Security, Users and Groups | Cyclades 2.3.0, ACS48 specification

4: Configuring the Web Interface

Security

The Security configuration of the ACS, as shown by the left menu panel includes the following configuration forms:

•Users and Groups

•Active Ports Sessions

Users and Groups

Users and Groups configuration allows you to set up users to have access to the ACS web application, assign them to specific groups that share common access rights, as well as assign or re-assign passwords. Moreover, you can create new groups to add to the group list.

The access limits provide privileges based on the functionality of the Web page.

The two groups to which you can assign a user are:

•Admin - Read/Write Access

•Regular User - Limited R/W Access

Although root is also a user, there is only one root user (username root, default password tslinux).

If a step does not apply (e.g., edit, delete), skip to the next step.

AlterPath Console Server User Manual

91

Image 97

Cyclades 2.3.0, ACS48 user manual Security, Users and Groups

Contents

AlterPath Console Server Page Table of Contents Configuring the Web Interface Supported Browsers and JRE 139 Page Before You Begin Example Network Access Method Outlines the Safety Considerations forPassword field Examples Example Naming Conventions To select is the same as to click your mouse Document Symbols Audience ACS Access and Configuration Product Models and Components Figure below shows AlterPath ACS1 through ACS48 ACS Setup Diagram Package Contents Installing the ACS Package Contents ACS4 through ACS48 Package Contents ACS1 Brackets Rack Mounting the ACS Default Configuration Parameters Hardware Connectivity Configuration MethodSystem Requirements Procedures given in Appendix C Supported Pre-Install ChecklistBrowsers and JRE Task 1 Install ACS and connect to the network Installation and Configuration Process Initial Configuration Using the ACS Console Port Task 2 Configure network settings Proceed to Task Task 4 Test Configuration Task 3 Configure via Web WizardTask 5 Configure the web interface in Expert Mode To create new users, see Wizard Mode Access page 4-10 Using the Web Interface Using the Web Interface System brings up the Port Selection form Using the Command Line Interface CLI SSH Access Telnet AccessLogging onto the Terminal Where Tsmenu Access From Telnet Closing the session from tsmenuFrom SSH Power Management Security Overview Configuring the Web Interface For more detailed information, see Chapter Logging Configuring the Web Interface ACS Web Interface GUI Elements Wizard ModeUser Entry Panel or Form Menu Panel Control Buttons Or Form Indicator Expert ModeTop Menu Bar Form Tabs Button Functions Saving Your ConfigurationButton Name Use this button to Configuring the Web Interface Network Settings Configuring in Wizard ModeSettings Configuring the Web Interface Port Profile Field Name Definition Then go to Security Users and Groups Access Changing a User Password Repeat Password PasswordAdding a User User Name Select Apply Changes Deleting a User Data Buffering Mode DestinationFile Size Bytes Record the time stamp System Log Expert Mode Menu Configuring in Expert ModeApplications Menu Selection Use this menu to Security Network Ports Administration Applications Connect Form Title Use this form to Applications Power Management Applications Power management Outlets Manager To Edit the Power Up Interval Applications Power Management View IPDUs Info Applications Power Management Users Manager Deleting a User Applications Power Management Configuration Applications Power Management Software Upgrade Configuring the Web Interface Applications Terminal Profile Menu Configuring the Web Interface Network Host Settings Filed Name Field Definition Facility Number Network SyslogNew Syslog Server Syslog Servers Network Pcmcia Management Isdn GSM Pcmcia Configuration Dialog Boxes Local IP Access Method ModemRemote IP Call Back Access Method Isdn Pin Number Access Method GSM Access Method Compact Flash Access Method Ethernet Access Method Wireless LAN Role of IPsec What is VPN Authentication Keys Network VPN Connections Authentication Method Authentication ProtocolConnection Name Remote Right Boot Action Snmp Daemon SettingsRSA Key Local Left Community To configure Snmp SysContact If you are using SNMPv3, skip steps 2 and 3 proceed to stepSysLocation Source Permission System invokes the New/Modify Snmp v3 Configuration dialog Services Structure of IP Filtering Firewall ConfigurationChain Rule Network Firewall Configuration Editing a Chain Adding a Chain Editing a Rule Deleting a Chain Source IP TargetMask Inverted Destination IP Adding a Rule Additional Fields About the Reject Options Section Network Host Table Network Static Routes Host IP Route Select Default , Network , or Host Network IPGo to Select Gateway or Interface Metric Users and Groups Adding Users and Groups to the Access List All users must be assigned to a group Changing the User PasswordDeleting a User from a Group Active Ports Sessions LoginUser From Ports Physical Ports PortsPhysical Ports Virtual Ports To configure the ports Associating an Alias to a Port Alias Ports Physical Ports General PortBaud Rate Kbps Go to Ports Physical Ports General Power Management Access Authentication Type Definition Ports Physical Ports Access NIS NIS Authentication Radius Entry Fields Based on Authentication TypeAuthentication Ldap or LdapDownLocal Field Name Authentication Type Kerberos, KerberosDownLocal Authentication Type NIS, LocalNIS or NISLocal All ACS onlyKerberosDownLocal Authorized Users/Groups NIS Domain Name NIS Server IP Full Size Bytes Ports Physical Ports Data BufferingRecord the timestamp Syslog Server Ports Physical Ports Multi-User Sniff Mode To configure ACS to allow multiple sessionsAllow Multiple Sessions Menu Hotkey Ports Physical Ports Power Management Ports Physical Ports Other TCP Keep-alive Interval Ports Virtual Ports First Local Port No Number of PortsFirst Local TCP Port No First Remote TCP Port No Deleting a Slave Ports Ports Status Configuring the Web Interface 112 Administration System Information Administration Notification Alarm for Administration NotificationEmail , Pager , or Snmp Trap To/From/Subject/Body Alarm TriggerSmtp Server IP Smtp Port Text Pager NumberSMS Server IP SMS Port 117 OID Type Value Port DCD Alarm NotificationTrap Number Server IP Manual Setting Administration Time / Date NTP Setting Field Name Definition Administration Boot Configuration Boot Type Unit boot fromBoot File Name Server’s IP Address To save configuration to a FTP server Administration Backup Configuration Backup and Restore Procedure Default Configuration To Save Configuration to a Storage DeviceReplace Configuration Click on Apply Changes Click on Upgrade Now Administration Upgrade Firmware Administration Reboot Configuring the Web Interface 128 Hardware Specifications Supported Pcmcia Cards MK5002MPL 5GB Appendix a Hardware Specifications 132 Safety Guidelines for Rack-Mounting the ACS Reliable Earthing Safety Precautions for Operating the ACS Working inside the AlterPath Console Port Server Warnung Replacing the BatteryFCC Warning Statement Canadian DOC Notice Aviso de Precaución S-Mark Argentina Batería Trabajar dentro del AlterPath Console Server Supported Web Browsers Installing JRETested Environment Requirements From Windows Internet Explorer From Windows Netscape or Mozilla Bios AuthenticationBoot Break Signal Dhcp CAS Sequence of special characters that sends a command to a Domain Name Server. The computer you use to accessAn escape sequence is commonly used when the computer Commands Icmp IPsec IP packet filteringIsdn Kerberos Masquerading MACMTU Network Mask NTP NFSObject Identifiers OID See Object Identifier OIDPacket Parity Port PcmciaPPP Risc Radius Snmp Smtp Stty Terminal Access Controller Access Control SystemTacacs TACACS+ Terminal Server TelnetTTY UDP System does not recover on its own Watchdog timer WDT is a device or electronic card thatCommon problem is for a machine or operating system to Watchdog timer can be programmed to perform a warm