Manualshelf

Troubleshooting guide

ManualsBrandsCisco ManualsComputer equipmentWide Area Virtualization Engine 274
211212213214215216217218219220
1-7
Cisco Wide Area Application Services Configuration Guide
OL-26579-01
Chapter 1 Configuring Administrative Login Authentication, Authorization, and Accounting
Configuring Administrative Login Authentication and Authorization
We strongly recommend that you specify the local method as the last method in your prioritized list of
login authentication and authorization methods. By adhering to this practice, if the specified external
third-party servers (TACACS+, RADIUS, or Windows domain servers) are not reachable, a WAAS
administrator can still log in to a WAAS device through the local authentication and authorization
method.
This section describes how to centrally configure administrative login authentication and contains the
following topics:
Configuring Login Access Control Settings for WAAS Devices, page 1-7
Configuring Remote Authentication Server Settings for WAAS Devices, page 1-12
Enabling Administrative Login Authentication and Authorization Schemes for WAAS Devices,
page 1-26
Configuring Login Access Control Settings for WAAS Devices
This section describes how to centrally configure remote login and access control settings for a WAAS
device or device group and contains the following topics:
Configuring Secure Shell Settings for WAAS Devices, page 1-7
Disabling and Reenabling the Telnet Service for WAAS Devices, page 1-9
Configuring Message of the Day Settings for WAAS Devices, page 1-10
Configuring Exec Timeout Settings for WAAS Devices, page 1-11
Configuring Line Console Carrier Detection for WAAS Devices, page 1-11
Configuring Secure Shell Settings for WAAS Devices
Secure Shell (SSH) consists of a server and a client program. Like Telnet, you can use the client program
to remotely log in to a machine that is running the SSH server, but unlike Telnet, messages transported
between the client and the server are encrypted. The functionality of SSH includes user authentication,
message encryption, and message authentication.
Note By default, the SSH feature is disabled on a WAAS device.
The SSH management window in the WAAS Central Manager GUI allows you to specify the key length,
login grace time, and maximum number of password guesses allowed when logging in to a specific
WAAS device or device group for configuration, monitoring, or troubleshooting purposes.
To centrally enable the SSH feature on a WAAS device or a device group, follow these steps:
Step 1 From the WAAS Central Manager menu, choose Devices > device-name (or Device Groups >
device-group-name).
Step 2 Choose Configure > Network > Console Access > SSH.
The SSH Configuration window appears. (See Figure 1-2.)