Chapter 17 DLPs E100 to E199

DLP- E131 Change Security Policy on Multiple Nodes

Step 3 In the User Lockout area, you can modify the following:

Failed Logins Before Lockout—Choose the number of failed login attempts a user can make before the user is locked out from the node. You can choose a value between 0 and 10.

Manual Unlock by Superuser—Check this box if you want to allow a user with Superuser privileges to manually unlock a user who has been locked out from a node. The user will remain locked out until a Superuser manually unlocks the user.

Lockout Duration—Choose the amount of time the user will be locked out after a failed login. You can choose a value between 0 and 10 minutes, and 0 and 55 seconds (in five-second intervals).

Step 4 In the Password Change area, you can modify the following:

Require [nn] different passwords...—Choose a value between 0 and 10 to determine how many different passwords have to be created before a password can be reused.

...or a waiting period of [nn] days before password reuse—Choose a value between 0 and 30 days to set the amount of time (in days) before a password can be reused.

Note “Require [nn] different passwords or a waiting period of [nn] days before password reuse” is an OR statement, meaning that either one of the two conditions that you set can be satisfied for a password to be reused.

Step 5 In the Concurrent Logins area, click Single Session Per User if you want to limit users to a single login session.

Step 6 Click Apply. Confirm that the changes appear; if not, repeat the task.

Step 7 Return to your originating procedure (NTP).

DLP-E131 Change Security Policy on Multiple Nodes

 

Purpose

This task changes the security policy for multiple nodes including idle user

 

 

timeouts, user lockouts, password change, and concurrent login policies.

 

Tools/Equipment

None

 

Prerequisite Procedures

DLP-E26 Log into CTC, page 16-33

 

Required/As Needed

As needed

 

Onsite/Remote

Onsite or remote

 

Security Level

Superuser

 

 

Step 1

From the View menu, choose Go To Network View.

Step 2

Click the Provisioning > Security > Policy tabs. A read-only table of nodes and their policies appears.

Step 3

Click a node on the table that you want to modify, then click Change.

Step 4

In the Idle User Timeout area, you can modify the timeout times for each security level by clicking the

 

hour (H) and minute (M) arrows. You can choose values between 0 and 16 hours and 0 and 59 minutes.

Step 5

In the User Lockout area, you can modify the following:

Failed Logins Before Lockout—Choose the number failed login attempts a user can make before the user is locked out from the node. You can choose a value between 0 and 10.

Cisco ONS 15600 Procedure Guide, R8.0

17-27

Page 27
Image 27
Cisco Systems 15600 manual DLP-E131 Change Security Policy on Multiple Nodes, 17-27

15600 specifications

Cisco Systems 15600 is a powerful network router designed to meet the growing demands of enterprise and service provider networks. Equipped with advanced features and cutting-edge technology, the 15600 caters to a range of applications, from data centers to branch offices, supporting the evolving landscape of cloud computing and Internet of Things (IoT).

One of the standout features of the Cisco 15600 is its scalability. The router is built to handle increasing bandwidth requirements, making it ideal for environments where traffic is expected to grow. It supports a range of interface modules, allowing organizations to tailor their network connectivity according to their specific needs. This modular design not only ensures flexibility but also future-proofs the investment, as additional capacity can be added as network demands increase.

Cisco’s 15600 also incorporates advanced security features, such as built-in firewalls and support for secure VPN connections. This is crucial for businesses that prioritize data protection and need to safeguard their information against cyber threats. The router also supports multiple encryption protocols, allowing organizations to implement robust security measures without sacrificing performance.

With regard to performance, the 15600 offers high throughput rates, which are essential for handling large volumes of traffic efficiently. This enhanced performance is further supported by Cisco's innovative technologies, such as Application-Specific Integrated Circuits (ASICs) that optimize data processing. Additionally, the router utilizes Cisco’s Intelligent WAN (iWAN) capabilities, which enhance the overall performance and efficiency of WAN connections.

Another key characteristic of the 15600 is its support for software-defined networking (SDN). This enables organizations to automate network management, reduce operational costs, and improve agility in deploying applications. Using Cisco's software solutions, network administrators can manage the router through a centralized interface, simplifying operations and enhancing visibility into network performance.

Furthermore, the Cisco 15600 is designed with energy efficiency in mind. Its architecture minimizes power consumption while maintaining high performance levels, contributing to sustainability goals and reducing operational costs over time.

Overall, the Cisco Systems 15600 router stands out as a robust networking solution, offering unmatched scalability, security, performance, and operational efficiency. As organizations increasingly turn to cloud-based solutions and IoT devices, the capabilities of the 15600 position it as a critical component in modern network infrastructures.