System information

OnBoard Security Profiles
16 AlterPath OnBoard Administrator’s Guide
OnBoard Security Profiles
An important part of configuring the OnBoard is selecting a security profile
that helps enforce the security policies of the organization where the OnBoard
is being used.
Each OnBoard has a security profile defined during initial configuration. The
type of security profile selected by the OnBoard administrator controls the
following:
Which services are turned on
Whether a default authentication is specified for all subsequently-
configured devices
Whether authorizations are checked (bypassing authorizations is not
available in any of the default security profiles, but it can be selected in a
custom security profile)
The administrative user defines the security profile during initial
configuration. The security profile can be changed later. Services can also be
turned on and off independently from the security profile. For more details,
see “OnBoard Services” on page 21.
The following tables describes the services that are enabled and disabled in
the three types of preconfigured security profiles.
Table 1-7 describes the “Moderate” security profile.
Table 1-7: Moderate Security Profile Services/ Features
Enabled Services/Features Disabled Services/Features
HTTP RPC
HTTPS SNMP v1
ICMP SNMP v2c
IPSec SNMP v3
PPTP Telnet to OnBoard
SSH v1
SSH v2