The RLM options file syntax is a subset of The ISV Options File syntax. The privilege names
status, reread, shutdown, logfiles, edit_meter, edit_options, edit_rlm_options,
manage_service and edit_xfer are used where a product name would be used in an ISV options
file. By default, all privileges are granted to all users unless otherwise restricted in the rlm options
file.
A user with no privileges assigned will have access to the "Activate License", "Diagnostics",
"RLM Manual...", "System Info", and "About" commands.
Note that the RLM web interface does not have access to the username or hostname (the rlmutil
utilities do pass the username and hostname), so, to be most effective, command restrictions
should be done based on IP addresses. By default, all commands are enabled (unless disabled with
the -x rlmdown or -x rlmremove rlm startup options, in which case rlm options have no effect.).
Legal characters in the RLM options file
In general, all options file fields are white-space delimited, meaning that no data item can contain
embedded spaces, tabs, newlines or carriage returns. In addition, the following four characters are
illegal in data items in the ISV or RLM options (and license) file: "<", ">", "&", and double quote
("). Note: single quote (') and back-quote (`) were illegal prior to RLM v8.0. As of RLM v12.1, the
characters "<", ">", and "&" are legal in comments (lines beginning with "#") but nowhere else.
Note that all lines in option files (RLM or ISV) as well as license files must be shorter than 1024
characters. Anything over 1024 characters will be truncated.
The ACTIVATE option controls whether the "Activate License" button is present, and, if present,
the default activation URL and ISV name.
There is one additional option available in the ISV options file: NO_OLD_RLMUTIL. This option
goes on a line by itself, with no parameters. If specified, the RLM command-line utilities prior to
RLM v9.0 will not be able to perform an rlmdown, rlmreread, or rlmremove on this server. By
default, all versions of the RLM utilities are enabled unless NO_OLD_RLMUTIL is specified in
both the RLM and the ISV options files.
Note that everything in the RLM options file is case-insensitive.
The RLM Options File first appeared in RLM v4.0. The remove privilege and
NO_OLD_RLMUTIL were added in RLM v9.0. The logfile privilege was added in RLM v9.1.
The EDIT_METER privilege was added in RLM v9.3.
In the following example RLM options file, status commands are only allowed from hosts on
subnet 172.16.7.*, no one on host "excluded_host" can do a reread command, and only users on IP
address 172.16.7.93 can do a shutdown. Note that each command (INCLUDE, EXCLUDE, etc)
must be on a separate line. Also, RLM will not process reread or shutdown requests from pre-v9
command-line utilities.
NO_OLD_RLMUTIL
INCLUDE status internet 172.16.7.*
EXCLUDE reread host excluded_host
INCLUDE shutdown internet 172.16.7.93
For a detailed description of each option, see the section below. Note that privilege should be one
of "status", "shutdown", "reread", "edit_options", or "edit_rlm_options":
RLM License Administration Manual Page 64 of 139