Cisco Systems 15600 manual DLP-E131 Change Security Policy on Multiple Nodes, 17-27

Page 27

Chapter 17 DLPs E100 to E199

DLP- E131 Change Security Policy on Multiple Nodes

Step 3 In the User Lockout area, you can modify the following:

Failed Logins Before Lockout—Choose the number of failed login attempts a user can make before the user is locked out from the node. You can choose a value between 0 and 10.

Manual Unlock by Superuser—Check this box if you want to allow a user with Superuser privileges to manually unlock a user who has been locked out from a node. The user will remain locked out until a Superuser manually unlocks the user.

Lockout Duration—Choose the amount of time the user will be locked out after a failed login. You can choose a value between 0 and 10 minutes, and 0 and 55 seconds (in five-second intervals).

Step 4 In the Password Change area, you can modify the following:

Require [nn] different passwords...—Choose a value between 0 and 10 to determine how many different passwords have to be created before a password can be reused.

...or a waiting period of [nn] days before password reuse—Choose a value between 0 and 30 days to set the amount of time (in days) before a password can be reused.

Note “Require [nn] different passwords or a waiting period of [nn] days before password reuse” is an OR statement, meaning that either one of the two conditions that you set can be satisfied for a password to be reused.

Step 5 In the Concurrent Logins area, click Single Session Per User if you want to limit users to a single login session.

Step 6 Click Apply. Confirm that the changes appear; if not, repeat the task.

Step 7 Return to your originating procedure (NTP).

DLP-E131 Change Security Policy on Multiple Nodes

 

Purpose

This task changes the security policy for multiple nodes including idle user

 

 

timeouts, user lockouts, password change, and concurrent login policies.

 

Tools/Equipment

None

 

Prerequisite Procedures

DLP-E26 Log into CTC, page 16-33

 

Required/As Needed

As needed

 

Onsite/Remote

Onsite or remote

 

Security Level

Superuser

 

 

Step 1

From the View menu, choose Go To Network View.

Step 2

Click the Provisioning > Security > Policy tabs. A read-only table of nodes and their policies appears.

Step 3

Click a node on the table that you want to modify, then click Change.

Step 4

In the Idle User Timeout area, you can modify the timeout times for each security level by clicking the

 

hour (H) and minute (M) arrows. You can choose values between 0 and 16 hours and 0 and 59 minutes.

Step 5

In the User Lockout area, you can modify the following:

Failed Logins Before Lockout—Choose the number failed login attempts a user can make before the user is locked out from the node. You can choose a value between 0 and 10.

