Cisco Systems OL-5742-01 # ./sgm authtype local, Sgm disablepass Sgm passwordage Sgm userpass

Page 3

Chapter 18 Configuring SGM Security

Configuring SGM User-Based Access

Step 3 If you have already configured the type of SGM security authentication you want to use, skip to Step 4.

Otherwise, configure the type of SGM security authentication you want to use:

Local authentication allows you to create user accounts and passwords local to the SGM system. When using this method, you can use SGM User-Based Access commands manage user names, passwords, and access levels.

To enable local authentication, enter the following command:

#./sgm authtype local

Solaris authentication uses standard Solaris-based user accounts and passwords, as specified in the /etc/nsswitch.conf file. Authentication can be provided by the local /etc/passwd file or from a distributed Network Information Services (NIS) system. You can use all SGM User-Based Access commands except the following commands:

sgm disablepass

sgm passwordage

sgm userpass

You must use Solaris commands, such as passwd, to manage passwords.

Users also cannot change their passwords using the SGM client. Instead, they must manage their passwords on the external authentication servers, using Solaris commands, such as passwd.

All new passwords take effect the next time SGM automatically synchronizes local SGM passwords with Solaris, or you can manually synchronize passwords at any time using the sgm syncusers command.

In addition, if you have enabled Solaris authentication, you must be logged in as the root user, not a super user, to use the following SGM commands:

sgm adduser

sgm disableuser

sgm enableuser

sgm updateuser

 

 

Cisco Signaling Gateway Manager User Guide

 

 

 

 

 

 

OL-5742-01

 

 

18-3

 

 

 

Page 2 Page 4
Image 3
Page 2 Page 4
Contents 18-1 Configuring SGM SecurityImplementing SGM User-Based Access Solaris Only # cd /opt/CSCOsgm/bin # ./sgm useraccess enable18-2 18-3 Sgm disablepass Sgm passwordage Sgm userpassSgm adduser Sgm disableuser Sgm enableuser Sgm updateuser # ./sgm authtype local# ./sgm authtype solaris # ./sgm sgm adduser username18-4 18-5 Creating Secure Passwords18-6 DICTFILE=/dev/null18-7 Basic User Level 1 Access18-8 Power User Level 2 Access18-9 Network Administrator Level 4 Access18-10 Automatically Disabling Users and Passwords Solaris Only18-11 18-12 # ./sgm passwordage number-of-days# ./sgm inactiveuserdays number-of-days # ./sgm inactiveuserdays clear18-13 # ./sgm passwordage clear# ./sgm clitimeout number-of-minutes # ./sgm clitimeout clear18-14 Manually Disabling Users and Passwords Solaris Only# ./sgm disablepass username # ./sgm deluser username18-15 # ./sgm disableuser username# ./sgm enableuser username # ./sgm userpass username18-16 18-17 # ./sgm updateuser usernameDisplaying a Message of the Day # ./sgm newlevel username18-18 18-19 18-20 # cd /opt/CSCOsgm/bin # ./sgm motd enableDecline # ./sgm motd editManually Synchronizing Local SGM Passwords Listing All Currently Defined Users18-21 Displaying the Contents of the System Security Log 18-23 # cd /opt/CSCOsgm/bin # ./sgm restore securityRestoring Security-Related SGM Data # ./sgm seclog clearDisabling SGM User-Bases Access Specifying a Super User Solaris Only18-24 18-25 18-26 Sgm webport Sgm xtermpath18-27 Enabling SSL Support in SGM18-28 # ./sgm keytool importcert certfilename18-29 # ./sgm keytool importkey keyfilename certfilename18-30 Right-clickDownload SGM Server SSL CertificateLaunching the SGM Certificate Tool for SSL # cd /opt/CSCOsgm/bin # ./sgm certgui18-31 18-32 Help Importing an SSL Certificate to an SGM ClientDetails Exit18-34 Exporting an SSL Certificate18-35 Save18-36 Viewing Detailed Information About an SSL CertificateCertificate Information Dialog 18-3718-38 Managing SSL Support in SGM Disabling SSL Support in SGM18-39 18-40 Limiting SGM Client Access to the SGM Server Solaris Only# ./sgm ipaccess add # ./sgm ipaccess edit18-41 18-42
Related manuals
Manual 136 pages 55.23 Kb

OL-5742-01 specifications

Cisco Systems OL-5742-01 represents an essential advancement in the field of network infrastructure, tailored for organizations that demand robust, reliable, and scalable solutions. As part of Cisco's offerings, this device stands out for its comprehensive features and the technologies embedded within its design.

One of the main features of the OL-5742-01 is its support for advanced routing protocols. The device is engineered to handle both static and dynamic routing, making it versatile for different networking environments. This flexibility allows organizations to efficiently manage data traffic, ensuring optimal performance and minimal downtime. In addition, its built-in redundancy mechanisms ensure that network operations remain uninterrupted, offering peace of mind for mission-critical applications.

The OL-5742-01 is also designed with a focus on security. It incorporates a variety of security features, including advanced encryption protocols, firewall capabilities, and intrusion detection systems. This multilayered approach helps safeguard sensitive data from a myriad of cyber threats, which is particularly crucial in today's digital landscape where data breaches and cyberattacks are prevalent.

Furthermore, the device supports a range of connectivity options, making it suitable for various deployment scenarios. With multiple Ethernet ports and options for fiber connections, it adapts to the specific requirements of an organization's infrastructure. Its ability to support both wired and wireless connections enhances flexibility, allowing for seamless integration into existing networks.

Another noteworthy characteristic of the OL-5742-01 is its scalability. Organizations can easily upgrade their network infrastructure by adding additional units or expanding current capacity without overhauling their entire system. This feature is invaluable for businesses anticipating growth, as it aligns with their evolving needs.

The management of the OL-5742-01 is streamlined through its user-friendly interface, which allows network administrators to monitor and manage the device efficiently. Advanced diagnostic tools assist in troubleshooting, enabling rapid identification and resolution of issues, thus reducing potential network downtime.

In conclusion, Cisco Systems OL-5742-01 is a powerful networking device that encapsulates security, scalability, and advanced routing capabilities. Its features and technologies cater effectively to the demands of contemporary organizations, making it a reliable choice for building and maintaining resilient network infrastructures.
Top Page Image Contents