Fujitsu BX600 manual Security Menu

Page 98

Security Menu

Web-Based Management Interface

6.2.3.3 Defining Secure HTTP Configuration

6.2.3.3.1Secure HTTP Configuration Page Configurable Data

Admin Mode - This field is used to enable or disable the Administrative Mode of Secure HTTP. The currently configured value is shown when the web page is displayed. The default value is disabled.

TLS Version 1 - This field is used to enable or disable Transport Layer Security Version

1.0.The currently configured value is shown when the web page is displayed. The default value is enabled.

SSL Version 3 - This field is used to enable or disable Secure Sockets Layer Version 3.0. The currently configured value is shown when the web page is displayed. The default value is enabled.

HTTPS Port Number - This field is used to set the HTTPS Port Number. The value must be in the range of 1 to 65535. Port 443 is the default value. The currently configured value is shown when the web page is displayed.

Command Buttons

Submit - Send the updated screen to the IBP. Changes take effect on the IBP but these changes will not be retained across a power cycle unless a save is performed.

Download Certificates - Link to the File Transfer page for the SSL Certificate download. Note that to download SSL Certificate files SSL must be administratively disabled.

97	Intelligent Blade Panel Module

Image 98

Contents Primergy BX600 Blade Server Systems Primergy BX600 Blade Server Systems Comments… Suggestions… Corrections… Page Contents Intelligent Blade Panel Module Intelligent Blade Panel Module Intelligent Blade Panel Module Important Notes Information About BoardsCompliance Statements Industry Canada Class aLVD Taiwan Bsmi Class a Australia AS/NZS 3548 1995 Class a Introduction Features of the IBP Module Self-Learning MAC Addresses Layer 2 Features Igmp SnoopingVlan Transparency Supported Features Automatic Aging for MAC AddressesUplink Set Support Service Vlan & Service LAN SupportPort Backup Support Port Group SupportSave Configuration as file BootP and Dhcp ClientsIBP Module Management Features Various Files of Management OperationCommand Line Interface Snmp Alarms and Trap LogsConfiguration File Download and Upload ProvisionLocked Port Support Security FeaturePort Based Authentication Radius ClientDescription of Hardware System LEDInternal Ports Page Primergy GbE Switch Blade 30/12 Internal Ports List Primergy BX620Port LEDs Features and BenefitsStatus of LEDs ConnectivityPerformance ManagementNotational Conventions Target Group Electrical data Technical DataDimensions National and international standardsEnvironmental conditions Network Planning Introduction to IBPConnecting to 1000BASE-T Devices Making Network ConnectionsCable Testing for Existing Category 5 Cable 1000BASE-T Cable RequirementsAdjusting Existing Category 5 Cabling for 1000BASE-T 1000BASE-T Pin AssignmentsUnpacking the IBP Module Package ContentsOverview Connecting the IBP Module Mount the IBP ModuleSelect 2 Console Redirection Switch Blade Start up and Configuration the IBP Module Port Default SettingsConfiguring the Terminal Under Properties, select VT100 for Emulation modeBooting Device Software Download Erasing the Device ConfigurationBoot Image Download Operation Code CLI Software Download Through Tftp Server System Image DownloadTftp Enter y. The device reboots Overview Command Buttons Configurable DataNon-Configurable Data Main MenuGroups Administration View Uplink Set InformationManaging Port Groups Configuring Port Group Configuration Command Buttons Viewing Port Group Information Selection Criteria Viewing Vlan Port Group Information Groups Administration Configurable Data Viewing Service LAN Information Groups Administration Configurable Data Viewing Service Vlan Information Groups Administration Managing Port Backup Configuring Port Backup Configuration Viewing Port Backup Status Groups Administration Panel Settings Menu Panel Settings Menu Viewing Panel Description Page Configurable Data Configuring Inband Administration Terminal interface via the EIA-232 portPanel Settings Menu Configuring Telnet Session Page Configurable Data Panel Settings Menu Configuring Serial Port