Cisco ONS 15600 Procedure Guide, R8.0

17-27

Image 27
Contents 17-1 17-2 DLP-E101 Apply a Lock On in a 1+1 Group17-3 DLP-E102 Apply a Lockout in a 1+1 Group17-4 DLP-E105 Create a DCC Tunnel Network view, click the Provisioning Overhead Circuits tabs17-5 17-6 DLP-E106 Clean Fiber Connectors17-7 DLP-E107 Clean the Fiber Adapters17-8 DLP-E108 Verify that a 1+1 Working Port is Active17-9 Bolt Hole Pattern 17-1017-11 DLP-E110 Assign a Name to a Port17-12 17-13 17-14 DLP-E114 Provision Section DCC Terminations17-15 DLP-E115 Change the Service State for a Port Click the Provisioning Line tabs17-16 DLP-E116 Remap the K3 Byte DLP-E119 Set Auto-Refresh Interval for Displayed PM Counts17-17 17-18 DLP-E120 Remove the Narrow CRMs17-19 17-20 DLP-E122 Manual Switch the Node Timing Reference17-21 DLP-E123 Clear a Manual Switch on a Node Timing Reference17-22 DLP-E124 Set the Optical Power Received Nominal ValueDLP-E125 Provision the Iiop Listener Port on the ONS Click the Provisioning Sonet Thresholds tabs17-23 17-24 DLP-E127 Edit Path Protection Circuit Path Selectors17-25 DLP-E129 Enable Dialog Box Do-Not-Display Option DLP-E130 Change Security Policy on a Single Node17-26 17-27 DLP-E131 Change Security Policy on Multiple Nodes17-28 17-29 17-30 Click the Provisioning Security Active Logins tabsDLP-E135 Log Out a User on a Single Node DLP-E136 Log Out a User on Multiple Nodes17-31 DLP-E137 Check the Network for Alarms and Conditions17-32 17-33 DLP-E142 Install the Narrow CRMs17-34 DLP-E143 Install the Wide CRMsCRM Screw Holes Front 17-3517-36 17-37 DLP-E145 Connect the PDU Ground Cables to the PDU17-38 Power Terminal Block Right Side Shown17-39 DLP-E146 Install Isolated Logic GroundDLP-E150 Clear a Blsr Force Ring Switch Click the Provisioning Blsr tabs17-40 17-41 DLP-E152 Install Public-Key Security CertificateCTC Preferences Dialog Box 17-4217-43 DLP-E154 Delete Alarm Severity Profiles17-44 DLP-E155 Enable Alarm FilteringConditions Window Filter Dialog Box 17-4517-46 DLP-E156 Modify Alarm and Condition Filtering ParametersDLP-E157 Disable Alarm Filtering DLP-E158 Manually Lock or Unlock a User on a Single Node17-47 DLP-E159 Manually Lock or Unlock a User on Multiple Nodes Click the Provisioning Security Users tabs17-48 17-49 DLP-E161 Single Shelf Control Card Switch TestDLP-E160 Verify Blsr Extension Byte Mapping Click the Provisioning Line tab17-50 17-51 DLP-E163 Delete CircuitsClick the Maintenance Protection tabs DLP-E165 Change an OC-N Card17-52 17-53 DLP-E169 Initiate a Lockout on a Path Protection Path Lockout of Protection17-54 DLP-E171 Verify Fan Operation Click the Circuits Circuits tabs17-55 ONS 15600 Shelf with One Fan Tray and Air Filter Removed 17-5617-57 17-58 17-59 DLP-E177 Change Tunnel TypeDLP-E178 Delete Overhead Circuits Click the Provisioning Overhead Circuits tabs17-60 DLP-E179 Repair an IP Tunnel17-61 J1 Function CardsSelecting the Edit Path Trace Option 17-6217-63 DLP-E181 Provision Path Trace on OC-N Ports Click Circuits17-64 17-65 DLP-E182 Create Login Node GroupsClick the Login Node Group tab Click Create Group17-66 Tools17-67 DLP-E185 Change the JRE Version17-68 DLP-E186 Remove Pass-through ConnectionsDLP-E187 Delete a Node from a Specified Login Node Group DLP-E188 Change a Circuit Service State17-69 17-70 DLP-E189 Provision Line DCC Terminations17-71 Node view, click the Provisioning Comm Channels Ldcc tabsDLP-E190 Provision a Proxy Tunnel Click the Provisioning Network Proxy subtabs17-72 DLP-E191 Provision a Firewall Tunnel Click the Provisioning Network Firewall subtabs17-73 DLP-E192 Delete a Proxy Tunnel DLP-E193 Delete a Firewall Tunnel17-74 17-75 DLP-E196 Change a Section DCC TerminationDLP-E197 Change a Line DCC Termination Click the Provisioning Comm Channels Sdcc tabs17-76 DLP-E198 Delete a Section DCC TerminationDLP-E199 Delete a Line DCC Termination Click the Provisioning Comm Channel Sdcc tabs17-77 17-78

15600 specifications

Cisco Systems 15600 is a powerful network router designed to meet the growing demands of enterprise and service provider networks. Equipped with advanced features and cutting-edge technology, the 15600 caters to a range of applications, from data centers to branch offices, supporting the evolving landscape of cloud computing and Internet of Things (IoT).

One of the standout features of the Cisco 15600 is its scalability. The router is built to handle increasing bandwidth requirements, making it ideal for environments where traffic is expected to grow. It supports a range of interface modules, allowing organizations to tailor their network connectivity according to their specific needs. This modular design not only ensures flexibility but also future-proofs the investment, as additional capacity can be added as network demands increase.

Cisco’s 15600 also incorporates advanced security features, such as built-in firewalls and support for secure VPN connections. This is crucial for businesses that prioritize data protection and need to safeguard their information against cyber threats. The router also supports multiple encryption protocols, allowing organizations to implement robust security measures without sacrificing performance.

With regard to performance, the 15600 offers high throughput rates, which are essential for handling large volumes of traffic efficiently. This enhanced performance is further supported by Cisco's innovative technologies, such as Application-Specific Integrated Circuits (ASICs) that optimize data processing. Additionally, the router utilizes Cisco’s Intelligent WAN (iWAN) capabilities, which enhance the overall performance and efficiency of WAN connections.

Another key characteristic of the 15600 is its support for software-defined networking (SDN). This enables organizations to automate network management, reduce operational costs, and improve agility in deploying applications. Using Cisco's software solutions, network administrators can manage the router through a centralized interface, simplifying operations and enhancing visibility into network performance.

Furthermore, the Cisco 15600 is designed with energy efficiency in mind. Its architecture minimizes power consumption while maintaining high performance levels, contributing to sustainability goals and reducing operational costs over time.

Overall, the Cisco Systems 15600 router stands out as a robust networking solution, offering unmatched scalability, security, performance, and operational efficiency. As organizations increasingly turn to cloud-based solutions and IoT devices, the capabilities of the 15600 position it as a critical component in modern network infrastructures.