Table of Contents
Advertisement
Operation
Security Overview
The %Sn command allows you to configure the modem for a single type of security or for a valid
combination of security types. Depending on your preference, you will need to configure the
modem properly to enable the desired options for each type of security. Consult the special
considerations below and refer to
combinations for:
1. SteadFast Security (uses a cell password stored in cell 0 in the modem)
2. On-line Password Security (uses cell passwords stored in cells 0-9 in the modem)
3. RADIUS Authentication (uses RADIUS passwords stored in the RADIUS server)
4. AES Encryption Security (uses encryption key stored in the modem)
Secure Access Modem Authentication (uses public/private keys stored in the modem)
5.
Note
Anytime security features are required in your application, it is strongly recommended to disable the re-
mote configuration write access for both modems by entering the
Note
RADIUS Security requires a GDC V.34 modem optioned at the factory for RADIUS. A SpectraComm
Manager (SCM) card with RADIUS enabled, and a customer-supplied RADIUS server are also required.
Refer to the SCM Operation Manual, Appendix B, to determine if your system is RADIUS ready.
Note
AES Encryption requires two factory-optioned SpectraComm V.34 modems. SAM Authentication requires
one factory-optioned SpectraComm V.34 modem and an authentication server.
Special Considerations
•
With Steadfast Security, both the originating modem and the answering modem must have
SteadFast enabled, and must be configured with the same password stored in cell 0. As part of
the handshake sequence, the answering modem verifies that the password stored in its cell 0
is the same as the password stored in cell 0 of the answering modem. This ensures that
unauthorized users are denied a connection to the modem and the network.
•
When both SteadFast Security and Online Security are enabled, the SteadFast Security
sequence occurs first, during the modem handshake, without user intervention. The Online
Security sequence can then proceed with the cell password prompt. It is important to note that
if callback is also desired, the modem should be configured for Online Callback and not
SteadFast Callback. Otherwise, the callback function will be blocked.
•
If RADIUS Security is enabled, cell passwords stored in the modem will allow access if the
modem does not receive password authentication from the RADIUS server after 60 seconds. If
this is a desirable security arrangement for your network, ensure that cell passwords stored in
the modem are created with all uppercase characters.
•
With RADIUS Security, if cell passwords are not stored in the modem, the modem will
disconnect a caller when the RADIUS server(s) or the SCM do not respond to the modem after
120 seconds. For more information, refer to the SCM Card Operation Manual, Appendix B.
•
When creating a SteadFast Security cell password, both modem handshake modes must be V.34
(&H1), V.32 bis (&H3) or V.32 (&H5).
060R122-000
Issue 15
Table 3-3
for the %Sn commands which enable and set security
SpectraComm Dual V.34 Modem
Installation and Operation
Security Overview
*R1
command at both modems.
3-7
Advertisement
Table of Contents
