Chapter31 Router Properties
vty Settings
31-20
Cisco Router and Security Device Manager 2.5 User’s Guide
OL-4015-12
If you want to make users employ secure protocols when logging in to Cisco
SDM, check Allow secure protocols only. When you check this box, the
following protocols are automatically checked: SSH, HTTPS, RCP. If you then
check a nonsecure protocol such as Telnet, Cisco SDM unchecks Allow secure
protocols only.
You Can Specify Management Protocols Individuall y
If you want to specify individual protocols that the host or network ca n use, you
can check any of the boxes: Teln et, SSH, HTTP, RCP, or SNMP.
If Telnet and SSH are not enabled (checked) in the VTYs window, and SNMP is
not enabled in the SNMP Properties window, Cisco SDM will advise you to
enable those protocols when they are specified in this window.
Note The options Allow secure protocols only and HTTPS are disabled if the Cisco
IOS release on the router does not support HTTPS.
Management Access Error Messages
The following error messages may be generated by the Management Access
feature.
Error Message
SDM Warning: ANY Not Allowed
Explanation A management policy is read-only if any of its source or
destination rule entries contain the “any” keyword. Such policies cannot be
edited in the Management Access window. A policy containing the “any”
keyword can create a security risk for the following reasons:
If “any” is associated with source, it allows traffic from any network to
enter the router.