The following describes how to login and log
out of the system, and manage user settings.
System Access Overview
To access the controller web UI, you must authenticate yourself with a username and password. You can use the main toolbar to access Learning Network License functionality.
The system comes with one default user account, admin, which you can use to log into the controller web UI, using the default password, cisco. After you login for the first time, the system prompts you to change the password and confirm the new password.
Using this account, you can create additional user accounts. For each new account, the system prompts the user to change their password on first login.
Passwords must be eight characters or longer.
There is no limit on the character type.
When you log into the system, the controller web UI displays your user account and role membership.
Logging into the Controller Web UI
When you installed the controller, you defined an IP address for the controller web UI, and reset the administrator user account (admin) password. Log in with the temporary password printed to the controller VM console. After you log in once, you must change the password and confirm the new password.
| In your web browser, navigate to https://controller-web-ip-address, then enter your controller web username and password when prompted.
By default, the system creates session tokens to identify a session using 192 entropy bits, and caches them for 1 hour. User sessions time out after 20 minutes of inactivity, or 1 day overall, whichever comes first. API user sessions time out after 365 days, regardless of activity. The system flushes the session cache every minute. If you log in and establish a session, then log in again from a different location with the same user name, the system closes the prior session.
You can modify these default session values on the controller at ~/SCA/sca.conf to allow multiple active sessions per user name.
Enabling Concurrent Sessions
The configuration file contains several layers of nested brackets. When you update the file to add or update the api node, make sure that you nest it within the sln bracket. See the following for an example.
invalidatePreviousSessionsOnLogin = false
| ||Command or Action||Purpose|
Example:user@host:~$ cd ~/SCA
| Change to the /SCA directory.
sudo vi sca.conf, then input your password when prompted|
Example:user@host:~/SCA$ sudo vi sca.conf
| Edit the sca.conf configuration file.
|Step 3||Update the configuration file to include or modify the api node, as described above.
|| Update the configuration file to include invalidatePreviousSessionsOnLogin = false.
|Step 4||Press Esc, then enter :wq! and press Enter.
|| Save your changes and exit the editor.
sudo service ciscosln-sca restart
Example:user@host:~/SCA$ sudo service ciscosln-sca restart
Restart the controller processes.
Persisted User Interface Display Settings
The system stores several UI display settings on your local workstation browser using a cookie. Some examples include:
panel order in the anomaly detail view
expanded or collapsed columns in the anomaly inbox and anomaly detail view
user preferences, such as date and time formatting
Each time you log in as a user on that browser, the system loads your stored display settings.
For example, if you log into the controller web UI using Google Chrome and move the anomalous features graph pane in the anomaly detail view to the top, each time you log back in using Chrome on this workstation, the system displays the anomaly detail view with the anomalous features graph pane at the top. If you change this pane's position and log out, the next time you log in using Chrome, the system displays the anomaly detail view with the pane in the new position.
The first time you log into the controller web UI on this workstation with Mozilla Firefox, there is no stored cookie. Instead of displaying the anomalous features graph pane at the top of the anomaly detail view, the system displays the anomaly detail view panes in default order. If you move the anomalous features graph pane to the bottom of the list, log out, and log back in using Firefox, the system displays the anomaly detail view with the anomalous features graph pane at the bottom.
The main toolbar, across the top of the UI, contains the
DASHBOARD - Displays an overview of anomaly statistics
INBOX - Displays anomalies the system reports
MITIGATION - Displays a list of configured mitigation
CONTROLLER - Displays health status for the controller and controller modules
AGENTS - Displays the system's agents
USERS - Displays user accounts
HELP - Displays keyboard shortcuts and links to the system
SETTINGS - Displays various user display and password
LOGOUT - Logs you out of the system
The DASHBOARD menu option displays an overview of anomaly metrics for the entire system. It also displays traffic statistics and an anomaly overview per agent.
The INBOX menu option displays all reported anomalies of interest in a table format. Each row displays the anomaly's severity and description, along with the agent that reported the anomaly, and other identifying information. Anomalies are sorted by timestamp, newest first. Unviewed anomalies are highlighted. You can select an anomaly and view anomaly details to understand better why the system reported the anomaly. If an anomaly is relevant, you can provide feedback to the system and mark it as important from the anomaly detail view.
The MITIGATION menu option displays all configured mitigations in a table format. Each row displays the mitigation's status, the agents enforcing it, 5-tuple (source and destination IP address and port, and IP protocol) to match on, and the timeframe in which the mitigation is active. You can filter the mitigations table, to better locate a specific mitigation. You can create new mitigations, and edit or delete existing mitigations.
Controller Menu Option
The CONTROLLER menu option displays the health status of the controller and controller modules.
Agents Menu Option
The AGENTS menu option displays information about all agents communicating with the controller, and agent processes. You can add and configure agents.
Users Menu Option
The USERS menu option displays all user accounts, and their user role membership. You can create and modify user accounts, as well as enable and disable them.
The HELP menu option displays a list of keyboard shortcuts, as well as a link to the Learning Network License user documentation.
The SETTINGS menu option contains user display preferences. You can modify your date and time display format, select a timezone, set the number of items displayed per page, enable tooltip display, and enable hostname display when the system has that information.
You can also change your password from the SETTINGS page.
User Display Preferences
Each user account possesses its own display preferences, which you can change from the
Settings menu option. These options including changing the display of the date and
time, the number of items per page, tooltips, and hostnames.
|| Choose a datestamp format from the
Select dates format drop-down list.
||Choose a time format from the
Select time format drop-down list.
||Choose your timezone from the
Select timezones for dates formatting
||Choose a number from the Number of items per page
|| Check the
Show tooltips check box to display tooltips
when you hover your pointer over UI hotspots.
Display hostnames rather than IPs when
possible check box to have the system display a host's name, if
that information is available. If the host name is unavailable, the system
displays the IP address.
Changing Your Password
Select Settings. |
your current password in the Current pass phrase field.|
your new password in the New pass phrase field.|
The Logout menu option, when selected, logs you out of the controller web UI.
Logging Out of the Controller Web UI