Lantronix XN manual SSH Client Known Hosts, SSH Server Authorized Users

Page 67

 

 

10: Security Settings

 

 

 

 

RSS Settings

Description

 

(continued)

 

 

Public Key

Enter the path and name of the existing public key you want to upload. In

 

 

WebManager, you can also browse to the public key to be uploaded.

 

 

 

 

Key Type

Select a key type to use for the new key:

 

 

RSA

 

 

DSA

 

 

 

 

Bit Size

Select a bit length for the new key:

 

 

512

 

 

768

 

 

1024

 

 

 

Note: SSH Keys from other programs may be converted to the required PremierWave format. Use Open SSH to perform the conversion.

SSH Client Known Hosts

The SSH Client Known Hosts are used by all applications that play the role of an SSH Client. Specifically Tunneling in Connect Mode. Configuring these public keys are optional but if they exist another layer of security is offered which helps prevent Man-in-the-Middle (MITM) attacks.

 

Table 10-2 SSH Client Known Hosts

 

 

RSS Settings

Description

Server

Specify either a DNS Hostname or IP Address when adding public host keys for a

 

Server. This Server name should match the name used as the Remote Address in

 

Connect Mode Tunneling.

 

 

Public RSA Key

Enter the path and name of the existing public RSA key you want to use with this

 

user. In WebManager, you can also browse to the public RSA key to be uploaded. If

 

authentication is successful with the key, no password is required.

 

 

Public DSA Key

Enter the path and name of the existing public DSA key you want to use with this

 

user. In WebManager, you can also browse to the public DSA key to be uploaded.If

 

authentication is successful with the key, no password is required.

 

 

Note: These settings are not required for communication. They protect against Man-In- The-Middle (MITM) attacks.

SSH Server Authorized Users

The SSH Server Authorized Users are used by all applications that play the role of an SSH Server and specifically Tunneling in Accept Mode. Every user account must have a Password.

The user's Public Keys are optional and only necessary if public key authentication is wanted. Using public key authentication will allow a connection to be made without the password being asked at that time.

Note: When uploading the security keys, ensure the keys are not compromised in transit.

