No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

eSight V300R009C00 Operation Guide 10

Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
FAQs

FAQs

List questions frequently asked by users to help them rectify problems in a timely manner.

After Automatic Discovery Is Configured for the eSight Terminal Resource Management Function, Automatic Discovery Records Are Stored in the Database, Causing High Database Usage. How Do I Solve This Problem

Answer

It is recommended that you disable automatic terminal discovery if you do not need the terminal resource management function.

How Do I Enable the Function of Reporting an Event on eSight When a Rogue Terminal Is Connected

Question

The terminal authentication failure, terminal illegal port access, duplicate MAC access, and terminal detection of duplicate MAC access events must be implemented at the specified site so that users are informed of illegal terminal access information.

NOTE:

Use of this function is restricted. If you need to use it, contact Huawei technical support.

Answer

This function is based on normal terminal resource management. Here only the required configuration is described.

  1. Log in to the eSight server as the administrator user.
  2. Modify the {eSight installation directory}\AppBase\etc\ent.tam\conf.properties file.
    alarm4AuthFail=disable 
    alarm4bindRuleCheck=disable 
    alarm4DuplicateMac=disable
    • Set alarm4AuthFail to enable to enable the terminal authentication failure event.

      After the event is enabled, terminal authentication failure events can be received from eSight.

    • Set alarm4bindRuleCheck to enable to enable the event of terminal access through an invalid port.

      In addition, the following operations must be performed for eSight to report illegal terminal access events.

  3. Choose Resource > Network > Equipment > Terminal Resources from the main menu.

  4. Choose Security Management > Access Binding Rule from the navigation tree on the left to create an access binding rule for PORT-MAC.

    Bind the MAC address of the valid terminal to the monitored device port to detect terminal access through invalid ports.

    Set alarm4DuplicateMac to enable, indicating that the terminal detection of duplicate MAC access event is enabled.

    After this function is enabled, duplicate MAC access events sent by eSight can be received normally.

    For the terminal detection of duplicate MAC access, you need to manually the auto discovery of the terminal. The procedure is as follows:

    Choose Resource Management > Terminal Access Record from the navigation tree on the left and click Immediate Discovery.

  5. Restart eSight for the modification to take effect..
  6. If unauthorized terminals access the network, Choose Fault > Events from the main menu to view the events reported by unauthorized terminals.
Translation
Download
Updated: 2019-08-10

Document ID: EDOC1100011877

Views: 299207

Downloads: 616

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next