SmartWare Software Configuration Guide

4 • Accessing the CLI

 

 

node(cfg)#copy running-config startup-config

Creating an administrator account

Administrators can run the enable command and access additional information within the SmartWare config- uration modes. Therefore administrators can modify the system configuration, as well as view all relevant sys- tem information.

Creating a new administrator account is described in the following procedure:

Mode: Operator execution

Step

Command

Purpose

 

 

 

1

node>enable

Enters administration execution mode

 

 

 

2

node#configure

Enters configuration mode

 

 

 

3

node(cfg)# administrator name password password

Creates a new administrator account

 

 

name and password password

 

 

 

4

node(cfg)#copy running-config startup-config

Permanently stores the new administrator

 

 

account parameters.

 

 

 

Example: Create an administrator account

The following example shows how to add a new administrator account with a login name super and a matching password Gh3*Ke4h.

node>enable

node#configure

node(cfg)#administrator super password Gh3*Ke4h node(cfg)#copy running-config startup-config

Opening a secure configuration session over SSH

A partial implementation of secure shell according RFC 4251, RFC 4252, RFC 4253 and RFC 4254 is pro- vided. It is possible to open a secure configuration session over SSH to a SmartNode.

Note The Web-GUI and the copy tftp function are still unsecure!

The SSH Transport Layer supports the following Algorithms: “ssh-rsa” public key for signing, “diffie-hell- mann-group1-sha1” and “diffie-hellmann-group14-sha1” for key exchange, “3des-cbc”, “aes256-cbc”, “aes192- cbc” and “aes128-cbc” for encryption, “hmac-sha1” and “hmac-md5” for data integrity. For user authentica- tion, only the method “password” is supported. On the Connection Layer, only the request for an interactive command shell is supported.

After the first startup of SmartWare, the RSA server host key is going to be calculated. This calculation is done in the background and with low priority, so that the SmartNode can operate normally. Until the RSA server host key is calculated, which takes several minutes, it is not possible to open SSH sessions. The RSA server host key is calculated only once and always remains the same.

Accessing the SmartWare CLI task list

59

Page 59
Image 59
Patton electronic SmartNode 4110 Series Creating an administrator account, Opening a secure configuration session over SSH