•
•
Step 7
To require users to change their password at periodic intervals, check the Enforce Password Aging check
box in the Password Aging area. If checked, provision the following parameters:
•
•
In the Other area, you can provision the following:
Step 8
•
•
In the Select Applicable Nodes area, uncheck any nodes where you do not want to apply the changes.
Step 9
Click OK.
Step 10
In the Security Policy Change Results dialog box, confirm that the changes are correct, then click OK.
Step 11
Return to your originating procedure (NTP).
Step 12
DLP-H143 Change Node Access and PM Clearing Privilege
Purpose
Tools/Equipment
Prerequisite Procedures
Required/As Needed
Onsite/Remote
Security Level
In node view, click the Provisioning > Security > Access tabs.
Step 1
In the Access area, provision the following:
Step 2
•
Cisco ONS 15310-MA SDH Procedure Guide, Release 9.1 and Release 9.2
17-46
Cannot Change New Password for [ ] days—If checked, prevents users from changing their
password for the specified period. The range is 20 to 95 days.
Require Password Change on First Login to New Account—If checked, requires users to change his
or her password the first time they log into the account.
Aging Period—Sets the amount of time that must pass before the user must change his or her
password for each security level: RETRIEVE, MAINTENANCE, PROVISIONER, SUPERUSER.
The range is 20 to 95 days.
Warning—Sets the number days the user will be warned to change his or her password for each
security level. The range is 2 to 20 days.
Single Session Per User—If checked, limits users to one login session at one time.
Disable Inactive User—If checked, disables users who do not log into the node for the period of time
specified in the Inactive Duration box. The Inactive Duration range is 45 to 90 days.
This task provisions the physical access points and shell programs used to
connect to the ONS 15310-MA SDH and sets the user security level that
can clear node performance monitoring data.
None
DLP-H29 Log into CTC, page 16-43
As needed
Onsite or remote
Superuser only
LAN access—Choose one of the following options to set the access paths to the node:
–
No LAN Access—Allows access to the node only through data communications channel (DCC)
connections. Access through the CTX-2500 RJ-45 port and backplane is not permitted.
Front only—Allows access through the CTX-2500 RJ-45 port. Access through the DCC and
–
the backplane is not permitted.
Backplane only—Allows access through DCC connections and the backplane. Access through
–
the CTX-2500 RJ-45 port is not allowed.
Chapter 17
DLPs H100 to H199
78-19416-01