Western Telematic RSM-32DC, RSM-8, RSM-16DC manual Audit Log

Page 28

Configuration

The Invalid Access menus allow you to select the following:

Lockout Enable: Enables/Disables the Invalid Access Lockout feature. (Default = On.)

Lockout Attempts: The number of invalid attempts required to activate the Invalid Access Lockout feature. (Default = 9.)

Lockout Duration: The length of time ports will remain locked when an Invalid Access Lockout occurs. If the duration is set at "Infinite", then ports will remained locked until the /UL command is issued. (Default = 30 Minutes.)

5.4.3.The Audit Log

This feature allows you to create a record of command activity at all RSM ports. Audit Log records will include the time, date, username, and a brief description of each logged event (e.g., Connect, Login, etc.) The Audit Log is enabled and configured via the System Parameters Menus as described in Section 5.4.

The System Parameters Menus includes three different options for Audit Log configuration; Off (Audit Log disabled), "On with Syslog" and "On without Syslog." When "On with Syslog" is selected, each individual Audit Log record will be sent out to the user-defined Syslog IP Address as a Syslog message at the time that it is generated. The Syslog IP Address is defined via the Network Parameters Menu, as described in Section 5.8.

To read or erase the Audit Log, access command mode (via the Text Interface,) using an account and port that permit Supervisor commands, type /A s, press [Enter] (where s is an optional text string that you wish to search for,) and follow the instructions in the resulting submenu. When the s (search string) option is included, the /A command will return only those records that match the selected search string.

Notes:

The RSM dedicates a fixed amount of internal memory for Audit Log records, and if log records are allowed to accumulate until this memory is filled, memory will eventually "wrap around," and older records will be overwritten by newer records.

The Audit Log cannot be viewed via the Web Browser Interface.

When the s option is used to search for all records that contain a specific text string, the Delete function will still delete all Audit Log records; the Delete function is not limited to the records that are currently displayed on screen.

5-9

Page 27 Page 29
Image 28
Page 27 Page 29
Contents RSM Series Shock Hazard Do Not Enter Lithium Battery Secure RackingDisconnect Power Agency Approvals Table of Contents Configuration Table of Contents List of Figures Security and Collocation Features IntroductionIntelligent Port Selection Capture BufferConfiguration Backup RSM-8, RSM-16, RSM-16DC, RSM-32 and RSM-32DC UnitsTypographic Conventions Bold FontUnit Description Front PanelBack Panel Instrument Back Panel Model RSM-8 Power On/Off Switch Quick Hardware Installation Apply Power to the RSMGetting Started Connect your Control Device to the RSMCommunicating with the RSM Port Status Screen Text Interface RSM-8 Shown Getting Started Connecting Power to the RSM Unit Hardware InstallationDC Powered Units Connecting the Network Cable Connecting Devices to the RSMCommunicating with the RSM Unit ConfigurationText Interface Configuration Web Browser Interface Home Screen Web Browser InterfaceSystem SetUp Ports Configuration MenusDefining System Parameters System ParametersConfiguration Real Time Clock and Calendar Invalid Access Lockout Feature Audit Log Callback Security Configuration Port Access Supervisor AccessUser Accounts Managing User Accounts Viewing User AccountsAdding User Accounts Add User Menu Text Interface RSM-8 ShownConfiguration Modifying User Accounts Deleting User AccountsRS232 Port Configuration 1. RS232 Port ModesPort Configuration Menu Text Interface 2. RS232 Port Configuration Menus Communication SettingsGeneral Parameters Port Mode Parameters AT&C1&D2S0=1&B1&H1&R2Network Services Configuring the Internal Modem Network Configuration Servers and ClientsConfiguration Network Parameters 11 Network Parameters Menu Web Browser InterfaceNetwork Port Parameters 12 Network Port Parameters Menu Web Browser InterfaceConfiguration IP Security IP SecurityConfiguration Configuration Except Net/Mask PairsConfiguration Static Route 15 Static Route Menu Text InterfaceDomain Name Server 17 Nomain Name Server Menu Text Interface19 Snmp Access Menu Text Interface Snmp ParametersConfiguration Ldap Parameters LdapConfiguration Group Membership Value Type Default = DN Ldap Group25 Add Ldap Group Menu Text Interface RSM-8 Shown 27 View Ldap Group Menu Text Interface RSM-8 Shown 29 Modify Ldap Group Menu Text Interface RSM-8 Shown 31 Delete Ldap Group Menu Web Browser Interface 32 Ldap Kerberos Set Up Menu Text Interface Configuration Tacacs Parameters 34 The Tacacs Parameters Menu Text InterfaceConfiguration Radius Parameters 36 The Radius Parameters Menu Text InterfaceConfiguration 38 The Copy Port Parameters Menu Save User Selected Parameters CP 3,5,7-9 EnterStatus Screens Port Status Screen /S Status ScreensPort Diagnostics Screen /SD Port Diagnostics Screen RSM-8 ShownNetwork Status Screen /SN Porttcp Portstatus UsernamePort Parameters Screens /W Port Parameters Screen RS232 Port ShownXx Enter Operation Any-to-Any ModePort Connection and Disconnection Operation Operation 4 Enter EnterDefining Hunt Groups Hunt Group ExamplePassive Mode Buffer Mode Reading Data from Buffer Mode PortsPort Buffers Modem Mode Network Port Numbers Telnet & SSH FunctionsSSH Encryption Configuration Direct Connect FeatureStandard Telnet Protocol, SSH and Raw Socket Telnet & SSH Functions Standard Telnet Direct Connection without Password RSM-8 SSH Direct Connection with Password RSM-8RSM-16 & RSM-16DC RSM-32 & RSM-32DCRaw Socket Direct Connection without Password RSM-8 Raw Socket Direct Connection with Password RSM-8Connection Example Terminating a Direct Connect Session Syslog Feature ConfigurationCriteria for Generating a Syslog Message Testing Syslog Configuration Test Menu Text Interface, Supervisor Mode OnlySnmp Traps 10-1Snmp Trap Message How and When Snmp Traps are SentSnmp Contact Optional Snmp Location Optional Testing the Snmp Trap Function Saving and Restoring Configuration Parameters Sending Parameters to a FileRestoring Saved Parameters Upgrading RSM Firmware 12-112-2 Command Reference Guide Command ConventionsCommand Summary Resident Disconnect Sequence Command SetAudit Log Connect Format /C x x EnterCP Copy RS232 Port Parameters Format /CP EnterThird Party Disconnect Format /D/Y x x Enter2 Enter or /D/Y 3 Enter Erase BufferReboot System Default Set System ParametersHelp Display Site IDSet Network Port Parameters Send SSH KeySet RS232 Port Parameters PW Change Password SD Display Port DiagnosticsRead Buffer Display Port StatusUF Upgrade Firmware UL Unlock Port Invalid Access LockoutTest Test Network Parameters Save ParametersExit Command Mode Display Port Parameters WhoFormat /W x Enter Format /X EnterWhen not connected When connectedAppendix A. RS232 Port Interface Appendix B. Specifications RS232 Port Interface ConnectorsPhysical / Environmental Power Models RSM-32 and RSM-32DCAppendix C. Customer Service Trademark and Copyright Information Trademarks Used in this ManualIndex Tacacs DhcpIndex-2 Index-3 Index-4
Top Page Image Contents