Access Control
Access Control – Telnet/SSH/Web
Microsemi PDS-408G Web Management User Guide Ver. 1.0.1, 03-2019
33
•
Generate
: Generate a new self-signed certificate required for HTTPS Web Server operation.
Please note that a self-signed certificate will cause a web browser warning requesting user
permission to add an exception to the web browser security protection policy, before browsing
to the unit.
•
Upload:
Upload a PEM certificate file. The possible methods are: use a web browser for
uploading a certificate from your local drive, or a URL for uploading a certificate over HTTP,
HTTPS, TFTP, FTP.
5.3
Access Control – Telnet/SSH/Web
Authentication Method Configuration
- Configures which network interface such as telnet, SSH, Web
or a local console should be enabled or disable, and how the remote user us password will be
authenticated. Should it be done locally by the unit or by remote RADIUS/ authentication
server.
Accounting Method Configuration
- Configures if the unit should send Accounting messages to
remote Accounting server whenever a remote user logs in / logs out, and report any CLI
command typed by the user over Console, Telnet or SSH.
Figure 5-3: Access Control – Telnet/SSH/Web
5.3.1
Authentication Method Configuration
Every one of the management interfaces (console, Telnet, SSH, web) has 3 optional authentication
services going from left to right. If the 1
st
remote authentication service cannot be reached then the 2
nd
authentication service will be used instead, and the same for 3
rd
in case both the 1
st
and the 2
nd
authentication services are unreachable.
NOTE:
NOTE – Please refer to document 06-0013-021 for information on how to generate and maintain
Self-Signed, CA-Signed certificates