Versions Compared

Old Version 3

changes.mady.by.user Ribbon Communications

Saved on

compared with

New Version Current

changes.mady.by.user Ribbon Communications

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Add_workflow_for_techpubs
AUTH1UserResourceIdentifier{userKey=8a00a02355cd1c2f0155cd26cd5909df, userName='null'}
JIRAIDAUTHSBX-119585
REV5UserResourceIdentifier{userKey=8a00a02355cd1c2f0155cd26cd5909df, userName='null'}
REV6UserResourceIdentifier{userKey=8a00a02355cd1c2f0155cd26cd5909df, userName='null'}
REV3UserResourceIdentifier{userKey=8a00a02355cd1c2f0155cd26cb870607, userName='null'}
REV1UserResourceIdentifier{userKey=8a00a02355cd1c2f0155cd26cb870607, userName='null'}

Overview

Excerpt Include
AIDE Intrusion Detection Tool
AIDE Intrusion Detection Tool
nopaneltrue

Command Syntax

Code Block
% set system admin <system name> intrusionDetection 
	exceptionList <token | list>
	intrusionDetectionState <disabled | enabled>
% delete system admin <system name> intrusionDetection <token | [leave empty to delete list]>


Command Parameters

ParameterLength/RangeDescriptionM/O

intrusionDetection

N/A

Use this object to enable the Advanced Intrusion Detection Environment (AIDE) tool on the SBC and specify the exception list sent to the sonusSystemSecurityReportNotification trap trap.

AIDE is a file and directory integrity checker that helps in keeping track of file properties, such as inode, permissions, modification time, file contents, etc.

O

intrusionDetectionState

N/A

Use this flag to enable/disable AIDE on the SBC. 

  • disabled (default) 
  • enabled – Once AIDE is enabled, the tool runs on a daily basis, and after every reboot.
O

exceptionList

0-1024 characters

Pattern: (((.)){0,1024})

Use this parameter to specify one or more tokens to exclude from the sonusSystemSecurityReportNotification trap report.

Options (entries are case-sensitive):

  • [ token1 token2 ] – Creates an exception list or overwrites existing list.
  • token3 – Appends a token to the existing list.
O


Configuration Examples


  • To create a new exception list:

    Info

    This deletes the existing exception list.


    Code Block
    titleCREATE list
    %  set system admin <SYSTEM NAME> intrusionDetection exceptionList [ token1 token2 ]


  • To append token3 to the exception list:

    Code Block
    titleAPPEND token
    %  set system admin <SYSTEM NAME> intrusionDetection exceptionList token3


  • To delete one token (token1) from the exception list:

    Code Block
    titleDELETE token
    %  delete system admin <SYSTEM NAME> intrusionDetection exceptionList token1


  • To delete all tokens (the entire exception list):

    Code Block
    titleDELETE list
    %  delete system admin <SYSTEM NAME> intrusionDetection exceptionList [leave empty]