Displaying security monitoring default values, Configuring security monitoring – Brocade Network OS NETCONF Operations Guide v4.1.1 User Manual

Network OS NETCONF Operations Guide

155

53-1003231-02

Security monitoring

12

Displaying security monitoring default values

To display the default values of security threshold and alert options, issue the custom
action located in the node in the urn:brocade.com:mgmt:brocade-threshold-monitor
namespace. The node is, in turn, located by augmentation under the
/ node hierarchy in the urn:brocade.com:mgmt:brocade-common-def
namespace.

xmlns="urn:brocade.com:mgmt:brocade-threshold-monitor-ext"/>

Configuring security monitoring

Use the following procedure to configure security monitoring on a standalone switch. For a Fabric
Cluster configuration, you must first identify the routing bridge with the element in the
urn:brocade.com:mgmt:brocade-rbridge namespace.

1. Issue the RPC to configure the node in the

urn:brocade.com:mgmt:brocade-threshold-monitor workspace.

2. Under the node, include the /

hierarchy of node elements.

3. Under the node, include the node element to specify that the system will

monitor the security parameters using custom settings rather than the default settings.

4. Under the node, include the leaf element, and specify “custom.”

5. Under the node, specify the node element.

6. Under the node, specify the following elements.

a. In the leaf element, specify “telnet-violation,” or “login-violation.”

b. In the element, specify the allotted amount of time that can pass since the

previous reading. Polling values are taken at different intervals depending on the
configured time base.

c. Under the node element, include the , , and

leaf elements:

In the element, specify the high limit for the specified security
violation type.

In the element, specify the low limit for the specified security violation
type.