Page Configurable Data Selection Criteria Panel Settings Menu Defining Dhcp Client Configuring Dhcp Restart Configuring Dhcp Client-identifierDefining Snmp Configuring Snmp Community Configuration Configuring Snmp Trap Receiver Configuration Viewing Snmp supported MIBs Panel Settings Menu Panel Settings Menu Viewing Sntp Global Status Non-Configurable Data Configuring Sntp Server Configuration Configurable Data Viewing Sntp Server Status Non-Configurable Data Unknown IPV4Panel Settings Menu Configurable Data Panel Settings Menu Refresh Refresh the configuration value again Reset the Passwords to Defaults Page Command Buttons Managing System Utilities Panel Reset Command ButtonsReset All Configuration to Defaults Page Command Buttons Configurable Data Uploading Specific Files from Panel Removing Specific File Copying Running Configuration to Panel Defining Ping FunctionSubmit This will initiate the ping Security Menu Viewing Radius Statistics Page Non-Configurable Data Viewing Radius Server Statistics Page Selection Criteria Security Menu Security Menu Resetting All Radius Statistics Page Command Buttons Configurable Data Security Menu Non-Configurable Data Security Menu Extended Configuration Menu Viewing Buffered LogConfiguring Command Logger Page Configurable Data Configuring Console Log Viewing Event LogConfiguring Hosts configuration Page Configurable Data Configuring syslog configuration Page Configurable Data Extended Configuration Menu Viewing Login Session Page Non-Configurable Data 107 Intelligent Blade Panel Module 108 Intelligent Blade Panel Module 109 Intelligent Blade Panel Module 110 Intelligent Blade Panel Module 111 112 Intelligent Blade Panel Module 113 Intelligent Blade Panel Module Extended Configuration Menu Extended Configuration Menu Viewing Each Port Summary Statistics Page Selection Criteria 117 Intelligent Blade Panel Module 118 Intelligent Blade Panel Module 119 Intelligent Blade Panel Module 120 Intelligent Blade Panel Module Viewing Access Control Summary Page Non-Configurable Data 122 Intelligent Blade Panel Module 123 Intelligent Blade Panel Module Defining Access Control User Login Page Selection Criteria Defining Each Port Access Privileges Page Selection Criteria Extended Configuration Menu Managing IP Filter IP Filter Configuration 128 Intelligent Blade Panel Module Defining User Login 130 Intelligent Blade Panel Module Example Ip address ipaddr netmask vlan-id CLI Command FormatCommand Example Clear port-groupValues 2CLI Mode-based TopologyParameters MacAddr ConventionsNetwork Address Syntax Address Type Format Range IPAddr AnnotationsSystem Information and Statistics commands Show running-config Show eventlogShow running-config all scriptname Show sysinfoShow hardware Show systemSystem Information Show version Show loginsession Show interface status slot/port all 4Device Configuration CommandsInterface Show interface status Show interface counters Show interfaceShow interface slot/port 142 Intelligent Blade Panel Module Show interface counters detailed slot/port switchport Total Packets Transmitted Octets Total Packets Received Without ErrorsTotal Packets Received with MAC Errors Total Transmited Packets Discards Total Transmit ErrorsTotal Packets Transmitted Successfully 146 Intelligent Blade Panel Module Show interface switch Show interface IBPInterface Interface rangeSpeed-duplex all 10 100 full-duplex half-duplex Speed-duplexSpeed-duplex 10 100 full-duplex half-duplex Full duplex Full duplex half duplex Half duplexNegotiate all no negotiate all NegotiateNegotiate no negotiate Capabilities Storm-control flowcontrol no storm-control flowcontrol DescriptionStorm-control flowcontrol Syntax Show mac-addr-table macaddr all Show mac-address-table igmpsnooping Show mac-address-table multicast Show mac-address-table multicast macaddr vlanid allShow mac-address-table stats Show mac-address-table stats Default SettingShow mac-address-table agetime Default Setting Show mac-address-table agetimeIgmp Snooping Show Commands Show igmp snooping Mac-address-table aging-timePort Channel Lacp Configuration Commands IgmpsnoopingIgmpsnooping uplinkSetName no igmpsnooping uplinkSetName Lacp uplinkSetName no lacp