Manualshelf

User Guide

ManualsBrandsEmerson ManualsInfrastructure ManagementEmerson Avocent ACS 6000 Advanced Console Server
21222324252627282930
Accessing the Console Server via the Web Manager.....23
4. Under the Serial Devices heading, select whether port access is controlled by user group
authorization or configure port access settings to apply to all users.
5. Under Bootp Configuration retrieval, enable or disable the service.
6. Select the checkbox for Custom, Moderate, Open or Secure under the Security Profile
heading.
7. Enable/disable SSH authentication via username/password.
8. Click Save.
DSView software security
You can also configure DSView software security settings. When the console server is managed by
the DSView software, the DSView server will supply the certificate to the console server. Under
normal conditions, the DSView software will manage the certificate to clear and replace it with a
new certificate as needed. If communication with the DSView software is lost, the DSView server
will be unable to clear the certificate and the console server cannot be used. Click the Clear
DSView Certificate button to configure the console server in Trust All mode.
To configure DSView software security settings:
1. Select System - Security - DSView.
2. Click the Allow appliance to be managed by DSView checkbox and click Save.
FIPS module
The console server has embedded the FIPS-capable OpenSSL that is the combination of the FIPS
Object Module (the FIPS 140-2 validated module) along with a FIPS-compatible OpenSSL (it is a
version of the OpenSSL product that is designed for compatibility with the FIPS Object Module
API).
If an administrator enables the FIPS module, the console server will use the FIPS Object Module to
perform encryption operations. The FIPS module is disabled by default.
When the FIPS module is enabled, the Monitoring - FIPS mode page will show what service
(SSHv2, HTTPS, SNMPv3 and ADSAP2) is in FIPS mode. All security functions and cryptographic
algorithms used by the service are performed in FIPS 140-2 Approved mode.
To enable the FIPS module:
1. Select System - Security - FIPS140.
2. Check the box to Enable the FIPS140-2 Module and click Save.
The console server will automatically reboot. During the reboot, the console server will erase
SSHkeys, update the configuration of HTTPD, SSHD, ADSAP2d and SNMPD files and test the