Table of Contents
Advertisement
Server Security
Access to Systems Other Than the CiscoWorks Server
Access Control
Note
User Guide for CiscoWorks Common Services
A-6
The access details for Solaris and Windows are:
•
UNIX Systems—Systems used by the CiscoWorks Server as remote sources
of device information for importing into the Resource Manager Essentials
Inventory Manager application must allow the user casuser to perform remote
shell operations on the user who owns the device information.
Windows Systems—Systems used by the CiscoWorks Server as remote
•
sources of device information for importing into the Resource Manager
Essentials Inventory Manager application, must allow the user casuser to
perform remote shell operations on the user who owns the device information.
The access control details are:
UNIX Systems—The UNIX user casuser is a user ID that is not typically
•
enabled for login.
Using this user ID as the user ID under which to install the CiscoWorks
Server software simplifies the installation process and ensures limited access
to the CiscoWorks Server. This is because casuser is not a valid login ID as
there is no password assigned to it.
However, the casuser user on UNIX systems is capable of performing system
and possibly network-wide operations that could be harmful to the system or
the network.
Windows Systems—The user casuser, created as part of the install process,
•
has no special permissions or considerations on a system so it is a "safe" user
ID under which to execute the CiscoWorks Server and application code. The
localsystem user can perform harmful system operations.
Therefore, consider that by using the localsystem user ID to run some of the
backend processes, the localsystem user ID cannot perform network
operations.
The system administrator should review and adopt the security recommendations
in
"System Administrator-Imposed Security" section on page
Appendix A
Understanding CiscoWorks Security
A-7.
78-16571-01
Advertisement
Table of Contents
Troubleshooting
