![Aten CN8000A [67/203] Security](/img/pdf.png)
Aten CN8000A [67/203] Security
![Aten CN8000A [67/203] Security](/views2/1977360/page67/bg43.png)
5. Administration
53
Security
The Security page controls access to the CN8000A.
Login Failures
For increased security, the Login Failures section allows administrators to set
policies governing what happens when a user fails to log in successfully.
To set the Login Failures policies, check the Enable checkbox (the default is
for Login Failures to be enabled). The meanings of the entries are explained in
the table below:
Note: If you don’t enable Login Failures, users can attempt to login an
unlimited number of times with no restrictions. For security purposes,
we recommend that you enable this function and enable the lockout
policies.
Entry Explanation
Allowed Sets the number of consecutive failed log in attempts that are
permitted from a remote computer. The default is 5 times.
Timeout Sets the amount of time a remote computer must wait before
attempting to log in again after it has exceeded the number of
allowed failures. The default is 3 minutes.
Lock Client PC If this is enabled, after the allowed number of failures have been
exceeded, the computer attempting to log in is automatically
locked out. No log ins from that computer will be accepted. The
default is enabled.
Note: This function relates to the client computer’s IP. If the IP is
changed, the computer will no longer be locked out.
Lock Account If this is enabled, after the allowed number of failures have been
exceeded, the user attempting to log in is automatically locked
out. No logins from the username and password that have failed
will be accepted. The default is enabled.
Содержание
- Cn8000a 1
- Compliance statements 2
- Online registration 4
- Telephone support 4
- User information 4
- User notice 4
- For information about all aten products and how they can help you connect without limits visit aten on the web or contact an aten authorized reseller visit aten on the web for a list of locations and telephone numbers 5
- Product information 5
- Package contents 6
- Browser login 7
- Contents 7
- Hardware setup 7
- Introduction 7
- Osd operation 7
- Administration 8
- The winclient viewer 9
- Ldap server configuration 10
- The javaclient viewer 10
- The log server 10
- Appendix 11
- About this manual 13
- Conventions 14
- Terminology 14
- Chapter 1 15
- Introduction 15
- Overview 15
- Features and benefits 17
- The features and benefits provided by a cn8000a deployment are described in the following table 17
- Features benefits 18
- Features benefits 19
- Cables 20
- Servers 20
- System requirements 20
- Only the following non interlaced video signals are supported 21
- Browsers 22
- Operating systems 22
- See mac systems page 178 for further information regarding safari 22
- Supported operating systems for remote user computers that log into the cn8000a include windows xp and higher and other systems capable of running sun s java runtime environment jre 6 update 3 or higher linux mac sun etc 22
- Supported operating systems for servers that connect to the cn8000a are shown in the table below 22
- The browsers and the versions shown in the table below have been tested to support cn8000a login for the users 22
- 2 3 4 5 6 23
- Components 23
- Front view 23
- 2 3 4 5 24
- Rear view 24
- Custom console cable 25
- Example you can use a ps 2 keyboard with a usb mouse 25
- Introduction 25
- Note you can use any combination of keyboard and mouse connections for 25
- This page intentionally left blank 26
- Chapter 2 27
- Hardware setup 27
- Mounting 27
- Rack mount 27
- Din rail mount 28
- Installation 29
- Hardware setup 31
- Cn8000a user manual 32
- Chapter 3 33
- Osd operation 33
- Osd overview 33
- Osd navigation 34
- Device information 35
- The device information page provides information about thecn8000a s status 35
- Set ip address 36
- Disable dev authentication 37
- Reboot 37
- Reset certificate 37
- Reset default values 37
- This page intentionally left blank 38
- Browser login 39
- Chapter 4 39
- Logging in 39
- Interactive display panel 41
- Main webpage elements 41
- Sidebar 41
- Sidebar submenu 42
- Viewer 43
- This page intentionally left blank 44
- Administration 45
- Chapter 5 45
- Introduction 45
- Basic settings 46
- User management 46
- An explanation of the profile items is given in the table below 47
- The reset button clears all the information shown in the right panel 48
- When you have made all your changes click apply 48
- Sessions 49
- Maintenance 50
- Upgrade main firmware 50
- Backup 51
- Restore 51
- Ping host 53
- Advanced settings 54
- An explanation of each of the fields is given in the table below 54
- Device information 54
- The device information page is the first of the advanced settings pages and provides information about the cn8000a s status 54
- This section provides 7 sub menus device information network anms security console management date time and customization used to configure device settings for the cn8000a 54
- Ip installer 55
- Network 55
- An explanation of the fields is given in the table below 56
- If port numbers are not set to the default value any user trying to access the cn8000a from a windows client ap java client ap third party ssh or telnet viewer or via web browser will need to specify the new port number for access 56
- Note 1 valid entries for all of the service ports are from 1 65535 56
- Service ports 56
