Log Collector CLI Authentication Settings
- Panorama > Managed Collectors > Authentication
An M-Series appliance in Log Collector mode (Dedicated Log Collector) has no web interface, only a CLI. You can use the Panorama management server to configure most settings on a Dedicated Log Collector but some settings require CLI access. To configure authentication settings for CLI access, configure the settings as described in the following table.
Log Collector Authentication Settings
Always displays as admin and is used for the local CLI login name on the Log Collector.
Select the password Mode:
Enter the number of failed login attempts allowed on the CLI before locking out the administrator account (0 to 10). A value of 0 specifies unlimited login attempts. The default value is 0 for Log Collectors in normal operational mode and 10 for Log Collectors in FIPS-CC mode. Limiting login attempts can help protect the Log Collector from brute force attacks.
If you set the Failed Attempts to a value other than 0 but leave the Lockout Time at 0, the Failed Attempts is ignored and the user is never locked out. If you use the default 0 for both fields, the user is never locked out.
Enter the number of minutes for which the Log Collector locks out the administrator out after reaching the number of Failed Attempts (range is 0 to 60; default is 0).
If you set the Lockout Time to a value other than 0 but leave the Failed Attempts at 0, the Lockout Time is ignored and the user is never locked out. If you use the default 0 for both fields, the user is never locked out.
Configure an Authentication Profile
Authentication Profile Device > Authentication Profile Select Device Authentication Profile or Panorama Authentication Profile to manage authentication profiles. To create a new profile, Add one ...
FIPS-CC Security Functions
FIPS-CC Security Functions When FIPS-CC mode is enabled, the following security functions are enforced on all firewalls and appliances: To log in, the browser must ...
Device > Setup > Management
Device > Setup > Management Device > Setup > Management Panorama > Setup > Management On a firewall, select Device Setup Management to configure management ...
Use the Administrator Login Activity Indicators to Detect A...
Use the Administrator Login Activity Indicators to Detect Account Misuse The last login time and failed login attempts indicators provide a visual way to detect ...
Panorama > Administrators
Panorama > Administrators Select Panorama Administrators to create and manage accounts for Panorama administrators. If you log in to Panorama as an administrator with a ...
Managed WildFire Cluster and Appliance Administration
Managed WildFire Cluster and Appliance Administration Select Panorama Managed WildFire Clusters and select a cluster to manage or select a WildFire appliance ( Panorama Managed ...
Device > Local User Database > Users
Device > Local User Database > Users You can set up a local database on the firewall to store authentication information for firewall administrators , ...