PremierWave XN User Guide

67

Page 66 Page 68
Image 67
Page 66 Page 68
Contents XN User Guide Disclaimer WarrantyCopyright & Trademark ContactsUsing DeviceInstaller Table of ContentsUsing This Guide Installation of PremierWave XNNetwork Settings Configuration Using Web ManagerLine and Tunnel Settings Services Settings Terminal and Host SettingsSecurity Settings Maintenance and Diagnostics Settings Bridging Advanced SettingsSecurity in Detail 103 VIP SettingsUpdating Firmware Branding the PremierWave XNPremierWave XN Product Label List of FiguresList of Tables PremierWave XN User Guide Chapter Description Using This GuidePurpose and Audience Summary of ChaptersDocument Description Additional DocumentationProtocol Support Key FeaturesIntroduction ApplicationsHardware Address Troubleshooting CapabilitiesConfiguration Methods Addresses and Port NumbersIP Address Product Information LabelPort Numbers Hardware Components Installation of PremierWave XNPackage Contents User-Supplied ItemsButton pin hole Signal Strength LEDsSerial PowerLeft LED Right LEDWlan Signal Strength Indicator at 2.4 GHz Wlan Signal Strength Indicator at 5 GHzWPS Status Indicator Fault Conditions Blink Pattern 10 Diagnostic LED IndicationsBack Panel To Start WPS Wi-Fi Protected Setup WPSTo Show WPS Status Installing the PremierWave XNTo Cancel WPS Perform the following steps to install your device13 PremierWave XN Dimensions in Millimeters mm IP address was obtained dynamically Using DeviceInstallerAccessing PremierWave XN Using DeviceInstaller Device Detail SummaryCurrent Settings Description Accessing Web Manager Configuration Using Web ManagerTo access Web Manager, perform the following steps Device Status Help Area Web Manager ComponentsWeb Manager Description See Navigating Web ManagerSyslog Protocol StackQuery Port SmartRoamNetwork Interface Description Settings Network SettingsNetwork Interface Settings Network Interface SettingsTo Configure Network Interface Settings To View Network Interface Status Network Link SettingsNetwork 1 eth0 Link Settings Network 1 Ethernet eth0 Description Link SettingsNetwork 2 Wlan wlan0 Description Link Settings Network 2 wlan0 Link SettingsNetwork 2 Link Scan Results on WebManager To Configure Network Link SettingsWlan Link Status and Scan Commands Network 2 Link ScanNetwork 2 Link Status To View Wlan Link Scan and Status InformationWlan Link Status Description Creating, Deleting or Enabling Wlan Profiles To Configure Wlan ProfilesWlan Profile Basic Settings Description Wlan ProfilesWlan Profile Basic Settings To Configure Wlan Profile Basic SettingsWlan Profile Advanced Settings To Configure Wlan Profile Advanced SettingsWlan Profile Advanced Settings Description Wlan Profile Description Security Settings Wlan Profile Security SettingsTo Configure Wlan Profile Security Settings 10 Wlan Profile Security SettingsWlan Profile WEP Settings Description Wlan Profile WEP SettingsTo Configure Wlan Profile WEP Settings 11 Additional WEP Settings for Wlan ProfileKey Wlan Profile WPA and WPA2/IEEE802.11i Settings12 Wlan Profile WPA and WPA2/IEEE802.11i Settings Wlan Profile WPA Description WPA2 SettingsTo Configure Wlan Profile WPA and WPA/IEEE802.11i Settings 13 Wlan Quick Connect To Configure Wlan Quick ConnectWlan Quick Connect Description Settings Wlan Quick ConnectLine Settings Description Line and Tunnel SettingsLine Settings Line Configuration SettingsLine Command Mode Settings To Configure Line SettingsLine Command Description Mode Settings Line Settings to modify these settings Tunnel SettingsSerial Settings Tunnel Serial Description Settings Line SettingsTunnel Serial Description Settings To Configure Tunnel Serial SettingsPacking Mode Tunnel Packing Mode SettingsTrailing Character To Configure Tunnel Packing Mode SettingsAccept Mode Send CharacterTunnel Accept Mode Description Settings Tunnel Accept Mode SettingsEmail on Connect To Configure Tunnel Accept Mode SettingsConnect Mode Block NetworkFlush Serial Data Tunnel Connect Mode SettingsTunnel Connect Mode Description Settings Reconnect TimerTunnel Disconnect Description Mode Settings To Configure Tunnel Connect Mode SettingsDisconnect Mode Tunnel Disconnect Mode SettingsModem Emulation To Configure Tunnel Disconnect Mode SettingsTunnel Modem Emulation Settings Tunnel Modem Description Emulation SettingsConnect String To Configure Tunnel Modem Emulation SettingsStatistics To View Tunnel StatisticsTerminal Settings Terminal and Host SettingsTerminal on Network and Line Settings Host Configuration Host ConfigurationTo Configure the Terminal Network Connection To Configure the Terminal Line ConnectionRemote Port To Configure Host SettingsSSH Username Remote AddressDNS Settings Services SettingsDNS Settings To View or Configure DNS SettingsFTP Settings FTP SettingsSyslog Settings To Configure FTP SettingsHttp Settings Description Http SettingsTo View or Configure Syslog Settings Http SettingsTo Configure Http Settings RSS Settings RSS SettingsTo Configure Http Authentication Http Authentication SettingsTo Configure RSS Settings SSH Server Host Keys Security SettingsSSH Settings RSS Settings DescriptionSSH Server Authorized Users SSH Client Known HostsSSH Client Known Hosts SSH Client Users Remote CommandSSH Client Users SSH Server Authorized UsersTo Configure SSH Settings SSL SettingsTo Create a New Credential Certificate and Key Generation SettingsCertificate Generation Description Settings Certificate and Key GenerationUpload Description Certificate Settings Certificate Upload SettingsTo Configure an Existing SSL Credential Upload Certificate SettingsTrusted Authorities Trusted Authority SettingsTo Upload an Authority Certificate File Display Maintenance and Diagnostics SettingsFilesystem Settings File Display SettingsFile Transfer File Modification SettingsFile Transfer Settings File ModificationIP Network Stack Settings Protocol Stack SettingsIP Settings To Configure IP Network Stack SettingsTo Configure ARP Network Stack Settings Icmp SettingsTo Configure Icmp Network Stack Settings ARP SettingsQuery Port Settings Smtp SettingsTo Configure Smtp Network Stack Settings To Configure Query Port SettingsTo View the List of IP Sockets DiagnosticsHardware To View Hardware Information IP SocketsTraceroute Ping Settings10 Traceroute Settings To Ping a Remote HostMemory To Configure the Diagnostic Log Output11 Log Settings LogTo View Thread Information ThreadsProcesses To View Process InformationSystem Settings Description System SettingsTo Reboot or Restore Factory Defaults 12 System SettingsEmail Configuration Advanced SettingsEmail Settings To View, Configure and Send EmailCLI Configuration Settings Command Line Interface SettingsBasic CLI Settings To View and Configure Basic CLI SettingsSSH Settings To Configure Telnet SettingsSSH Settings Telnet SettingsXML Export Configuration Description Settings XML SettingsXML Export Configuration XML Exporting ConfigurationTo Export in XML Format To Export Configuration in XML FormatXML Export Status Description Settings XML Export StatusTo Import Configuration in XML Format XML Import ConfigurationImport Configuration from External File Import Configuration from the FilesystemTo configure and enable bridging Bridging ConfigurationBridging Wlan Profile WPA & WPA2 Description Settings Bridge ConfigurationTo View or Configure Bridge Settings Bridge Settings Include in your file configgroup name=bridge instance=br0 Trusted Authorities Security in DetailPublic Key Infrastructure Digital CertificatesOpenSSL Obtaining CertificatesSelf-Signed Certificates Certificate FormatsFree Radius Steel Belted RadiusObtaining Firmware Loading New Firmware through FTP Updating FirmwareVirtual IP VIP Status VIP SettingsVirtual IP VIP Configuration To Configure VIP SettingsVIP Counters Description Virtual IP VIP CountersTo View VIP Counters VIP CountersWeb Manager Customization Branding the PremierWave XNShort and Long Name Customization Short and Long Name SettingsTo Customize Short or Long Names Technical Support US Appendix a Technical SupportTechnical Support Europe, Middle East, Africa Scientific Calculator Appendix B Binary to Hexadecimal ConversionsConverting Binary to Hexadecimal Conversion TableAppendix B Binary to Hexadecimal Conversions Appendix C Compliance RoHS Notice Manufacturers Contact
Related manuals
Manual 1 pages 1.27 Kb
Top Page Image Contents