Manuals / Brands / Computer Equipment / Network Card / GE / Computer Equipment / Network Card

GE 1019070, 1019071, 23954 7.2 SERVICES (ACCESS METHODS) , 7.3 ENCRYPTION

1 58

Download 58 pages, 1.05 Mb

7.2 SERVICES (ACCESS METHODS)

The table below lists the available services (access methods), highlighting the major security features for

each interface.

Interface Access methods Security features

Local console interface Serial cable Authentication via user/pwd pair

Telnet Authentication via user/pwd pair

Plain text

Remote console interface

SSH (Secure SHell) Authentication via user/pwd pair

Encrypted communication

SNMP Agent SNMP Community Name

Plain text

FTP Authentication via user/pwd pair

Plain text

File transfer

SFTP (SSH FTP) Authentication via user/pwd pair

Encrypted communication

HTTP Authentication via user/pwd pair

Plain text

Web interface

HTTPS (SSL) Authentication via user/pwd pair

Encrypted communication

7.3 ENCRYPTION

As stated above, the SNMP/Web adapter offers interfaces providing encryption for protecting data

confidentiality and integrity, and particularly the following:

• SSH (Secure Shell)

• SFTP (SSH File Transfer Protocol)

• HTTPS

In this context, encryption is based on public-key cryptography schemes. Normally, the SNMP/Web

adapters will be delivered already configured with all applicable keys and certificates – should the

adapter miss these information it will generate them at first start-up (this operation may take some

time). The length of the keys used for encryption is 1024 bits, providing complex encryption and a

higher level of security.

7.3.1 SSH and SFTP

SSH allows running terminal sessions to the SNMP/Web adapter over a secure channel. SSH uses public-

key cryptography. The SSH server is authenticated using a host key as identification. Most SSH clients

display the host key fingerprint at the start of the SSH session. Below is an example from a popular SSH

client (putty):

Modifications reserved Page 45/58

OPM_CNT_SNM_BAS_CRD_1GB_V012.doc Operating Manual SNMP/Web Adapter

Contents

Main GE Digital Energy Power Quality Operating Manual SNMP / WEB ADAPTER GE imagination at work Page g Table of contents Page Page 1 INTRODUCTION 1.1 FEATURES 1.2 OVERVIEW Page Page 1.3 ARCHITECTURE 1.4 SAFETY 2 CONSOLE INTERFACE 2.1 INTRODUCTION 2.1.1 Local connection 2.1.2 Remote connection 2.1.3 Log-on 2.1.4 Saving the settings 2.2 COMMAND LIST 2.2.1 General command group 2.2.2 Network command group 2.2.3 DNS command group 2.2.4 User command group 2.2.5 Service command group 2.2.6 Time command group 2.2.7 Smtp command group 2.2.8 Snmp command group 2.2.9 Trap command group 2.2.10 UPS command group 2.2.11 Rccmd command group 2.2.12 Events command group 2.2.13 Log command group 3 WEB INTERFACE 3.1 INTRODUCTION 3.1.1 Supported browsers 3.1.2 Initial web access 3.1.3 Sample page 3.2 NAVIGATION BAR 3.3 UPS SECTION 3.3.1 UPS Identification page 3.3.2 Battery page The Battery page shows the following information. 3.3.3 UPS Status page The UPS status page shows the following information for each of the input / output / bypass lines. Also the following information is presented: Finally, a 3-ph system featuring the PMAD functionality will also show the following: 3.3.6 UPS Test page 3.3.7 UPS Control page (1-ph/SP units ONLY) 3.3.8 UPS Config page 3.4 SYSTEM SECTION 3.4.1 Network page 3.4.2 Date&Time page 3.4.3 RCCMD page 3.4.4 Password page 3.5 SNMP SECTION 3.5.1 SNMP settings page 3.5.2 Trap settings page 3.5.3 Alarm notification page 3.6 SMTP SECTION 3.6.1 SMTP configuration page 3.6.2 Alarm notification page 3.7 LOG SECTION 3.8 UTILITY SECTION 3.9 SAVE SECTION 3.10 USER SECTION 4 SNMP AGENT 4.1 MIB STRUCTURE 4.2 RFC1628 MIB OBJECTS Page 4.3 GE MIB OBJECTS Page 5 NETWORK CONFIGURATION 5.1 ETHERNET CONNECTION 5.2 TCP/IP CONFIGURATION 5.2.1 Static IP address 5.2.2 BOOTP / DHCP 5.3 DNS CONFIGURATION 5.4 HOSTNAME 6 MULTI-SERVER NETWORK SHUTDOWN (RCCMD) 6.1 NETWORK SHUTDOWN WITH RCCMD 6.1.1 Set-up and Configuration of controlled Servers 6.1.2 Configuration of the SNMP/Web adapter 6.1.3 Network configuration 6.1.4 RCCMD Shutdown 6.2 RCCMD CLIENT RELAY 7 SECURITY 7.1 USER AUTHENTICATION & AUTHORISATION 7.1.1 User Management 7.1.2 User class 7.1.3 Selective service activation 7.2 SERVICES (ACCESS METHODS) 7.3 ENCRYPTION 7.3.1 SSH and SFTP Page 7.3.2 SSL Certificates Page 7.4 CUSTOMER RESPONSIBILITY 7.4.1 Physical security 7.4.2 Changing default configuration 7.4.3 User & Service management 7.4.4 Encryption 8 OTHER FUNCTIONALITIES 8.1 SYSTEM TIME 8.2 SERIAL BY-PASS (1-PH/SP VERSION ONLY) 8.3 HTTP BASED MONITORING (1-PH/SP VERSION ONLY) 8.3.1 UPS Load Alert 9 MAINTENANCE 9.1 SOFTWARE UPGRADE 9.2 CONFIGURATION FILE 9.3 LOGS 10 TROUBLESHOOTING 10.1 TROUBLESHOOTING UPS CONNECTION 10.1.1 3-ph SNMP/Web plug-in adapter 10.1.2 1-ph SNMP/Web external adapter 10.2 TROUBLESHOOTING LOCAL CONNECTION 10.3 TROUBLESHOOTING NETWORK CONNECTION 10.4 TROUBLESHOOTING WEB ACCESS 10.5 TROUBLESHOOTING DATE&TIME (NTP) 10.6 TROUBLESHOOTING E-MAIL NOTIFICATION (SMTP) 10.7 TROUBLESHOOTING NETWORK SHUTDOWN 11 CUSTOMER SUPPORT 11.1 FIRST LINE SUPPORT 11.2 INTERNET 11.3 WWW SERVER