AAA, NAC, Guest Access & BYOD

 View Only
last person joined: one year ago 

Solutions for legacy and existing products and solutions, including Clearpass, CPPM, OnBoard, OnGuard, Guest, QuickConnect, AirGroup, and Introspect
Back to Library

How do I disable FTP and/or Telnet on an NAC appliance? 

Jun 03, 2014 07:05 PM

Question

How do I disable FTP and/or Telnet on an NAC appliance?

Answer

Product and Software: This article applies to all ECS product and software versions.

Requirements

  • SSH software (for example: PuTTY)

  • Familiarity with vi editor

Procedure

1) SSH into the NAC appliance.

2) Back up the 'inetd.conf' file:

cp /etc/inetd.conf /etc/inetd.conf.bak

3) Edit the 'inetd.conf' file:

vi /etc/inetd.conf

4) Comment out the following lines by typing a # in front of them.

For FTP:

ftp stream tcp nowait root /usr/sbin/tcpd in.ftpd

For Telnet:

telnet stream tcp nowait root /usr/sbin/tcpd in.telnetd

5) Save the file

:wq

6) Restart 'inetd' by issuing an HUP (hang up) kill:

kill -HUP inetd 
or
kill -HUP <inetd process id> (such as, kill -HUP 1754)

7) Test to ensure you cannot Telnet/FTP into the NAC appliance.

Statistics
0 Favorited
2 Views
0 Files
0 Shares
0 Downloads

Related Entries and Links

No Related Resource entered.