- Service ports if a firewall is being used the administrator can specify the port numbers that the firewall will allow and set the firewall accordingly if a port other than the default is set users must specify the port number as part of the ip address when they login from a winclient or java client ap program if not an invalid port number or no port number is specified the cn8000a will not be found 56
- The service ports cannot have the same value you must set a different value for each one 56
- Ipv4 settings 57
- Ipv6 settings 58
- Finishing up 59
- Network transfer rate 59
- Anms event destination 60
- Smtp settings 60
- Log server 61
- Snmp server 61
- Syslog server 62
- Anms authentication 63
- Disable local authentication 63
- Radius settings 63
- Characters are comma delimited 64
- Note 1 the characters are not case sensitive capitals or lower case work equally well 64
- On the radius server set the access rights for each user according to the information in the table below 64
- Radius examples radius server access rights examples are given in the table below 64
- Ad ldap settings 65
- To allow authentication and authorization for the cn8000a via ldap ldaps refer to the information in the table below 65
- To manually find out the attribute name of the cn8000a ikvm31 userprofile go to ping host under maintenance and execute a tc get command see ping host page 39 for details 65
- Cc management settings 66
- To allow authorization for the cn8000a through a cc control center server check enable and fill in the cc server s ip address and the port that it listens on in the appropriate fields 66
- Login failures 67
- Login failures for increased security the login failures section allows administrators to set policies governing what happens when a user fails to log in successfully 67
- Note if you don t enable login failures users can attempt to login an unlimited number of times with no restrictions for security purposes we recommend that you enable this function and enable the lockout policies 67
- Security 67
- The security page controls access to the cn8000a 67
- To set the login failures policies check the enable checkbox the default is for login failures to be enabled the meanings of the entries are explained in the table below 67
- Filter 68
- Adding filters 69
- Account policy 71
- Account policy in the account policy section system administrators can set policies governing usernames and passwords 71
- The meanings of the account policy entries are explained in the table below 71
- Encryption 72
- Working mode 73
- Private certificate 74
- Administration 75
- Certificate signing request 75
- Certificate signing request the certificate signing request csr section provides an automated way of obtaining and installing a ca signed ssl server certificate 75
- Click create csr the following dialog box appears 75
- Fill in the form with entries that are valid for your site according to the example information in the following table 75
- Information example 75
- To perform this operation do the following 75
- Console management 77
- Serial console 80
- Date time 82
- Time zone 82
- Network time 83
- Customization 84
- Preferences 86
- Settings 86
- User preferences 86
- Password 87
- Exit macro 88
- Open power management 88
- Remote console 88
- Telnet 88
- This page intentionally left blank 90
- Chapter 6 91
- Starting up 91
- The winclient viewer 91
- Navigation 92
- The winclient control panel 93
- Control panel functions 94
- Note clicking the t button at the top right of the windows that appear for the control panel functions brings up a slider bar to adjust the transparency of the dialog box after making your adjustment click anywhere in the dialog box to dismiss the slider 94
- The control panel functions are described in the table below 94
- Hotkeys 97
- Macros 97
- An explanation of the hotkey actions is given in the table below 98
- User macros 99
- Running macros 101
- Search 103
- System macros 103
- The meanings of the adjustment options are given in the table below 106
- The video settings dialog box allows you to adjust the placement and picture quality of the remote screen display on your monitor click advanced to view all the video settings 106
- Video settings 106
- Gamma adjustment 108
- The button bar 109
- The button bar the buttons on the button bar are toggles their actions are described in the table below 109
- The message board 109
- To alleviate the possibility of access conflicts resulting from multiple user logins the cn8000a provides a message board that allows users to communicate with each other 109
- Compose panel 110
- Message display panel 110
- User list panel 110
- Virtual media 111
- Virtual media icons 111
- Virtual media redirection 111
- Smart card reader 114
- The zoom icon controls the zoom factor for the remote view window settings are as follows 115
- The on screen keyboard 116
- To display hide the expanded keyboard keys click the arrow to the right of the language list arrow 117
- Automatic mouse synchronization dynasync 118
- Mouse dynasync mode 118
- Mouse pointer type 118
- Mac considerations 119
- Manual mouse synchronization 119
- Clicking the customize control panel icon brings up a dialog box that allows you to configure the items that appear on the control panel as well as its graphical settings 120
- Customize control panel 120
- The dialog box is organized into six main sections as described in the table below 120
- Power management 122
- Admin utility 123
- This page intentionally left blank 124
