You may want to automatically enter expert-mode when logging onto your GAiA firewall and this article aims to provide necessary configuration steps to achieve just that.
Add new user
In order to determine which users already exists, use the command “show users”.
GaiaFW01> show users User Uid Gid Home Dir. Shell Real Name admin 0 0 /home/admin /etc/cli.sh n/a monitor 102 100 /home/monitor /etc/cli.sh Monitor
Add new users, set password and set user role (rba – role-based administration)
GaiaFW01> add user gos uid 0 homedir /home/gos GaiaFW01> set user gos password New password: SuperSecretPassword Verify new password: SuperSecretPassword GaiaFW01> add rba user gos roles adminRole
The user is now added, but still with the ordinary CLI-shell as you can see from “show users”
GaiaFW01> show users User Uid Gid Home Dir. Shell Real Name admin 0 0 /home/admin /etc/cli.sh n/a gos 0 0 /home/gos /etc/cli.sh Gos monitor 102 100 /home/monitor /etc/cli.sh Monitor
Now modify which shell to use
GaiaFW01> set user gos shell /bin/bash GaiaFW01> show users User Uid Gid Home Dir. Shell Real Name admin 0 0 /home/admin /etc/cli.sh n/a gos 0 0 /home/gos /bin/bash Gos monitor 102 100 /home/monitor /etc/cli.sh Monitor
From expert to CLI
Obviously, you want to enable yourself to use the CLI as well, and this can be done by running the CLI-shell /etc/cli.sh
login as: gos This system is for authorized use only. gos@10.10.10.1's password: SuperSecretPassword Last login: Wed May 30 22:40:17 2012 from 172.2.1.123 [Expert@GaiaFW01]# [Expert@GaiaFW01]# echo We are in expert-mode! We are in expert-mode! [Expert@GaiaFW01]# /etc/cli.sh GaiaFW01> GaiaFW01> exit [Expert@GaiaFW01]#
Drop me an e-mail or leave a comment if you got any further questions. =)
