Cisco Cisco Web Security Appliance S160 User Guide
12-13
AsyncOS 9.2 for Cisco Web Security Appliances User Guide
Chapter 12 Perform System Administration Tasks
Resetting the Administrator Passphrase
Resetting the Administrator Passphrase
Any administrator-level user can change the passphrase for the “admin” user.
Before You Begin
•
If you do not know the passphrase for the admin account, contact your customer support provider to
reset the passphrase.
reset the passphrase.
•
Understand that changes to the passphrase take effect immediately and do not require you to commit
the change.
the change.
Step 1
Select Management Appliance > System Administration > Users.
Step 2
Click the admin link in the Users list.
Step 3
Select Change the passphrase.
Step 4
Generate or enter the new passphrase.
Command
Description
adminaccessconfig
> banner
Configures the appliance to display any text you specify when an
administrator tries to logs in. The custom banner text appears when an
administrator tries to access the appliance through all interfaces, such as the
web interface or via FTP.
administrator tries to logs in. The custom banner text appears when an
administrator tries to access the appliance through all interfaces, such as the
web interface or via FTP.
You can load the custom text by either pasting it into the CLI prompt or by
copying it from a file located on the Web Security appliance. To upload the
text from a file, you must first transfer the file to the configuration directory
on the appliance using FTP
copying it from a file located on the Web Security appliance. To upload the
text from a file, you must first transfer the file to the configuration directory
on the appliance using FTP
adminaccessconfig
> ipaccess
Controls from which IP addresses administrators access the Web Security
appliance. Administrators can access the appliance from any machine or
from machines with an IP address from a list you specify.
appliance. Administrators can access the appliance from any machine or
from machines with an IP address from a list you specify.
When restrict access to an allow list, you can specify IP addresses, subnets,
or CIDR addresses.
or CIDR addresses.
By default, when you list the addresses that can access the appliance, the IP
address of your current machine is listed as the first address in the allow list.
You cannot delete the IP address of your current machine from the allow list.
address of your current machine is listed as the first address in the allow list.
You cannot delete the IP address of your current machine from the allow list.
adminaccessconfig
> strictssl
Configures the appliance so administrators log into the web interface on port
8443 using stronger SSL ciphers (greater than 56 bit encryption).
8443 using stronger SSL ciphers (greater than 56 bit encryption).
When you configure the appliance to require stronger SSL ciphers, the
change only applies to administrators accessing the appliance using HTTPS
to manage the appliance. It does not apply to other network traffic connected
to the Web Proxy using HTTPS.
change only applies to administrators accessing the appliance using HTTPS
to manage the appliance. It does not apply to other network traffic connected
to the Web Proxy using HTTPS.