Bay Networks 6300 Supplement Manual page 255
Supplement to the remote annex administrator’s guide for unix
Hide thumbs
Also See for 6300:
- Hardware installation manual (138 pages) ,
- Quick start manual (60 pages) ,
- Ordering manual (2 pages)
Table of Contents
Advertisement
Book A
Remote Annex 6300 Supplement to the Remote Annex Administrator's Guide for UNIX
If ACP is down, the RA 6300 acts as follows:
•
First, the RA 6300 prompts for the password specified in the
vcli_password parameter (see
Password Protection
•
If the vcli_password parameter is not set ("<unset>") and the
vcli_security parameter is set to N, the RA 6300 prompts for the
password specified by the password parameter.
•
If the password parameter is not set ("<unset>"), the RA 6300
fails the VCLI attempt.
•
If the vcli_security parameter is set to N and the vcli_password
parameter is set ("<set>"), the RA 6300 prompts for the
password specified in vcli_password.
Connection Security
You can authorize or deny IP or CLI access to specific hosts, host ports,
or networks for a particular user, group, time of day, or protocol in use.
1.
Define a security server using the pref_secure1_host,
pref_secure2_host, or security_broadcast parameter (see
Configuring the Security Server
2.
Set the connect_security parameter to Y, so that the RA 6300
uses ACP on a CLI connection (via telnet and/or rlogin).
3.
Configure the acp_restrict file on the security server (see
Limiting Access to Hosts via acp_restrict
For CLI telnet or rlogin connections, ACP checks acp_restrict to
see whether or not access should be granted to the user. For SLIP
and IP over PPP connections, the acp_restrict file controls access
by creating filters based on your input.
4.
(Optional) Configure encryption for security messages (see
Encrypting Security Messages
Chapter 15
Implementing Local Virtual CLI
on page 15-218).
on page 15-230).
on page 15-232).
Using RA 6300 Security
on page 15-269).
A-227
Advertisement
Table of Contents
