Configuring Web Session And Access Settings; Web Login Authentication Using Smart Cards - AudioCodes Mediant 800B User Manual
Media gateway & enterprise session border controller (e-sbc)
Hide thumbs
Also See for Mediant 800B:
- User manual (1338 pages) ,
- Installation and maintenance manual (104 pages) ,
- Hardware installation manual (56 pages)
Table of Contents
Advertisement
User's Manual
For more information on secured Web-based management including TLS certificates, see
''TLS for Remote Device Management'' on page 116.
6.5.2
Configuring Web Session and Access Settings
You can configure security features related to Web user sessions and access.
To configure Web user sessions and access security:
1.
Open the Web Security Settings page (Configuration tab > System menu >
Management > Web Security Settings).
Figure 6-23: Configuring Security Related to Web User Sessions and Access
2.
Web user sessions:
a.
'Password Change Interval': Duration of the validity of Web login passwords.
When the duration expires, the Web user must change the password in order to
log in again.
b.
'User Inactivity Timeout': If the user has not logged into the Web interface within
this defined duration, the status of the user becomes inactive and the user can no
longer access the Web interface. The user can only log in to the Web interface if
its status is changed (to "New" or "Valid") by an Administrator or a Master user.
c.
'Session Timeout': Duration of Web inactivity (i.e., no actions are performed in the
Web interface) of a logged-in user, after which the Web session expires and the
user is automatically logged off the Web interface and needs to log in again to
continue the session. You can also configure the functionality per user in the Web
Users table (see Advanced User Accounts Configuration on page 70), which
overrides this global setting.
3.
Web user access:
a.
'Deny Authentication Timer': Interval (in seconds) that the user needs to wait
before the user can attempt to log in from the same IP address after reaching the
maximum number of failed login attempts (see next step).
b.
'Deny Access On Fail Count': Number of failed login attempts after which the user
is prevented access to the device for a user-defined duration (previous step).
4.
Click Submit.
For a detailed description of the above parameters, see ''Web Parameters'' on page 909.
6.6
Web Login Authentication using Smart Cards
You can enable Web login authentication using certificates from a third-party, common
access card (CAC) with user identification. When a user attempts to access the device
through the Web browser (HTTPS), the device retrieves the Web user's login username
(and other information, if required) from the CAC. The user attempting to access the device
is only required to provide the login password. Typically, a TLS connection is established
between the CAC and the device's Web interface, and a RADIUS server is implemented to
Version 7.0
75
Mediant 800B Gateway and E- SBC
6. Web-Based Management
Advertisement
Table of Contents
