Cisco Cisco Firepower Management Center 4000
51-22
FireSIGHT System User Guide
Chapter 51 Configuring Appliance Settings
Managing Remote Console Access
Supported Devices:
Series 3
Supported Defense Centers:
Series 3
You must explicitly grant Lights-Out Management permissions to users who will use the feature. You
configure LOM and LOM users on a per-appliance basis using each appliance’s local web interface. That
is, you cannot use the Defense Center to configure LOM on a managed device. Similarly, because users
are managed independently per appliance, enabling or creating a LOM-enabled user on the Defense
Center does not transfer that capability to users on managed devices.
configure LOM and LOM users on a per-appliance basis using each appliance’s local web interface. That
is, you cannot use the Defense Center to configure LOM on a managed device. Similarly, because users
are managed independently per appliance, enabling or creating a LOM-enabled user on the Defense
Center does not transfer that capability to users on managed devices.
LOM users also have the following restrictions:
•
You must assign the Administrator role to the user.
•
The password may have up to 20 alphanumeric characters, except for 3D71xx Family devices. If
LOM is enabled on a 3D7150, 3D7115, 3D7120, or 3D7125 device, the password may have up to
16 alphanumeric characters. Passwords longer than 20 or 16 characters, respectively, are not
supported for LOM users. A user’s LOM password is the same as that user’s system password. Cisco
recommends that you use a complex, non-dictionary-based password of the maximum supported
length for you appliance and change it every three months.
LOM is enabled on a 3D7150, 3D7115, 3D7120, or 3D7125 device, the password may have up to
16 alphanumeric characters. Passwords longer than 20 or 16 characters, respectively, are not
supported for LOM users. A user’s LOM password is the same as that user’s system password. Cisco
recommends that you use a complex, non-dictionary-based password of the maximum supported
length for you appliance and change it every three months.
•
Series 3 Defense Centers and 8000 Series devices can have up to 13 LOM users. 7000 Series devices
can have up to eight LOM users.
can have up to eight LOM users.
Note that if you deactivate, then reactivate, a role with LOM while a user with that role is logged in, or
restore a user or user role from a backup during that user’s login session, that user must log back into
the web interface to regain access to IPMItool commands. For more information, see
restore a user or user role from a backup during that user’s login session, that user must log back into
the web interface to regain access to IPMItool commands. For more information, see
To enable or view Lights-Out Management user access:
Access:
Admin
Step 1
Select
System > Local > User Management.
The User Management page appears.
Step 2
You have the following options:
•
To grant LOM user access to an existing user, click the edit icon (
) next to a user name in the list.
•
To grant LOM user access to a new user, click
Create User
.
Step 3
Under
User Configuration
, enable the Administrator role.
Administrator Options appear.
Step 4
Select the
Allow Lights-Out Management Access
check box.
Step 5
Click
Save
.
The user has LOM access for this appliance.
Using a Serial Over LAN Connection
License:
Any
Supported Devices:
Series 3
Supported Defense Centers:
Series 3