- Chapter 7 125
- Introduction 125
- The javaclient viewer 125
- Navigation 126
- The javaclient control panel 127
- Control panel functions 128
- The control panel functions are described in the table below 128
- Hotkeys 130
- Macros 130
- System macros 131
- User macros 131
- Search 132
- Video settings 132
- Message board 133
- The buttons on the button bar are toggles their actions are described in the table below 133
- The cn8000a supports multiple user logins which can possibly give rise to access conflicts to alleviate this problem a message board feature similar to an internet chat program allows users to communicate with each other 133
- Virtual media 135
- Mouse pointer type 136
- The on screen keyboard 136
- Control panel configuration 137
- Mouse dynasync mode 137
- This page intentionally left blank 138
- Chapter 8 139
- Installation 139
- The log server 139
- Starting up 140
- Configure 141
- The menu bar 141
- A description of the fields is given in the table below 142
- Events 142
- Fill in or modify the fields then click ok to finish 142
- Search 142
- Search allows you to search for events containing specific words or strings when you access this function a screen similar to the one below appears 142
- The events menu has two items search and maintenance 142
- A description of the items is given in the table below 143
- Maintenance 143
- Maintenance this function allows the administrator to perform manual maintenance of the database if the cn8000a misses the automatic maintenance 143
- Options 144
- Overview 145
- The log server main screen 145
- The list panel 146
- The list panel contains six fields 146
- The lower panel displays tick information for the currently selected cn8000a note that if the installation contains more than one switch even though a switch isn t currently selected if its recording checkbox is checked the log server records its tick information and keeps it in its database 146
- The tick panel 146
- Chapter 9 147
- Install the windows 2003 support tools 147
- Introduction 147
- Ldap server configuration 147
- Create a start menu shortcut entry 148
- Install the active directory schema snap in 148
- Creating a new attribute 149
- Extend and update the active directory schema 149
- Extending the object class with the new attribute 150
- Editing active directory users 152
- Openldap 155
- Openldap server installation 155
- Openldap server configuration 157
- Starting the openldap server 158
- Customizing the openldap schema 159
- Ldap data structure 160
- Ldap dit design and ldif file 160
- Dit creation 161
- Using the new schema 163
- This page intentionally left blank 164
- Appendix 165
- General 165
- Safety instructions 165
- Rack mounting 167
- Consignes de sécurité 168
- Général 168
- Montage sur bâti 171
- International 172
- North america 172
- Technical support 172
- First time browser login 173
- Ip address determination 173
- Ip installer 173
- Device list 174
- Network adapter 174
- Network device ip installer 174
- Protocol 174
- Set ip 174
- Ap windows client 175
- Browser 175
- Link local ipv6 address 176
- Ipv6 stateless autoconfiguration 177
- Port forwarding 178
- Keyboard emulation 179
- Note when using key combinations press and release the first key ctrl 179
- The pc compatible 101 104 key keyboard can emulate the functions of the sun and mac keyboards the emulation mappings are listed in the table below 179
- Then press and release the activation key 179
- Basic setup 180
- Ppp modem operation 180
- Connection setup example windows xp 181
- Overview 182
- Trusted certificates 182
- Installing the certificate 183
- Certificate trusted 184
- Mismatch considerations 185
- Examples 186
- Importing the files 186
- Self signed private certificates 186
- General operation 187
- Troubleshooting 187
- Windows 189
- For mouse synchronization problems see macros page 116 mouse dynasync mode page 123 and sun linux page 180 for other problems see the table below 190
- Sun systems 191
- These solutions work for most common sun vga cards if using them fails 191
- To resolve the problem consult the sun vga card s manual 191
- Mac systems 192
- The log server 192
- Additional mouse synchronization procedures 193
- Windows 193
- Sun linux 194
- Java applet viewer java client ap 195
- Supported kvm switches 195
- Virtual media support 195
- Winclient activex viewer winclient ap 195
- Administrator login failure 196
- Power over the net 197
- Specifications 197
- About sphd connectors 198
- Aten standard warranty policy 199
- This page intentionally left blank 200
Похожие устройства
- Aten KA8270 Краткое руководство по установке
- Aten KA8270 Руководство пользователя
- HEC R1 43 S FHD (DH1U8CD03RU) Руководство пользователя
- Aten KN2116VA Краткое руководство по установке
- Aten KN2116VA Руководство пользователя
- Aten KN2132VA Краткое руководство по установке
- Aten KN2132VA Руководство пользователя
- Aten KN4116VA Краткое руководство по установке
- Aten KN4116VA Руководство пользователя
- Aten KN4132VA Краткое руководство по установке
- Aten KN4132VA Руководство пользователя
- Aten KX9970T Краткое руководство по установке
- Aten KX9970T Руководство пользовател
- Aten KX9970R Краткое руководство по установке
- Aten KX9970R Руководство пользователя
- Aten KX9970FT Краткое руководство по установке
- Aten KX9970FT Руководство пользователя
- Aten KX9970FR Краткое руководство по установке
- Aten KX9970FR Руководство пользователя
- Aten KE6910ATC Руководство пользователя