intranet ip or range's netmask to be unbound from vpn global.

Minimum value: 1

staServer

Secure Ticketing Authority (STA) server to be removed, in the format 'http(s)://IP/FQDN/URLPATH'

appController

App Controller server to be removed, in the format 'http(s)://IP/FQDN'

sharefile

ShareFile server to be removed, in the format 'IP:PORT / FQDN:PORT'

portaltheme

Name of the Portal theme to unbind from vpnglobal

eula

Name of the EULA to unbind from vpnglobal

show vpn global

Shows the NetScaler Gateway policies that are bound to the virtual server globally.

Synopsys

show vpn global

Outputs

stateflag

policyName

The name of the policy.

priority

The priority of the policy.

intranetDomain

The conflicting intranet domain name.

intranetApplication

The intranet vpn application.

nextHopServer

The name of the next hop server bound to vpn global.

urlName

The intranet url.

intranetIP

The intranet ip address or range.

netmask

The intranet ip address or range's netmask.

intranetIP6

The intranet ip address or range.

numaddr

The intranet ip address or range's netmask.

staServer

Configured Secure Ticketing Authority (STA) server.

staAddressType

Type of the STA server address(ipv4/v6).

staAuthID

Authority ID of the STA Server. Authority ID is used to match incoming STA Tickets in the SOCKS/CGP protocol with the right STA Server.

appController

Configured App Controller server.

sharefile

Configured Sharefile server, in the format IP:PORT / FQDN:PORT

type

Bindpoint to which the policy is bound

policySubType

builtin

Indicates that a variable is a built-in (SYSTEM INTERNAL) type.

secondary

Bind the authentication policy as the secondary policy to use in a two-factor configuration. A user must then authenticate not only to a primary authentication server but also to a secondary authentication server. User groups are aggregated across both authentication servers. The user name must be exactly the same on both authentication servers, but the authentication servers can require different passwords.

groupExtraction

Bind the Authentication policy to a tertiary chain which will be used only for group extraction. The user will not authenticate against this server, and this will only be called it primary and/or secondary authentication has succeeded.

policyType

Policy type (Classic/Advanced) to be bound.Used for display.

globalBindType

portaltheme

Name of the portal theme bound to vpnglobal

eula

Name of the EULA bound to vpnglobal

devno

count