User manual
Configuration
Basic Configuration
6-8 July 2004 Wide Bank 28 DS3 - Release 2.4
Access Levels (Basic Security)
With basic security, there are three access levels available for CLI users:
admin – The admin user has access to all commands and has the sole authority to grant
others access to the system by adding and deleting user names and passwords. There can
be only one admin user (always named "admin") within the system.
rw (read/write) – An rw user has access to all commands except those for adding users,
deleting users, and setting user levels. The rw users are typically responsible for the day-
to-day operation of the system.
ro (read only) – An ro user is limited to commands that display status and reports. The
ro access level permits technicians to monitor system operation and performance, but
prevents them from altering settings.
Password Protection (Basic Security)
The Wide Bank is shipped with password protection disabled (security off). You may choose to
enable password protection (security on) and set passwords for users to prevent unauthorized
system access.
With security off, login is accomplished simply by pressing the Enter key. No password is
required, and the user is considered to be at the admin level.
If security is on, and passwords have been assigned, login requires that you type a user name
and password when prompted. Users are permitted to modify their own passwords, if desired.
If passwords have not been assigned for users, a user name is required but no password is
requested.
NOTE: With basic security, user names must include from 1 to 10 alphanumeric
characters and must not contain spaces. User names are not case-sensitive when
defined; however, users must log in using lower-case characters.
Passwords can be from 1 to 10 alphanumeric characters and are case-sensitive. Spaces
and special characters are not allowed. Up to 32 characters may be entered but only the
first 10 will be used. Passwords can also be blank (not requested at login).
NOTE: When security is on and the user admin is logged in, turning security off logs off
the user admin. Similarly, turning security on automatically logs in the user admin.
Security integrity is provided by denying access if a user name or password is entered
incorrectly. After three consecutive unsuccessful login attempts, the login prompt will not
appear for 10 seconds, and an SNMP trap (cliLoginFailureTrap) is sent to the Network
Management System (NMS). After the 10-second delay, the prompt wll reappear and another
login attempt can be made. This three-attempt rule applies to both RS-232 and Telnet sessions
but a Telnet session will be disconnected after three unsuccessful attempts, requiring
reconnection after a 10-second delay.