Manuals / Cisco Systems / Household Appliance / Home Security System

Cisco Systems OL-5742-01 manual Restoring Security-RelatedSGM Data, # ./sgm seclog clear, 18-23

Models: OL-5742-01

1 42

Download 42 pages 34.07 Kb

Page 23

# ./sgm seclog clear

Chapter 18 Configuring SGM Security

Configuring SGM User-Based Access

•Access to all privileged files and processes

•Operating system configuration changes and program changes, at the Solaris level

•SGM restarts

•Failures of computers, programs, communications, and operations, at the Solaris level

To clear the log and restart the server, enter the following command:

# ./sgm seclog clear

The default path and filename for the system security log file is /opt/CSCOsgm/logs/sgmSecurityLog.txt. If you installed SGM in a directory other than /opt, then the system security log file is located in that directory.

Note You can also view the system security log on the SGM System Security Log Web page. For more information, see the “Viewing the SGM System Security Log” section on page 21-41.

Restoring Security-Related SGM Data

If you inadvertently delete your user accounts, or make other unwanted changes to your SGM security information, SGM enables you to restore the security-related parts of the SGM data files from the previous night’s backup.

To restore the files, log in as the root user, as described in the “Becoming the Root User (Solaris Only)” section on page 2-3, then enter the following commands:

#cd /opt/CSCOsgm/bin

#./sgm restore security

SGM restores the files.

		Cisco Signaling Gateway Manager User Guide
		Cisco Signaling Gateway Manager User Guide
	OL-5742-01			18-23
	OL-5742-01			18-23

Image 23

Cisco Systems OL-5742-01 manual Restoring Security-RelatedSGM Data, # ./sgm seclog clear, 18-23

Contents

Implementing SSL Support in SGM, page Configuring SGM User-BasedAccessConfiguring SGM User-BasedAccess, page Creating Secure Passwords, page 18-5 Required18-2 Implementing SGM User-BasedAccess Solaris Only#cd /opt/CSCOsgm/bin #./sgm useraccess enable #./sgm authtype local sgm disablepass -sgm passwordage -sgm userpasssgm adduser -sgm disableuser -sgm enableuser sgm updateuser18-4 # ./sgm authtype solaris# ./sgm sgm adduser username 18-5 Creating Secure PasswordsNetwork Administrator Level 4 Access, page Basic User Level 1 Access, pagePower User Level 2 Access, page Network Operator Level 3 Access, page18-7 Basic User Level 1 Access18-8 Power User Level 2 AccessNetwork Operator Level 3 Access 18-9 Network Administrator Level 4 AccessSystem Administrator Level 5 Access System Messages and Logs 18-10# ./sgm badlogindisable clear # ./sgm badloginalarm number-of-attempts# ./sgm badloginalarm clear # ./sgm badlogindisable number-of-attempts18-12 # ./sgm passwordage number-of-days# ./sgm inactiveuserdays number-of-days # ./sgm inactiveuserdays clear18-13 # ./sgm passwordage clear#./sgm clitimeout number-of-minutes # ./sgm clitimeout clear# cd /opt/CSCOsgm/bin # ./sgm disablepass username# ./sgm deluser username 18-1418-15 # ./sgm disableuser username18-16 # ./sgm enableuser username# ./sgm userpass username page18-17 # ./sgm updateuser username18-18 Displaying a Message of the Day# ./sgm newlevel username Message of the Day Last UpdatedField or Button Description18-20 #cd /opt/CSCOsgm/bin #./sgm motd enableDecline # ./sgm motd edit# ./sgm motd cat Manually Synchronizing Local SGM Passwords# ./sgm motd disable Listing All Currently Defined Users18-22 Disabled# ./sgm listusers username #cd /opt/CSCOsgm/bin #./sgm seclog18-23 #cd /opt/CSCOsgm/bin #./sgm restore securityRestoring Security-RelatedSGM Data # ./sgm seclog clear# ./sgm restart Disabling SGM User-BasesAccess#cd /opt/CSCOsgm/bin #./sgm useraccess disable Specifying a Super User Solaris Onlysgm reboot -sgm restore -sgm restoreprops sgm backup -sgm browserpath -sgm certguisgm certtool -sgm clean -sgm cleanall sgm cleandb -sgm cw2ksetup -sgm evilstopLaunching the SGM Certificate Tool for SSL, page Implementing SSL Support in SGMsgm webport -sgm xtermpath Enabling SSL Support in SGM, pageDisabling SSL Support in SGM, page Enabling SSL Support in SGMExporting an SSL Certificate, page Managing SSL Support in SGM, page18-28 opt/CSCOsgm/etc/ssl/server.csr is a CSR# ./sgm keytool import cert cert filename Step 5 Restart the SGM client 18-29SGM displays the SGM Server Home page 18-3018-31 Launching the SGM Certificate Tool for SSL#cd /opt/CSCOsgm/bin #./sgm certgui Import Issued toIssued by Expiration DateHelp Importing an SSL Certificate to an SGM ClientDetails ExitFile Name CancelExporting an SSL Certificate Look InDescription Save In18-35 Field or ButtonField or Button Save18-36 CancelFigure 18-5Certificate Information Dialog 18-37Chapter 18 Configuring SGM Security Cisco Signaling Gateway Manager User GuideSerial number IssuerSubject Version18-39 Managing SSL Support in SGMDisabling SSL Support in SGM # cd /opt/CSCOsgm/bin 18-40Step 2 Enter the following command 18-41 #./sgm ipaccess add#./sgm ipaccess edit Any changes you make to the ipaccess.conf file take effect when you restart the SGM server 18-42