EasyManuals Logo

Cisco 5510 - ASA SSL / IPsec VPN Edition Configuration Guide

Cisco 5510 - ASA SSL / IPsec VPN Edition
1822 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #675 background imageLoading...
Page #675 background image
32-3
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 32 Configuring Management Access
Configuring CLI Parameters
Using an SSH Client
To gain access to the adaptive security appliance console using SSH, at the SSH client enter the username
asa and enter the login password set by the password command (see the “Configuring the Hostname,
Domain Name, and Passwords” section on page 9-1).
When starting an SSH session, a dot (.) displays on the adaptive security appliance console before the
SSH user authentication prompt appears, as follows:
hostname(config)# .
The display of the dot does not affect the functionality of SSH. The dot appears at the console when
generating a server key or decrypting a message using private keys during SSH key exchange before user
authentication occurs. These tasks can take up to two minutes or longer. The dot is a progress indicator
that verifies that the adaptive security appliance is busy and has not hung.
Configuring CLI Parameters
This section includes the following topics:
Configuring a Login Banner, page 32-3
Customizing a CLI Prompt, page 32-4
Changing the Console Timeout Period, page 32-5
Configuring a Login Banner
You can configure a message to display when a user connects to the adaptive security appliance, before
a user logs in, or before a user enters privileged EXEC mode.
Restrictions
After a banner is added, Telnet or SSH sessions to adaptive security appliance may close if:
There is not enough system memory available to process the banner message(s).
A TCP write error occurs when attempting to display banner message(s).
Guidelines
From a security perspective, it is important that your banner discourage unauthorized access. Do not
use the words “welcome” or “please,” as they appear to invite intruders in. The following banner
sets the correct tone for unauthorized access:
You have logged in to a secure device. If you are not authorized to access this
device,
log out immediately or risk possible criminal consequences.
See RFC 2196 for guidelines about banner messages.
Detailed Steps
Step 1 Choose the Configuration > Device Management > Management Access > Command Line (CLI) >
Banner pane, add your banner text to the field for the type of banner you are creating for the CLI:

Table of Contents

Other manuals for Cisco 5510 - ASA SSL / IPsec VPN Edition

Preview: Cli Configuration Guide
Cli Configuration Guide2164 pages
Preview: Hardware Installation Guide
Hardware Installation Guide82 pages
Preview: Getting Started Guide
Getting Started Guide208 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco 5510 - ASA SSL / IPsec VPN Edition and is the answer not in the manual?

Cisco 5510 - ASA SSL / IPsec VPN Edition Specifications

General IconGeneral
BrandCisco
Model5510 - ASA SSL / IPsec VPN Edition
CategoryFirewall
LanguageEnglish

Related product manuals