APC Switched Rack Power Distribution Unit (PDU) manual Security Features, Port assignments

Page 80

USER’S GUIDE switched rack pdu

®

Security

Security Features

Planning and implementing security features

As a network device that passes information across the network, the Switched Rack PDU is subject to the same exposure as other devices on the network.

Use the information in this section to plan and implement the security features appropriate for your environment.

Port assignments

If a Telnet, FTP, or Web server uses a non-standard port, a user must specify the port when using the client interface, such as a Web browser. The non-standard port address becomes an extra “password,” hiding the server to provide an additional level of security. The TCP ports for which the Telnet, FTP, and Web servers listen are initially set at the standard “well known ports” for the protocols. To hide the interfaces, use any port numbers from 5000 to 32768.

User names, passwords, community names

All user names, passwords, and community names for SNMP are transferred over the network as plain text. A user who is capable of monitoring the network traffic can determine the user names and passwords required to log in to the accounts of the Control Console or Web interface of the Switched Rack PDU. This security limitation of the protocols affects any device using Telnet, a Web server, or an SNMP version 1 agent.

76

Image 80

Contents Contents Web Interface Network Menu Index Product Description Features of the PDUIntroduction Initial setup Overview Access ProceduresAccess priority for logging on Types of user accounts How to Recover From a Lost Password Upgrading Firmware XmodemUSER’S Guide switched rack pdu Front Panel Single-phaseThree-phase See Status LED Condition Description Link-RX/TX 10/100 LEDStatus LED Load indicator LED Network interface watchdog mechanism Watchdog FeaturesResetting the network timer Control Console How to Log OnRemote access to the control console Local access to the control console Information and status fields Main ScreenExample main screen System Menu Main screen status fields Control Console Menus Menu structureNetwork option Main menuDevice Manager option System option Web Interface Supported Web browsers URL address formats Summary StatusQuick status tab Navigation menuNavigation Menu Events menu Network menu System menuSelecting a menu to perform a task Help menu Links menu Outlet Settings Power On DelaysDevice Manager Menus Control outletsConfigure outlet settings and outlet name For Power Off DelaySelect Outlet Control/Config from the Device Manager menu Setting DescriptionSwitched Rack PDU Settings Configure Load ThresholdsUSER’S Guide switched rack pdu Configure Device Settings Control consoleEvent-Related Menus IntroductionMenu options Event Log Logged events Web interfaceControl console How to use FTP to retrieve log files USER’S Guide switched rack pdu Event Actions Web Interface Only Snmp traps action Severity levelsEvent log action Email action Definition Trap receiver settingsEvent Recipients Mail Feature Smtp settings DNS serversEmail Recipients USER’S Guide switched rack pdu How to Configure Individual Events Detailed Event Action ConfigurationEvent List Code Description SeveritySystem Menu Menu options Option Settings Setting DefinitionAdministrator and Device Manager User User ManagerOutlet Manager Identification Date & TimeUSER’S Guide switched rack pdu Tools Action DefinitionLinks Web interface APC’s Web Site , Testdrive Demo , and Remote MonitoringAbout System Network Menu TCP/IP DNSTCP/IP For more information on using Bootp and DHCP, see Boot Mode DNS Ping utility control console FTP Server, and Telnet & Web options Ftp Telnet Http//159.215.12.11432740Snmp USER’S Guide switched rack pdu Boot Mode Dhcp & Bootp boot process See Switched Rack PDU settingsDhcp Configuration Settings Switched Rack PDU settingsUSER’S Guide switched rack pdu Dhcp response options APC Cookie. Tag 1, Len 4, Data 1APCBoot Mode Transition. Tag 2, Len 1, Data 1/2 USER’S Guide switched rack pdu Security Features Planning and implementing security featuresUser names, passwords, community names SecuritySummary of access methods Interface Security AccessFirewalls AuthenticationAuthentication versus encryption USER’S Guide Product Information Warranty and ServiceLimited warranty Warranty limitations Obtaining serviceUSER’S Guide switched rack pdu Examples of life-support devices Life-Support PolicyGeneral policy Index APC OSFTP Smtp Xmodem APC Worldwide Customer Support Copyright