AutoNOC 2.5 User Guide
Preface
Acknowledgements
System Requirements
Legal
Part 1 - Introduction
1.1 The Ideal Difference
1.2 Automated Operations
1.3 Services & Scaler
1.4 Acquisition Stacks
1.5 Portal Deployment
1.6 Discovery and Crawler
1.7 Monitoring Agents
1.8 Recoiling Database
1.9 Multiple Languages
1.10 Security
Part 2 - NOC Views
2.1 Investigate
2.2 Observe
2.3 Visualize
2.4 Alarms
2.5 Analyze
2.6 Design
2.7 Configure
Part 3 - Model Design
3.1 Object Model
3.2 Devices
3.3 Sets
3.4 Set Criteria
3.5 Probes
3.6 Logs & Events
3.7 Alarms
3.8 Actions
3.9 Reports
3.10 Users
3.11 Polling
3.12 Service Levels
3.13 Dependencies
3.14 Performance
Part 4 - Developer Features
4.1 Adding SNMP MIBs
4.2 Variables
4.3 OSP API
4.4 Probe Template
4.5 Log Template
4.6 Device Template
4.7 Interface Template
4.8 Rebranding
Part 5 - Troubleshooting
5.1 General Issues
5.2 Linux
5.3 Windows
Appendix
A.1 OSP API Functions
A.2 Variables
A.3 Object Reference
1.10 Security
AutoNOC provides a number of security features that control both user access and general, overall access to the portal if it is deployed on a public network. These features represent a compromise between ease of use, browser support, and security.

1.10.1 User Password Protection
The major security feature in AutoNOC is user password protection for logon accounts. A different logon password can be established for each user as shown in the following dialog screen.

1.10.2 AutoNOC's Firewall
When hosting AutoNOC on a public server, or within a domain that many users might have access to (as opposed to in a 1.5.1 - Stand Alone) it is useful to make use of AutoNOC's built-in firewall. The firewall works at the packet level so once it is enabled it drops all user session incoming packets to the software.

The following screenshot shows the firewall settings for AutoNOC.

By default AutoNOC will allow everyone access unless rules are defined that limit user access. The following are some example rules that can be used:

192.168.1.* Any IP address starting with "192.168.1"
192.168.1.6 TO 192.168.1.20 Any IP address in the range 192.168.1.6 to 192.168.1.20
including 192.168.1.7 but excluding 192.168.1.3.
192.168.1.1/22 CIDR IP address notation for users familiar with it is
also supported.

If you lock yourself out of your AutoNOC server by accident, AutoNOC is setup to allow an override of the firewall on the local server. If the IP address of the server is 192.168.1.10, then use the web browser on that machine to access it using that IP address on the port, such as http://192.168.1.10:30 if the server is running on port 30. This capability is designed to only work on the local machine that AutoNOC is running on, so you will need to have physical access to that box.

1.10.3 Simple Session Encryption
For added security, AutoNOC also employs a simple proprietary session and link encryption capability. While this will not keep out the most determined and intelligent hackers, it does add an extra layer of security to user session management.
(C) 2007 - All Rights Reserved - AutoNOC LLC
       Call me!