Using authentication and encryption – Avocent CPS1610 CPS User Manual

Page 37

Advertising
background image

Chapter 3: Operations

31

The ADMIN level is equivalent to PALL, USER, SMON, PCON and BREAK

A user’s access level can be used for preemption. For example, assume User A

is connected to a port. User B tries to connect to the same port. If User B has an

access level equal to or greater than User A’s access level, then User B will be

given the option of preempting User A.

When using DSView software, there are two access rights levels: user and

administrator. DSView users with administrator level rights are given all CPS

access rights: PCON, SCON, SMON, USER, BREAK and PALL. DSView users

with user level rights can access the serial device to which they are connected.

They also have BREAK access for the port they are accessing.

To manage a user’s access rights/levels:

1. To confi gure a user’s access rights/level, issue a User Add command,

using the Access parameter to specify the rights or a level.

USER ADD <username> ACCESS=<access>

2.

To change a user’s access rights/level, issue a User Set command, using
the Access parameter to specify the rights or a level.

USER SET <username> ACCESS=<access>

3.

To display the access rights and level for one or all users, issue a Show
User command.

SHOW USER <username>|ALL

For more information, see Managing Users in this chapter, plus User Add

command, User Set command and Show User command in Chapter 5.

Using Authentication and Encryption

The CPS supports four methods for authenticating users: DS, RADIUS, local

and none. Multiple connection and authentication methods may operate

concurrently. The authentication method can affect the type of encryption that

will be used. For more information, see Encryption in this chapter. By default,

authentication is done at the local CPS user database and no encryption is used.

DS authentication

DS authentication uses an Avocent DS authentication service (DSAuth) to

authenticate CPS users. Encryption is automatically enabled. You must specify

either the IP address of a primary DS authentication server and optionally, the

IP address of a secondary DS authentication server, or you must indicate that

any DS authentication server may be used. DSView clients always use the DS

authentication server. For more information, see the DSView Installer/User Guide.

Advertising
Popular Brands
Popular manuals