Use the Application/Account Management window to manage security-related settings for the system.
On the SBC main screen, navigate to Administration > Users and Application Management > Application Management.
The Application Management window opens.
This section provides you an option to disable accounts. Enter the following fields and click Save:
You can configure the options for sessions in this section. You can set the number of sessions allowed for each user along with the time for each session to be alive.
Enter the following fields and click Save:
Force Session Timeout: The application closes once the session time expires.
This section provides an option to configure your own banner which would displays on the Login screen of the EMA for all your users. Follow the steps below and click Save:
Once the changes are saved, the Banner text will displays on the login screen.
This section provides an option to configure passwords for users. It also specifies the criteria to establish a good password to access the EMA. Enter the following fields and click Save:
Use Separate Password Rules for Administrators – If checked, separate password rules can be configured for Administrators and other types of users. The password rules are configured based on the following parameters:
Parameter | Range | Default/Required | Description |
---|---|---|---|
Prevent Reuse of Last | NA | 4 passwords | This field prevents the user from re-using the last few passwords. |
Min Length | 8-24 characters | 8 characters (required) | Specifies the minimum number of characters in a password. |
Min Uppercase Characters | NA | 1 character (required) | Specifies the minimum number of uppercase characters that can be used to create the password. |
Min Special Characters | NA | 1 character (required) | Specifies the minimum number of special characters that are allowed in a password. |
Min Digits | NA | 1 digit (required) | Specifies the minimum number of digits that are allowed in a password. |
Max Consecutive Repeats of Character | NA | 3 repeats (max) | Specifies the number of times a character can be reused in a password. |
Min Number of Characters Different than Previous Password | NA | 4 character (min) | Specifies the number of characters that should be different from the last password created. |
Password Expiration Parameters
Parameter Name | Range | Default / Required |
---|---|---|
Expire Password after | 30-180 days | 90 days |
Warn User of Expiring Password | 3-14 days | 12 days |
To specify a word that should be disallowed from passwords, click New Disallowed Password Word.
The Create New Disallowed Password Word frame opens where you can enter a word of up to 23 characters.
To edit a disallowed password:
To copy a disallowed password:
To delete a disallowed password:
The SBC SSH public key authentication feature allows application management users to provision, delete, and display up to five SSH public keys for the purpose of accessing CLI (port 22), NETCONF(port 2022) and SFTP (port 2024).
This feature provides a user interface through which application management users can add, delete, and display authorized client public keys. Up to five keys are supported for each configured user.
Click the Allow Public Key Authentication for CLI, NETCONF and SFTP Access check box in the Configure Accounts frame (shown above) to enable SSH Public Key Authentication.