Avocent CCM1640, CCM840 Server Security command

66CCM840/1640 Installer/User Guide

Server Security command

The Server Security command specifies how authentication will be performed and whether Security Lock-out is enabled. You may also enable/disable SSH connections, plain text Telnet connections or both. For more information, see Using Authentication Modes and Using Security Lock-outin Chapter 3.

When you enter this command, you are prompted to confirm or cancel the specified information.

Access right: SCON

Access level: APPLIANCEADMIN

Syntax

SERVER SECURITY [AUTHENTICATION=<auth_mode>] [ENCRYPT=<conns>] [LOCKOUT=<hours>]

Server Security Command Parameters

Parameter	Description
AUTHENTICATION=	Authentication mode. Multiple values may be speciﬁed, separated
<auth_mode>	by commas. Valid values are:
	LOCAL - Use the internal CCM user database to authenticate users.
	RADIUS - Use the previously deﬁned RADIUS server(s) to
	authenticate users.
	NONE - Do not authenticate users. This mode cannot be used
	when SSH access is enabled, and it cannot be combined with other
	authentication modes.
	Default = LOCAL

ENCRYPT=<conns> Enables/disables plain text Telnet or SSH connections. You may
	enable both by specifying both values, separated by a comma. Valid
	values are:
	SSH	Enables SSH connections.
	None	Enables plain text Telnet connections.
	Default: None

LOCKOUT=<hours> Enables or disables Security Lock-out. To enable, specify the number of hours in the lock-out period, in the range 1-99. To disable, specify a

Øvalue.

Default = Ø (disabled)

Examples

The following command specifies that the CCM user database will be used to

authenticate users. SSH and plain text Telnet connections will be allowed.

> server security authentication=local encrypt=ssh,none

Contents

Page Page Page Page Table of Contents Page 1 Product Overview Page Chapter 1: Product Overview Features and Benefits Safety Precautions Rack mount safety considerations Using AVWorks Page Installation and Configuration Page Chapter 2: Installation and Configuration Hardware Overview Installing the CCM Configuring the CCM Configuring the IP address and subnet mask To conﬁgure the IP address and subnet mask using a Telnet CLI: To conﬁgure the CCM using the serial CLI: Initial CCM login Reinitializing the CCM 3 Operations Page Chapter 3: Operations Overview Configuring Serial Port Settings Connecting to Serial Devices Connecting to devices using Telnet Connecting to devices from the serial CLI port Configuring and using dial-inconnections Connecting to devices using PPP Connecting to devices using SSH SSH Authentication Methods Page Enabling plain text Telnet and SSH connections Telnet CLI mode Ending device sessions Session time-outs Managing User Accounts To change a user’s conﬁguration information: To end another user’s CCM session: To delete a user: To display user conﬁguration information: Access rights and levels Using Authentication Modes Authentication summary Using Security Lock-out Managing the Port History Buffer Using port history mode commands Port History Mode Commands To access port history mode: To control the port history buffer display when you connect: To control the port history buffer content when you end a session: To clear and discard all data in a port history buffer: Managing the CCM Using SNMP To add or delete SNMP management entity addresses: To enable or disable SNMP traps: To add or delete SNMP trap destination addresses: To add, copy or delete port alert strings: To display SNMP conﬁguration information: To display port alert string information: 4 Using CCM Commands Page Chapter 4: Using CCM Commands Accessing the CLI Entering Commands When commands take effect Understanding Conventions Command syntax Page Syntax conventions Command Summary CCM Command Summary (Continued) Page Page Page 5 CCM Commands Page Chapter 5: CCM Commands Connect Command Disconnect Command Help Command Port Commands Port Alert Add command Port Alert Copy command Port Alert Delete command Port Break command Port History command Port Logout command Port Set command Page Quit Command Resume Command Server Commands Server CLI command Server FLASH command Server PPP command Server RADIUS command Server Reboot command Server Security command Server Set command Server SNMP command Server SNMP Community command Server SNMP Manager command Server SNMP Trap command Server SNMP Trap Destination command Server SSH command Show Commands Show Port command Page Show Port Alert command Show Server command Show Server CLI command Show Server PPP command Show Server RADIUS command Show Server Security command Show Server SNMP command Show User command SPC Command User Commands User Add command Page User Delete command User Logout command User Set command User Unlock command Page Appendices Page Appendices Appendix A: Technical Specifications Appendix B: Device Cabling Page RJ-45modular adaptors and cables Page Appendix C: Ports Used Appendix D: Technical Support