Digi W manual Controlling Access to Outbound Ports, Controlling Access to the Command Line

Page 58

Example:

set logins range=1-2 login=off passwd=off

Procedure for Changing a User’s Access Requirements

To configure a user so that he or she does not have to specify a password when accessing an inbound port, supply a set user command that specifies the following:

set user name=name password=off

where name is a name to identify the user

Example:

set user name=user1 password=off

Controlling Access to Outbound Ports

This section describes methods for controlling access to outbound serial ports. An outbound port is one defined on the dev field of the set ports command for one of the following device types:

•prn (used to define printer connections)

•mout (used to define outbound modem connections

•mio (used to define bi-directional modem connections)

•host (used to define host connections)

•ia

Default Access

The default for outbound ports is unlimited access.

Restricting Access to Outbound Ports

Use the set auth command to restrict access to outbound ports. See the description of the set auth command in the Digi One/PortServer TS Command Reference for more information.

CHAP Authentication for PPP Users

CHAP authentication can be used to restrict PPP user access to outbound ports. For more information on CHAP configuration, see the set user command in the device server Command Reference.

Controlling Access to the Command Line

This section describes how to restrict access to the device server command line.

Autoconnection

The autoconnection feature allows you to configure a user to access the device server but then be automatically connected to a host on the LAN.

You can implement autoconnection in the following ways:

•By port where all port users are automatically connected to the same host. The device server is completely transparent to them.

58	Chapter 12 Configuring Security Features

Image 58

Contents Digi TS W Family 9000329B N t e n t s Chapter Configuring WirelessConfiguring the IP Address Chapter IntroductionChapter Configuring PPP Setting Up RealPortConfiguring the Serial Ports Chapter Configuring AutoconnectionConfiguring IP Routing Configuring Security FeaturesConfiguring Snmp Configuring the Digi Device for IAIndustrial AutomationConfiguring DNS Configuring UsersConfiguring Power Over the Serial Ports Reference and CertificationsContents Setup Overview T r o d u c t i o nAbout This Guide About Entering Commands on the Command LineSupported Devices Other Documents in the LibraryAbout Configuration Methods Configuration Prerequisites Configuration Considerations N f i g u r i n g W i r e l e s sSelect Discover Digi Device from the CD Configuring Wireless Configuring Wireless Configuring Wireless Configuring Wireless Options for Configuring the IP Address and Mask N f i g u r i n g t h e I P a d d r e s sConfiguring the IP Address Using ARP-Ping Configuring the Ethernet Interface from the Command Line Configuring an IP Address using Dhcp and Rarp T t i n g U p R e a l P o r t About RealPortSetting Up RealPort Options for Configuring the Serial Ports Configuring the Serial Port Settings with the Web InterfaceConfiguring the Serial Port Settings from the Command Line Configuring Inbound PPP Connections N f i g u r i n g P P PConfiguring Inbound PPP Connections Example Configuring Outbound PPP Connections Command LineProcedure Sample Use the following table for additional configurations Configuring PPP Modem Emulation Digi One TS and PortServer TS 2/4 MEI only D e m E m u l a t i o nCommon User Scenarios Modem Emulation Cable Signals Serial Device Digi Device ServerOriginating, Answering, and Disconnecting Calls Application AT Com Digi Device Server Response MandServer. P represents a one second pause Modem Emulation AT Command Set Function Result CodeFunction Result ATPATXn Accepted but ignored There is no Nvram support currently AT+MS Registers Function Range Units Saved Default AsciiRegister Function Range Units Saved Default Register Function Range Units Saved Default 17 11h =XON/XOFF &K4 Result Codes Short Long Form Modem Emulation Configuring a User for Autoconnection Web Interface Configuring a Port for Autoconnection Web InterfaceCommands for Configuring Autoconnection by Port or by User N f i g u r i n g a u t o c o n n e c t i o nClick Serial Ports Configuring TCP Socket CommunicationConfiguring UDP Multicast Click Change ProfileClick Change Profile and select UDP Socket Configuring Autoconnection Configuring Static Routes N f i g u r i n g I P R o u t i n gConfiguring Dynamic Routes Using RIP Configuring Proxy ARP Configuring IP Routing Controlling Access to Inbound Ports Controlling Access to the ConfigurationN f i g u r i n g S e c u r i t y F e a t u r e s Controlling Access to Outbound Ports Controlling Access to the Command LineConfiguring SSH Version 2 for Secure Communication Issuing User PasswordsDevice Required Hardware Firmware Controlling Access to Services HttpSnmp SSH Configuring Security Features Configuring Modbus Configuring the User-Defined ProtocolConfiguring the Digi Device for IA Industrial Automation N f i g u r i n g D N S About the Domain Name SystemConfiguration Procedures N f i g u r i n g S N M P About Snmp and the Device Server AgentConfiguration Procedure Web Interface MIBFeature Description Set user Field About Configuring UsersCommon User Features N f i g u r i n g U s e r sCommands for Configuring a User Configuring a User Web InterfaceClick New User Copying the Configuration to and from a Remote Host Upgrading the FirmwareResetting Device Server Configuration to Defaults Commands for Resetting the Configuration to Defaults Managing the OS and Configuration Serial Power Feature Configuring RI PowerConfiguring DTR Power Serial Power Table DTR on DTR OFFConfiguring Power Over the Serial Ports Interpreting the LEDs F e r e n c e a n d C e r t i f i c a t i o n sColor State Indicates RJ-45 Pinouts EIA-232 EIA-422/485 EIA-485 Half Full-Duplex Certifications EnvironmentalDigi Contact Information Digi Contacts Reference and Certifications