Administrator's Guide
Enhancing system security
555-233-506396 Issue 5 October 2002
Loss of an ASG key
If a user loses their Access Security Gateway Key:
1. Modify any logins associated with the lost Access Security Gateway Key.
See the Access Security Gateway (ASG) Key Release 1.0 User’s Guide to
change your PIN.
2. If the login is no longer valid, type
remove login xxxx and press RETURN,
to remove the invalid login from the system, where xxxx is the
alphanumeric login ID.
3. To keep the same login, change the Secret Key associated with the login to
a new value.
4. Using the new secret key value, re-key devices that generate responses and
interact with the login.
Monitoring the Access Security Gateway
history log
The Access Security Gateway Session History Log records all ASG session
establishment and session rejection events except when, on the Login
Administration screen, the Access to INADS Port field is
y. You must be a
superuser to use the
list asg-history command.
1. Type
list asg-history and press RETURN.
The Access Security Gateway screen appears.
This screen contains the following fields:
■ Date — Contains the date of the session establishment or rejection. For
example, the date displays in the mm/dd format where mm = month and
dd = day.
■ Time — Contains the time of the session establishment or rejection. For
example, the time displays in the hh/mm format where hh = hour and mm =
minute.
ACCESS SECURITY GATEWAY SESSION HISTORY
Date Time Port Login Status
01/06 12:45 SYSAM-RMT csand AUTHENTICATED
01/05 01:32 SYSAM-LCL jsmith REJECT-BLOCK
01/05 12:33 SYSAM-RMT ajones REJECT-EXPIRE
01/03 15:10 SYSAM-RMT swrigh REJECT-PASSWORD
01/02 08:32 SYSAM-LCL jsmith REJECT-INVALID
01/02 07:45 SYSAM-RMT mehrda REJECT-RESPONSE