Chapter 4
System Administration
RUGGEDCOM RSG2488
User Guide
102 Security Alarms for Login Authentication
Section 4.4.4.1
Security Alarms for Login Authentication
ROS provides various logging options related to login authentication. A user can log into a ROS device in three
different ways: Console, SSH or Telnet. ROS can log messages in the syslog, send a trap to notify an SNMP
manager, and/or raise an alarm when a successful and unsuccessful login event occurs. In addition, when a
weak password is configured on a unit or when the primary authentication server for TACACS+ or RADIUS is not
reachable, ROS will raise alarms, send SNMP traps and log messages in the syslog.
The following is a list of log and alarm messages related to user authentication:
• Weak Password Configured
• Login and Logout Information
• Excessive Failed Login Attempts
• RADIUS Server Unreachable
• TACACS Server Unreachable
• TACACS Response Invalid
• SNMP Authentication Failure
NOTE
All alarms and log messages related to login authentication are configurable. For more information
about configuring alarms, refer to Section 4.4.3, “Configuring an Alarm”.
Weak Password Configured
ROS generates this alarm and logs a message in the syslog when a weak password is configured in the
Passwords table.
Table 8: Configurable Options
Message Name Alarm SNMP Trap Syslog
Weak Password Configured Yes Yes Yes
Default Keys In Use
ROS generates this alarm and logs a message in the syslog when default keys are in use. For more information
about default keys, refer to Section 1.7, “Certificate and Key Requirements”.
NOTE
For Non-Controlled (NC) versions of ROS, this alarm is only generated when default SSL keys are in
use.
Table 9: Configurable Options
Message Name Alarm SNMP Trap Syslog
Default Keys In Use Yes Yes Yes
Login and Logout Information
ROS generates this alarm and logs a message in the syslog when a successful and unsuccessful login attempt
occurs. A message is also logged in the syslog when a user with a certain privilege level is logged out from the
device.
To Next Page
Loading...
Need help?
General