uplinkSetNameUplink Sets Show Commands Show lacpPort Group Configuration Commands Uplink-setUplink-set uplinkSetName no uplink-set uplinkSetName Configuration Commands Port-group Port-group portGroupName no port-group portGroupNamePort Backup Show Commands Default Setting Command Mode Configuration Commands Port-backupPort-backup uplinkSetName no port-backup uplinkSetName Port-backup no port-backupLink State Show Commands Configuration Commands LinkstateShow vlan-group vlanGroupName Vlan Port Groups Show CommandsLinkstate uplinkSetName no linkstate uplinkSetName Configuration Commands Vlan-group Vlan-group vlanGroupName no vlan-group vlanGroupName167 Intelligent Blade Panel Module Service LAN Show Commands Configuration Commands Svc-lanSvc-lan svcLanName no svc-lan svcLanName Service Vlan Show Commands Configuration Commands Svc-vlanSvc-vlan svcVlanName no svc-vlan svcVlanName Show ip redirects Management CommandsNetwork Commands Show ip interface Mtu 1518-9216 no mtu Show ip filter1.4 mtu Ip default-gateway gateway no ip default-gateway Command UsageIp default-gateway Ip addressIp address mgmt-vlan Ip address protocol bootp dhcp vlanID noneIp address protocol Ip filter Ip filter no ip filterSerial Interface Commands Show line console Ip filter ipaddr no ip filter ipaddrLine console BaudratePassword-threshold 0-120 no password-threshold Exec-timeoutPassword-threshold Telnet host port debug line echo Telnet Session CommandsSilent-time Show line vty Line vtyExec-timeout 1-160 no exec-timeout Sessions MaxsessionsMaxsessions 0-5 no maxsessions Telnet sessions no telnet sessions Sessions no sessionsTelnet sessions Telnet maxsessionsTelnet maxsessions 0-5 no maxsessions Telnet exec-timeoutTelnet exec-timeout 1-160 no telnet exec-timeout Snmp Server Commands Show snmp Show telnetShow trapflags Snmp-server location Snmp-server sysnameSnmp-server sysname name Syntax Snmp-server location locSnmp-server community name no snmp-server community name Snmp-server contactSnmp-server community 190 Intelligent Blade Panel Module Snmp-server community ro rw name Snmp-server host ipaddr name no snmp-server host name Snmp-server enable trapsSnmp-server host No This command disables Multiple User trap Snmp Trap Commands Show snmptrap Snmp trap link-status all no snmp trap link-status all Snmp trap link-statusSnmp trap link-status no snmp trap link-status Snmptrap ipaddr Snmptrap name ipaddrSnmptrap name ipaddr no snmptrap name ipaddr Http commands Show ip http Snmptrap modeSnmptrap mode name ipaddr no snmptrap mode name ipaddr Snmptrap ipaddr name ipaddr ipaddrnewIp javamode Ip javamode no ip javamodeIp http server Ip http portIp http port 1-65535 no ip http port Ip http server no ip http serverIp http secure-server Ip http secure-portIp http secure-port portid no ip http secure-port Ip http secure-server no ip http secure-serverSecure Shell SSH Commands Show ip ssh Ip http secure-protocolIp ssh protocol Ip sshIp ssh no ip ssh Ip ssh maxsessions 0-5 no ip ssh maxsessions Ip ssh timeoutIp ssh maxsessions Ip dhcp client-identifier Ip ssh timeout 1-160 no ip ssh timeoutDhcp Client Commands Ip dhcp restart System Burned In MAC Address Lock lockidentifier Exclusive no lock lockidentifierALL Lock CommandsLockmessage messagestring default LockmessageLockreset Show lockShow logging buffered System Log Management CommandsShow Commands Show logging Show logging hosts Show logging traplogShow logging traplogs Logging buffered no logging buffered Configuration Commands Logging bufferedDisplay Message Index used for deleting Logging console severitylevel 0-7 no logging console Logging buffered wrap no logging buffered wrapLogging console Logging host Logging host hostaddress port severitylevelLogging syslog no logging syslog Logging host reconfigure hostindex hostaddressLogging syslog Logging syslog port portid no logging syslog port Clear logging bufferedScript apply scriptname Script Management CommandsScript apply Script deleteScript show scriptname Script listScript show Configuration Commands Username User Account Management CommandsShow Commands Show users Username username password nopassword no username username Username snmpv3 authenticationUsername snmpv3 