Manualshelf

Administrator Guide

ManualsBrandsDell ManualsComputer equipmentPowerEdge M IO Aggregator
151152153154155156157158159160
15
Security
The Aggregator provides many security features.
This chapter describes several ways to provide access security to the Dell Networking system.
For details about all the commands described in this chapter, refer to the Security chapter in the Dell PowerEdge Command Line
Reference Guide for the M I/O Aggregator .
Supported Modes
Standalone, PMUX, VLT, Stacking
Understanding Banner Settings
This functionality is supported on the Aggregator.
A banner is a note that is displayed when you log in to the system, depending on the privilege level and the command mode into
which the you log in. You can specify dierent banners to be displayed as the message-of-the-day (MOTD), as the opening quote in
EXEC mode, or as the beginning message in EXEC Privilege mode. Setting up a banner enables you to display any important
information or group-level notication that needs to be communicated to all the users of the system.
A login banner message is displayed only in EXEC Privilege mode after entering the enable command followed by the password.
These banners are not displayed to users in EXEC mode. When you connect to a system, the message-of-the-day (MOTD) banner is
displayed rst, followed by the login banner and prompts. After you log in to the system with valid authentication credentials, the
EXEC banner is shown.
You can use the MOTD banner to alert users of critical upcoming events so that they can plan and schedule their accessibility to the
device. You can modify the banner messages depending on the requirements or conditions.
Accessing the I/O Aggregator Using the CMC Console Only
This functionality is supported on the Aggregator.
You can enable the option to access and administer an Aggregator only using the chassis management controller (CMC) interface,
and prevent the usage of the CLI interface of the device to congure and monitor settings. You can congure the restrict-access
session command to disable access of the Aggregator using a Telnet or SSH session; the device is accessible only using the CMC
GUI. You can use the no version of this command to reactivate the Telnet or SSH session capability for the device. Use the show
restrict-access command to view whether the access to a device using Telnet or SSH is disabled or not.
AAA Authentication
Dell Networking OS supports a distributed client/server system implemented through authentication, authorization, and accounting
(AAA) to help secure networks against unauthorized access.
In the Dell Networking implementation, the Dell Networking system acts as a RADIUS or TACACS+ client and sends authentication
requests to a central remote authentication dial-in service (RADIUS) or Terminal access controller access control system plus
(TACACS+) server that contains all user authentication and network service access information.
Security
153