Table of Contents
Advertisement
Chapter 1: Product description
Identity-based user accounts
The PTP 650 web-based interface provides two methods of authenticating users:
•
Role-based user authentication allows the user, on entry of a valid password, to access all
configuration capabilities and controls. This is the default method.
•
Identity-based user authentication supports up to 10 users with individual usernames and
passwords.
When identity-based user accounts are enabled, a security officer can define from one to ten user
accounts, each of which may have one of the three possible roles:
•
Security officer.
•
System administrator.
•
Read only.
Identity-based user accounts are enabled in the Local User Accounts page of the web-based
interface.
Password complexity
PTP 650 allows a network operator to enforce a configurable policy for password complexity.
Password complexity configuration additionally allows a pre-determined best practice
configuration to be set.
SNMP control of passwords
PTP 650 allows the role-based and identity-based passwords for the web-based interface to be
updated using the proprietary SNMP MIB. This capability is controlled by the SNMP Control of
Passwords, and is disabled by default.
SNMP Control of Passwords can be used together with SNMPv3 to provide a secure means to
update passwords from a central network manager. However, password complexity rules are not
applied.
RADIUS authentication
PTP 650 supports remote authentication for users of the web interface using the Remote
Authentication Dial-In User Service (RADIUS) with one of the following authentication methods:
•
Challenge Handshake Authentication Protocol (CHAP)
•
Microsoft CHAP Version 2 (MS-CHAPv2)
PTP 650 supports connections to primary and secondary RADIUS servers. The RADIUS interface is
configured through the RADIUS Authentication page of the web-based interfaces.
Page
1-27
System management
Advertisement
Table of Contents