encryption Show authentication Security CommandsShow Commands Show users authentication Show authentication users Show dot1xShow dot1x detail Show dot1x statistics Show dot1x statistics slot/portShow dot1x users Show dot1x summaryShow dot1x summary slot/port all Show radius Secret Configured Yes / NoShow radius-servers Radius Accounting Mode Enabled or disabled Show radius accounting statistics ipaddrShow radius statistics ipaddr Secret Configured Yes or NoShow radius statistics Show tacacs Show port-security Show port-security dynamic slot/port Configuration Commands Authentication login Username defaultlogin Possible method values are local, radius, reject, and tacacsUsername login Username login user listname3 Dot1x Configuration Commands 3.1 dot1x initialize 3.2 dot1x default-login3.4 dot1x system-auth-control 3.3 dot1x loginDot1x login user listname Dot1x system-auth-control no dot1x system-auth-control3.5 dot1x user 3.6 dot1x port-control3.7 dot1x max-req 3.9 dot1x re-reauthenticate 3.8 dot1x re-authenticationDot1x re-authentication no dot1x re-authentication Dot1x max-req 1-10 no dot1x max-req3.10 dot1x timeout Radius Configuration Commands Radius accounting mode Radius accounting mode no radius accounting modeRadius-server host Radius-sever keyRadius-server retransmit Retries the maximum number of times Range 1Radius-server msgauth Radius-server timeoutRadius-server timeout seconds no radius-server timeout Tacacs no tacacs Tacacs Configuration CommandsRadius-server primary Tacacs server-ip Tacacs modeTacacs mode 1-3 master slave no tacacs mode Tacacs server-ip 1-3 ipaddr no tacacs server-ipTacacs key Tacacs portTacacs port 1-3 1-65535 no tacacs port Tacacs key 1-3 no tacacs keyTacacs retry Tacacs timeoutTacacs timeout 1-3 1-255 no tacacs timeout Tacacs retry 1-3 1-9 no tacacs retryPort-security max-dynamic Port Security Configuration Commands Port-securityPort-security no port-security Default Setting Port-security max-static Port-security max-static 0-20 no port-security max-staticPort-security mac-address move Syntax Port-security mac-address move Default SettingPort-security mac-address Show sntp client Sntp CommandsShow Commands Show sntp Configuration Commands Sntp broadcast client poll-interval Sntp client modeSntp client mode broadcast unicast no sntp client mode Sntp unicast client poll-interval Sntp client portSntp client port portid 6-10 no sntp client port Sntp unicast client poll-timeout Sntp unicast client poll-retrySntp server Sntp clock timezoneSntp clock timezone name 0-12 0-59 before-utc after-utc System Utilities10.2.9 Clear Clear arpClear traplog Clear eventlogClear config Clear passClear counters Syntax Clear mac-addr-table dynamic Default SettingClear mac address table Clear counters slot/port allEnable passwd Clear igmp snoopingClear dot1x statistics all slot/port Clear ip filterClear dot1x statistics Copy Clear radius statisticsClear tacacs Privileged Exec Files download from PC to board Syntax Copy running-config startup-config filename 11.4 dir Copy clibanner url copy url clibanner no clibannerDelete Boot-system Dir boot-rom config opcode filenameWhichboot Display Message Column Heading DescriptionBoot-system boot-rom config opcode filename PingTraceroute Calendar set Logging cli-commandSyntax Logging cli-command Default Setting Calendar set mm/dd/yy hhmmssDisconnect ConfigureReload Disconnect 0-10 allHostname promptstring Promptstring Prompt string Default SettingHostname QuitDhcp Commands Ip dhcp client-identifier text text hex hexUsing Snmp Supported MIBs Standard MIBs are listed in the following tablePrivate enterprise MIB is listed below Accessing MIB Objects RFC 2233 IF-MIBAccessing MIB ObjectsUsing Snmp 279 Intelligent Blade Panel Module Supported Traps Snmp traps supported include the following itemsDefault Settings Overview system default settingsDefault settings for all the configuration commands SSLPage In-band Administration SSH DSA Key SSH RSA1 Key SSH RSA2 Key Troubleshooting and Tips Diagnosing IBP IndicatorsAccessing the Management Interface Symptom ActionInformation on this document

Related manuals

Manual 46 pages 40.75 Kb

Manual 288 pages 28.92 Kb

Manual 274 pages 29.29 Kb