Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Managing Access Security for the CTPView Server (CTPView Server Menu)

 

You can control access to the CTPView server by setting security levels for access to the CTPView server through the CTPView GUI or though an SSH connection. The security levels determine the severity of password restrictions, installation or removal of certain utilities, control of root log in, and so on.

Before you begin, log in to the CTPView server and access the CTPView Configuration Menu. See Accessing the CTPView Server Configuration Menu (CTPView Server Menu).

To manage security access levels, you must first access the Security Level Menu:

  1. From the CTPView Configuration Menu, select 1) Security Profile.
  2. Select 5) Modify Security Level.

    The Security Level Menu is displayed.

Viewing the Access Security Level for the CTPView Server (CTPView Server Menu)

To display the current settings for access to the CTPView server:

  • From the Security Level Menu, select 1) View current security level.

The security level for access through an SSH connection and to the CTPView GUI are displayed.

Setting Access Security for the CTPView Server (CTPView Server Menu)

To set the security level for access to the CTPView server:

  1. From the Security Level Menu, select one of the following options to set the SSH access level: 3) Set OS level to ’very-low’, 4) Set OS level to ’low’, 5) Set OS level to ’high’.

    Table 1 describes these security levels.

  2. Select one of the following options to set the CTPView GUI access level: 6) Set GUI level to ’low’ or 7) Set GUI level to ’high’.

    Table 2 describes these security levels.

The sshd process is stopped and restarted whenever you change the security level.

Table 1: Access Security Levels for SSH Connections

Access Security LevelDescription

very-low

  • Enables root login.

  • Disables session inactivity timeout.

  • Enables Fedora Core OS default username/password restrictions.

  • Enables single-user mode login for password recovery.

  • Installs tcpdump and hdparm utilities. These files must exist in the /tmp directory.

low

  • Disables root login.

  • Disables session inactivity timeout.

  • Enables Fedora Core OS default username/password restrictions.

  • Enables single-user mode login for password recovery.

  • Installs tcpdump and hdparm utilities. These files must exist in the /tmp directory.

high

  • Disables root login.

  • Enables session inactivity timeout.

  • Enables elevated username/password restrictions.

  • Disables single-user mode login.

  • Removes tcpdump and hdparm utilities.

Table 2: Access Security Levels for CTPView GUI

Access Security LevelDescription

low

Enables permissive username/password restrictions.

high

Enables elevated username/password restrictions.