Pragma TelnetServer offers several different levels of security to meet the security needs of a wide variety of computing environments. The different security features are listed below:
Integration with the Windows
Security Model
Allow only
Configured Users Access to the TelnetServer
Allow only
Configured Groups Access to the TelnetServer
Encrypted Login
between TelnetServer and Pragma’s Console Telnet Client
Encrypted Session
IP Security (Filtering)
Integration with the Windows Security Model:
Pragma TelnetServer is fully integrated with the Windows security model. Each user is verified by their user name and password using the Windows accounts database. This allows only valid Windows users (domain or local) able to establish telnet login sessions. In addition, user accounts need to have “Log on Locally” user rights to be able to logon via telnet successfully (Windows imposes the same restriction for local logins )
Each telnet session started by TelnetServer gets the security context of the user logging on. Windows will enforce all security and access controls on the telnet sessions. All processes started by the telnet session will have the logged-on user as the owner. Similarly, files created on NTFS disks will have the telnet user as the owner of the files.
Allow only Configured Users Access to the TelnetServer:
Pragma TelnetServer allows an administrator to configure how the server sets up the telnet session on a per-user basis. See User Management. The administrator also has the option of allowing only configured users access to the server. With this setting enabled, in addition to needing a valid Windows Username, a user will also need to be configured under TelnetServer.
Allow only Configured Groups Access to the Server:
Using this option, an administrator can limit which Windows users can access the TelnetServer by the Windows groups in which they are members. For example, if only members of the Administrators group are to use the TelnetServer, list the group under the Configured Groups and select that only NT users of configured groups are allowed access to the server. Using this option with the Allow only Configured Users option, a user must be both a member of the allowed groups and allowed users.
Encrypted Login between Pragma TelnetServer and Pragma’s Console Telnet Client:
Using Pragma’s Console Telnet Client (1 license included), the username and password can be encrypted with Pragma Systems’s proprietary encryption. This is accomplished using the /s switch with the Console Telnet Client. TelnetServer can also be configured to accept only encrypted logins. See General Settings.
Encrypted Session with Unlimited Connection Version:
Encrypted sessions implemented with Microsoft’s Crypto system built within Windows NT/95/98. It uses RSA industry standard 40-bit or 128-bit encryption algorithms for the tightest security available. See Encrypted Sessions for more information.
IP Security (Filtering):
The InetD Service can be configured to grant or deny access to the TelnetServer based on IP Address. See Configuring Services in InetD for more information.