Specifications
Managing Access Server Security
23-38
Specifying Other Security Features
Introduction
This section describes various security features on interactive ports.
Specifying Dedicated Service for LAT or Telnet Resources
The results of specifying a dedicated service on a port are as follows:
• The device on the port appears hard-wired to a specific resource.
• The access server establishes only one session for the port.
• Local mode cannot be entered on that port, although login and service
passwords can still be defined for the user on that port.
• The access server automatically enables AUTOCONNECT for that port.
AUTOCONNECT is not cleared when the dedicated service is cleared.
Kerberos Requirement
For Kerberos, the server name must be unique.
When you specify any LAT or Telnet resource to be a dedicated service, the host
or service name, node name, and port name are limited to 16 characters each.
LAT Protocol Requirement
To set a LAT service as a dedicated service, the default protocol must be set to
LAT. The following shows how to enable the LAT service, FILES, as the dedicated
service on port 5:
Local> CHANGE PORT 5 DEDICATED FILES
You can specify that the connection be made to a particular node and/or port
name of the LAT service. The following shows how to specify that port 5 connects
to port JAMES on node MARKETING for service FILES:
Local> CHANGE PORT 5 DEDICATED FILES NODE MARKETING
DESTINATION JAMES
Telnet Requirement
To set an Internet host as a dedicated service, the default protocol must be set to
TELNET. You can use the host’s Internet address, domain name, or relative
domain name if the host is defined in a name server; however, you cannot use the
entire domain name if the name is more than 16 characters, including the dots.