|
|
To start the configuration utility, follow these steps:
Step 2 Enter the following URL:
where servername is the name of the server that is running the Cisco Service Selection Dashboard (Cisco SSD) and port is the port where the Cisco SSD is listening.
Note To access all Cisco SSD configuration and administration utilities, enter http://servername<:port>/admin.
Step 3 Enter the configuration utility username and password (default: root and admin).
The Service Selection Dashboard Configuration Utility page appears. (See Figure 3-1).
Step 4 Review the sections described in the text below and make any necessary changes.
Step 5 When you are finished, click Save. To exit without saving changes, click Cancel.
Note The configuration utility makes changes to the dashboard.conf file. You can use the configuration utility or modify the dashboard.conf file with a text editor.
This Server section contains guest logon properties. If your organization chooses to support guest logons, you must create a Guest Remote Access Dial-In User Service (RADIUS) user profile.
This parameter specifies whether users logged on as guests will be prompted for a username and password when accessing tunneled services. When set to ON, users logged on as guests are prompted for a username and password. When set to OFF, the guest username and password is used.
This parameter specifies the username for the Guest account, if the Guest Logons parameter is enabled. This username must match the username of the Guest RADIUS user profile.
This parameter specifies whether a user who shuts down his browser without logging off will have to reenter a username and password to reaccess the Cisco SSD. When set to ON, the user will have to reenter a username and password. When set to off, the user will not be required to reauthenticate.
Note This feature provides minimal security against casual unauthorized access and is easily defeated by knowledgeable users.
This parameter enables or disables template file caching.
When enabled, template file caching improves performance by storing the HTML files in memory. This is recommended for normal operation.
When disabled, files are read directly from disk. Files can be updated without shutting down or restarting the server. This is recommended for updating a production server without shutting it down.
To enable template file caching, set this parameter to ON. To disable it, set this parameter to OFF.
Note To flush the cache, disable template file caching and save the configuration file. Then, enable template file caching and save the configuration file again.
This parameter specifies the password for the Guest account. This password must match the password of the Guest RADIUS user profile.
This parameter specifies whether guest logons are permitted. If this parameter is ON, users who log on as guests are allowed to access services configured in the Guest RADIUS user profile. If this parameter is set to OFF, guest logons are not allowed.
A Guest account must be configured with the appropriate Guest Username and Guest Password, and any tunneled services that guests are allowed to access must be configured to use the same Guest name and password.
This parameter specifies how long (in seconds) a connection may remain idle before the Cisco SSD logs the user out.
Note This parameter does not terminate the Cisco SSG session. Users will only need to reauthenticate with the Cisco SSD.
This parameter specifies how often (in seconds) the Cisco SSD looks for idle connections.
This Admin section contains the Cisco SSD administrator properties.
This parameter specifies the system administrator username used to log in to the Configuration Utility page (default: root).
This parameter specifies the system administrator password used to log in to the Configuration Utility page (default: admin).
The Messaging Service section contains the configuration parameters for the Message server.
This parameter specifies the port which the Message server uses to listen for asynchronous messages.
This parameter enables or disables Message server debugging. If this parameter is set to 1, Message server debugging is enabled. If this parameter is set to 0, Message server debugging is disabled (default).
This parameter specifies how long the Message server waits before deleting old messages (default: 120 minutes).
This parameter specifies how many messages the Message server queues for each user before deleting old messages (default: 10).
This parameter specifies the IP address of the Message server. The Message server runs on the same machine as the Dashboard server. However, the server might have more than one IP address.
This parameter specifies how many messages the Message server queues for all users before deleting old messages (default: 10000).
The Tools section contains configuration parameters for Cisco SSD tools.
This parameter enables or disables RADIUS debugging. If this parameter is set to 1, RADIUS debugging is enabled. If this parameter is set to 0, RADIUS debugging is disabled (default).
The AAA Primary section contains parameters used by the Cisco SSD to communicate with the primary AAA server.
This parameter specifies the port on which the primary AAA server listens for RADIUS packets.
This parameter specifies the shared secret used to encrypt data sent between the Cisco SSD and the primary AAA server.
This parameter specifies the password used in service and service group profiles. If this password does not match, the Cisco SSD will be unable to retrieve the profiles.
This parameter specifies how long the Cisco SSD waits before timing out RADIUS requests sent to the primary AAA server (default: 10 seconds).
This parameter specifies the IP address of the primary AAA server.
This parameter specifies the number of times a RADIUS packet is resent to the primary AAA server if no response is received (default: 5).
The AAA Secondary section contains parameters used by the Cisco SSD to communicate with the primary AAA server.
This parameter specifies the port on which the secondary AAA server listens for RADIUS packets.
This parameter specifies the shared secret used to encrypt data sent between the Cisco SSD and the secondary AAA server.
This parameter specifies the password used in service and service group profiles. If this password does not match, the Cisco SSD will be unable to retrieve the profiles.
This parameter specifies how long the Cisco SSD waits before timing out RADIUS requests sent to the secondary AAA server (default: 10 seconds).
This parameter specifies the IP address of the secondary AAA server.
This parameter specifies the number of times a RADIUS packet is resent to the secondary AAA server if no response is received (default: 5).
The SSG section contains parameters used by the Cisco SSD to communicate with the Cisco SSG.
This parameter specifies the port number on which the Cisco SSG is listening for RADIUS requests (default: 1645).
This parameter specifies the shared secret used to communicate with the Cisco SSG. For example, on the Cisco 6510, this must match the DashboardPassword parameter.
This parameter specifies how long the Cisco SSD waits before timing out RADIUS requests sent to the Cisco SSG (default: 10 seconds).
This parameter specifies the IP address of the Cisco SSG.
This parameter specifies the number of times a RADIUS packet is resent if no response is received (default: 5).
Posted: Sun Jan 19 00:00:28 PST 2003
All contents are Copyright © 1992--2002 Cisco Systems, Inc. All rights reserved.
Important Notices and Privacy Statement.