Table of Contents
Advertisement
local console on a network encrypts and changes the password during each successful connection.
You must use the default password to initially set up your server if using a local console on a
network (LAN).
Note: The device authentication requires a unique service tools device ID for each PC that will be
configured with a local console on a network (LAN) connection.
When using Operations Console local console on a network, the configuration wizard adds the
necessary information to the PC. The configuration wizard asks for the service tools device ID, the
service tools device ID password, and an access password.
Note: The access password protects the service tools device ID information (service tools device ID
and password) on the PC.
When establishing a network connection, the Operations Console configuration wizard prompts you
for the access password to access the encrypted service tools device ID and password. The user will
also be prompted for a valid service tools user ID and password.
Note: When using the graphical control panel on systems with a keystick, on a logical partition,
setting the mode to secure may require you to use the LPAR menu on the primary to select
another mode.
User authentication
This security provides assurance as to who is using the service device. All problems related to user
authentication are the same regardless of console type. For more information, see Service tools.
Data privacy
This security provides confidence that the console data can only be read by the intended recipient.
Operations Console local console directly attached to the server uses a physical connection similar to
a twinaxial console or secure network connection for LAN connectivity to protect console data.
Operations Console using a direct connection has the same data privacy of a twinaxial connection. If
the physical connection is secure as discussed under service device authentication, the console data
remains protected. To protect the data, ensure only authorized people enter the computer room.
Operations Console local console on a network uses a secure network connection if the appropriate
cryptographic products are installed (AC3 and CE3). The console session uses the strongest
encryption possible depending on the cryptographic products installed on the iSeries and the PC
running Operations Console. If no cryptographic products are installed, there will be no data
encryption.
Data integrity
This security provides confidence that the console data has not changed en route to the recipient.
Operations Console local console directly attached to the server has the same data integrity as a
twinaxial connection. If the physical connection is secure, the console data remains protected.
Operations Console local console on a network uses a secure network connection if the appropriate
cryptographic products are installed (AC3 and CE3). The console session uses the strongest
encryption possible depending on the cryptographic products installed on the iSeries and the PC
running Operations Console. If no cryptographic products are installed, there will be no data
encryption.
Data encryption
Enhanced authentication and data encryption provide network security for console procedures.
Operations Console local console on a network uses a version of SSL which supports device and
user authentication but without using certificates.
Administration
Operations Console administration allows system administrators to control access to console functions,
14
iSeries: iSeries Access for Windows Operations Console
Advertisement
Table of Contents
