Managing Access Security for the CTPView Server (CTPView Server
Menu)
You can control access to the CTPView server by setting
security levels for access to the CTPView server through the CTPView
GUI or though an SSH connection. The security levels determine the
severity of password restrictions, installation or removal of certain
utilities, control of root log in, and so on.
Before you begin, log in to the CTPView server
and access the CTPView Configuration Menu. See Accessing the CTPView Server Configuration Menu (CTPView Server Menu).
To manage security access levels, you must
first access the Security Level Menu:
- From the CTPView Configuration Menu, select 1) Security Profile.
- Select 5) Modify Security Level.
The Security Level Menu is displayed.
Viewing the Access Security Level for the CTPView Server (CTPView
Server Menu)
To display the current
settings for access to the CTPView server:
- From the Security Level Menu, select 1) View
current security level.
The security level for access through an SSH connection
and to the CTPView GUI are displayed.
Setting Access Security for the CTPView Server (CTPView Server
Menu)
To set the security level for access to the
CTPView server:
- From the Security Level Menu, select one of the
following options to set the SSH access level: 3) Set
OS level to ’very-low’, 4)
Set OS level to ’low’, 5) Set
OS level to ’high’.
Table 1 describes these
security levels.
- Select one of the following options to set the
CTPView GUI access level: 6) Set GUI level to ’low’ or 7) Set GUI level to ’high’.
Table 2 describes these
security levels.
The sshd process is stopped and restarted whenever
you change the security level.
Table 1: Access Security Levels for
SSH Connections
Access Security Level | Description |
very-low | - Enables root login.
- Disables session inactivity timeout.
- Enables Fedora Core OS default username/password restrictions.
- Enables single-user mode login for password recovery.
- Installs tcpdump and hdparm utilities.
These files must exist in the /tmp directory.
|
low | - Disables root login.
- Disables session inactivity timeout.
- Enables Fedora Core OS default username/password restrictions.
- Enables single-user mode login for password recovery.
- Installs tcpdump and hdparm utilities.
These files must exist in the /tmp directory.
|
high | - Disables root login.
- Enables session inactivity timeout.
- Enables elevated username/password restrictions.
- Disables single-user mode login.
- Removes tcpdump and hdparm utilities.
|
Table 2: Access Security Levels for
CTPView GUI
Access Security Level | Description |
low | Enables permissive username/password restrictions. |
high | Enables elevated username/password restrictions. |
Published: 2010-10-05