Cisco Cisco Web Security Appliance S170 사용자 가이드
L O G G I N G I N T O T H E F I P S M A N A G E M E N T C O N S O L E
C H A P T E R 5 : F I P S M A N A G E M E N T
71
Logging into the FIPS Management Console
After you log into the Web Security appliance as an administrator user, you can log into the
FIPS management console to manage the HSM card. You can log into and out of the FIPS
management console separately while remaining logged into the rest of the appliance web
interface.
FIPS management console to manage the HSM card. You can log into and out of the FIPS
management console separately while remaining logged into the rest of the appliance web
interface.
Access the FIPS management console from the FIPS Mode menu in the upper right corner of
the web interface. Figure 5-1 shows the FIPS Mode menu.
the web interface. Figure 5-1 shows the FIPS Mode menu.
Figure 5-1 FIPS Mode Menu
Logging out of the FIPS management console does not affect the session logged into the
appliance as the administrator user. However, if you log out of the web interface without
manually logging out of the FIPS management console, AsyncOS for Web automatically logs
you out of the FIPS management console.
appliance as the administrator user. However, if you log out of the web interface without
manually logging out of the FIPS management console, AsyncOS for Web automatically logs
you out of the FIPS management console.
The default FIPS Officer password is
sopin123
.
WARNING:
AsyncOS for Web keeps track of the total number of failed login attempts to
the HSM card using the FIPS Officer password. On the third login failure, the HSM card is
initialized, which clears its contents. There is no timeout between failed login attempts.
Because the HSM card gets initialized, it loses the certificate and key for accessing the
appliance web interface. If the HSM card initializes after the third unsuccessful login attempt,
the browser displays a generic error message that it cannot display the webpage. For more
information, see “Initializing the HSM Card” on page 70.
initialized, which clears its contents. There is no timeout between failed login attempts.
Because the HSM card gets initialized, it loses the certificate and key for accessing the
appliance web interface. If the HSM card initializes after the third unsuccessful login attempt,
the browser displays a generic error message that it cannot display the webpage. For more
information, see “Initializing the HSM Card” on page 70.
Note — Cisco recommends that you do not use the web browser’s Back button to navigate
back toward the FIPS management console login page. If you enter the incorrect FIPS Officer
password, navigate away from the page, and use the browser’s Back button to return to the
FIPS management console, the browser submits the incorrect password again, causing you to
fail the login twice.
back toward the FIPS management console login page. If you enter the incorrect FIPS Officer
password, navigate away from the page, and use the browser’s Back button to return to the
FIPS management console, the browser submits the incorrect password again, causing you to
fail the login twice.
To log into the FIPS Management console:
1. From the FIPS Mode menu, choose FIPS Login.
Figure 5-2 shows the FIPS Login page.