Avocent CPS1610 CPS Switch User Manual


  Open as PDF
of 98
 
66 CPS Installer/User Guide
Access right: SCON; Access level: AA
Syntax
SERVER SECURITY [AUTHENTICATION=<auth_mode>]
[ENCRYPT=<encrypt>] [DSAUTH=<dsauth>] [DSCLEAR]
[LOCKOUT=<hours>]
Server Security Command Parameters
Parameter Description
AUTHENTICATION= Authentication mode. Multiple values may be specifi ed, separated
<auth_mode> by commas. Valid values are:
DS - Use a DS authentication server and enable encryption (if not
specifi ed, Encrypt=128,3DES,DES). A value for DSAUTH=
must be specifi ed.
LOCAL - Use the internal CPS user database to authenticate users.
RADIUS - Use the previously defi ned RADIUS server(s) to
authenticate users.
NONE - Do not authenticate users. This mode cannot be used
when SSH access is enabled, and it cannot be combined with other
authentication modes.
Default = LOCAL
ENCRYPT=<encrypt> Encryption algorithm to use. Multiple values may be specifi ed,
separated by commas. Valid values are:
DES Single DES encryption.
3DES Triple DES encryption.
128 128-bit encryption.
NONE No encryption.
SSH SSH2 encryption.
Default = 128,3DES,DES if Authentication=DS; otherwise, NONE
DSAUTH=<dsauth> DS authentication server to use. A primary server and a secondary
server may be specifi ed, separated by commas or you may indicate
that any DS authentication server should be used. Valid values are:
<primary_ip> - IP address of the primary DS authentication server.
<secondary_ip> - IP address of secondary DS authentication server.
ANY - Use any DS authentication server.
DSCLEAR Clears any stored DS appliance credentials and any stored DS
authentication server credentials.
LOCKOUT=<hours> Enables or disables Security Lock-out. To enable, specify the number
of hours in the lock-out period, in the range 1-99. To disable, specify a
Ø value.
Default = Ø (disabled)
Examples
The following command specifies that the CPS user database will be used to
authenticate users, and the strongest encryption negotiated between triple DES
and 128-bit will be used.
> server security authentication=local encrypt=3des,128
 previous next