|
If you purchased a BBSM appliance (rather than BBSM software on CD), use this document to change the default security passwords and the Windows Administrator username.
Caution For security reasons, we strongly recommend that you change all of the default passwords immediately. Blank passwords are not recommended. After you make these changes, verify that the latest service packs and security fixes are installed on the server. Do not change any other account information, including system generated accounts, such as TsInternetUser, and accounts prefaced with IWAM_ and IUSR_. This adversely affects the functionality of the BBSM server. In addition, restoring these accounts to their previous states is difficult. |
Follow this procedure to change the Windows user passwords and the Administrator username. Table 1 describes the Windows user accounts and the default passwords for the BBSM appliance.
Step 2 Click Local Users and Groups.
Step 3 Double-click Users.
Step 4 Change the Administrator username and password:
a. In the right pane, right-click Administrator.
c. In the New password field, enter the new password.
d. In the Confirm password field, enter the new password again.
e. Click OK. The Local Users and Groups dialog box appears.
g. Right-click Administrator again.
h. Click Rename, and then change the username to the desired name.
Step 5 Change the bbsd-client and webapi-client passwords:
a. In the right-pane, click the password to be changed.
c. In the New password field, enter the new password.
d. In the Confirm password field, enter the new password again.
Follow this procedure to change the MSDE database user passwords. Table 2 describes the MSDE database user accounts and default passwords for the BBSM appliance.
Table 2 MSDE Database User Accounts
|
Step 2 In the NavBar, click Security/SSL. The Security/SSL web page appears.
Step 3 Change the MSDE `sa' password, as follows:
Note You cannot change this password without knowing the current password. Be sure to save this password in a secure location. |
b. In the Enter current password field, enter the default sa password.
c. In the Enter new password field, enter the new password.
d. In the Confirm new password field, reenter the new password again.
Step 4 Change the MSDE BBSD password, as follows:
Note You cannot change this password without knowing the current password. Be sure to save this password in a secure location. |
b. Enter the BBSD username (bbsd-client).
c. In the Enter current password field, enter the default MSDE BBSD password.
d. In the Enter new password field, enter the new password.
e. In the Confirm new password field, reenter the new password again.
To secure BBSM from any malicious use of the FTP port, the FTP Publishing Service is stopped and the default service startup type is set to Manual mode. If you use WEBpatch or BBSD, you need to start this service. For WEBpatch, manually start the FTP Publishing Service only when you use WEBpatch - Transfer. For BBSD, this service must run all the time. You must set the startup type of the FTP Publishing Service to Automatic, which automatically starts the service every time your BBSM server reboots.
Caution Because of known exploits of FTP service, avoid automatic startup whenever possible. We recommend that you manually start and stop the service as needed for updates, etc. If you set the startup type to Automatic mode, use the access lists on the router to make sure that only known networks can access this service. |
For additional information about BBSM server security, refer to this website:
http://www.cisco.com/application/pdf/en/us/guest/products/ps533/c1244/cdccont_0900aecd80093fe0
.pdf
Follow these steps to start the FTP Publishing Service:
Step 2 Right-click FTP Publishing Service, and choose Start.
Step 3 If you are using BBSD and you need to modify the FTP Publishing Service startup type, follow these steps:
a. Right-click FTP Publishing Service, and choose Properties.
b. Click the Startup type drop-down menu, and choose Automatic (or Manual).
Step 4 Close the Services window.
Follow these steps to start the FTP Publishing Service:
Step 2 Open the Command Prompt, and type this command: net start "FTP Publishing Service"
You can access and print these documents by double-clicking the Documentation icon on the BBSM desktop or by going to the D:\Documentation directory on the Cisco BBSM v5.2 CD and double-clicking the appropriate file name.
To determine which file to use, refer to Table 3. These documents are also available online at the following Cisco website:
http://www.cisco.com/univercd/cc/td/doc/product/aggr/bbsm/index.htm
Table 3 BBSM v5.2 CD Filenames
|
Copyright © 2003, Cisco Systems, Inc.
All rights reserved.
Posted: Mon Jul 28 08:00:28 PDT 2003
All contents are Copyright © 1992--2003 Cisco Systems, Inc. All rights reserved.
Important Notices and Privacy Statement.