Introduction, 0 about the 9145e software, 1 management access – CANOGA PERKINS 9145E NID Software Version 3.1 User Manual

Page 16: 2 management security features, Chapter 1. introduction, About the 9145e software, Management access, Management security features, Chapter 1 introduction

Advertising
background image

Introduction

9145E NID Software User’s Manual

Management Access

1

Chapter 1

Introduction

1.0 About the 9145E Software

Building on the industry-leading 10/100/1G 9145 Network Interface Device (NID), the 9145E
adds dual mode UTP/SFP ports, a multi-purpose network protection link/NNI Performance
Measuring Port, and an Ethernet OOB port to provide out-of-band management. Its larger, faster
processor allows advanced features including per VLAN traffic statistics and full 802.1ag CFM
support in future releases.

1.1 Management Access

The 9145E can be managed through any of several access ports.

VT-100 Terminal

The VT-100 terminal is used to manage the NID locally via the EIA-232 serial

port, primarily to perform initial configurations on the NID before it is connected to the network..

Telnet

Once the 9145E has been connected to your network, it can be accessed using Telnet.

All commands and functions are available using standard Telnet software.

SNMP

All commands and functions are also available using an SNMP manager. The 9145E

supports SNMP v1/v2c/v3 and many standard MIBs as well as CP proprietary MIBs.

1.2 Management Security Features

The 9145E has comprehensive management access security features, including SNMPv3
authorization, RADIUS, password formatting, and user access controls. You can set values and
options within the software that will work with the security protocols on your network. The four
network security protocols listed below are supported. In addition, the 9145E provides options to
define strong passwords, independent of the security protocols.

SNMPv3

Provides authentication and encryption of management traffic across a network.

Remote Access Dial In User Security (RADIUS)

The RADIUS server maintains user account

information. At login, the 9145E-MP queries the server which authenticates the username and
password and sends a message to the 9145E-MP to allow the login. The RADIUS server can
also be set up to require additional authentication information before accepting the user. If the
username or password is not valid, the RADIUS server sends a message to the 9145E-MP to
disallow the login and reject the user.

Secure Shell version 2 (SSH-2)

SSH-2 provides authentication and encryption for a secure

remote Telnet connection. SSH can be configured to provide unique User Accounts.

Advertising
Popular Brands
Popular manuals