GT-2658 JAAS tweaks, javadoc, docs.

2026-05-27 09:37:05 +08:00 · 2019-09-05 12:59:49 -04:00
parent 220c3ff8d2
commit eff84e30d6
20 changed files with 412 additions and 305 deletions
@@ -106,26 +106,52 @@ ghidra.repositories.dir=./repositories
 # Ghidra server startup parameters.  
 #
 # Command line parameters: (Add command line parameters as needed and renumber each starting from .1)
-#   [-ip <hostname>] [-i ###.###.###.###] [-p#] [-a#] [-anonymous] [-ssh] [-d<ntDomain>] [-e<days>] [-u] [-jaas <config_file>] [-autoProvision] [-n] <repositories_path>
+#						[-ip <hostname>] [-i #.#.#.#] [-p#] [-n]
+#						[-a#] [-d<ad_domain>] [-e<days>] [-jaas <config_file>] [-u] [-autoProvision] [-anonymous] [-ssh]
+#						<repository_path>
 #
-#   -ip <hostname> : remote access hostname or IPv4 address to be used by clients
-#   -i #.#.#.# : interface IPv4 address to accept connections on (default all interfaces)
-#   -p# : base TCP port to be used (default: 13100)
-#   -a# : an optional authentication mode where # is a value of 0, 2, 4 or 5
-#         0 - Private user password
-#         2 - PKI Authentication
-#         4 - JAAS Authentication
-#         5 - Active Directory via Kerberos.  Requires -d<active_directory_domainname.tld>
-#   -anonymous : enables anonymous repository access (see svrREADME.html for details)
-#   -ssh : enables SSH authentication for headless clients
-#   -e<days> : specifies default password expiration time in days (-a0 mode only, default is 1-day)
-#   -u   : enable users to be prompted for user ID (does not apply to -a2 PKI mode)
-#   -jaas <path_to_config_file> : specifies JAAS config file.
-#   -autoProvision : enable the auto-creation of Ghidra users when the authenticator module
-#                    (ie. OS or other authentication method specified by JAAS) authenticates
-#                    a new unknown user.
+#   -ip <hostname> : identifies the remote access IPv4 address or hostname (FQDN) which should be 
+#   	                used by remote clients to access the server.
+#   	                 
+#   -i #.#.#.# : server interface IPv4 address to listen on (default will listen on all interfaces).
+#	
+#   -p# : base TCP port to be used (default: 13100) [see Note 1]
+#   
 #   -n   : enable reverse name lookup for IP addresses when logging (requires proper configuration 
 #          of reverse lookup by your DNS server)
+#
+#   -a# : an optional authentication mode where # is a value of 0, 1, 2, or 4
+#         0 - Private user password
+#         1 - Active Directory via Kerberos.  Requires -d<your.ad_domainname.tld>
+#         2 - PKI Authentication
+#         4 - JAAS Authentication.  See also -jaas <config_file>
+#         
+#   -d<ad_domain> : the Active Directory domain name.  Example: "-dmydomain.com"
+# 
+#   -e<days> : specifies default password expiration time in days (-a0 mode only, default is 1-day)
+#
+#   -jaas <config_file> : specifies the path to the JAAS config file (when using -a4), relative
+#                         to the ghidra/server directory (if not absolute).
+#                         See jaas/jaas.conf for examples and suggestions.
+#                         It is the system administrator's responsibility to craft their own 
+#                         JAAS configuration directive when using the -a4 mode.
+#   
+#   -u   : enable users to be prompted for user ID (does not apply to -a2 PKI mode)
+#   
+#   -autoProvision : enable the auto-creation of Ghidra users when the authenticator module 
+#                    (ie. OS or other authentication method specified by JAAS) authenticates
+#                    a new unknown user.
+#                    Users deleted in the OS or other source system will  need to be
+#                    deleted manually from the Ghidra system.
+#
+#   -anonymous : enables anonymous repository access (see svrREADME.html for details)
+# 
+#   -ssh : enables SSH authentication for headless clients
+#
+#   <repository_path> : Required.  Directory used to store repositories. This directory must be dedicated to this 
+#                       Ghidra Server instance and may not contain files or folders not produced
+#                       by the Ghidra Server or its administrative scripts.
+#                       Relative paths originate from the installation directory
 #   ${ghidra.repositories.dir} : config variable (defined above) which identifies the directory 
 #                       used to store repositories.  Use of this variable to define the
 #                       repositories directory must be retained.