Chapter 5 - Security and Access Configuration

Abstract

When users log in to Nokia Network Voyager, the features available in the navigation tree depend on the role or roles assigned to their user account. If the roles do not provide access to a feature, the user will not see a link to the feature in the tree. If the user has read-only access to a feature, he or she will see a link and be able to access the page, but the controls will be disabled. An important aspect when securing the Nokia network security platform is establishing user passwords and creating an effective password policy. Having users create strong and unique passwords using a variety of character types and creating a password policy requiring users to change their passwords often are key factors to the overall network security. To create an effective security policy, one must make sure users create strong and unique passwords. One can configure a policy that requires passwords to be a certain length, use more than one character type, and not be palindromes. For group access, one can define and configure groups with IPSO similarly to UNIX-based systems. This capability is retained under IPSO for advanced applications and for retaining compatibility with UNIX. When a new user is added to Nokia Network Voyager, the user is given read-only privileges to the Nokia Network Voyager home page or execute commands from the CLI prompt. The user, however, cannot access other Nokia Network Voyager pages or execute commands from the command-line interface (CLI) prompt. For the user to gain more access, one must assign roles.