Aruba Airwave

 View Only
last person joined: yesterday 

Expand all | Collapse all

Disable Telnet and Enable SSH on Airwave

This thread has been viewed 14 times
  • 1.  Disable Telnet and Enable SSH on Airwave

    Posted Jul 18, 2024 07:28 AM

    As per compliance requirement customer wants to disable telnet and enable SSH on Airwave AMP-8.3.0.1-x86_64.ova and need verification commands  that telnet is disabled and SSH is enabled. Appreciate your support on the same



  • 2.  RE: Disable Telnet and Enable SSH on Airwave

    Posted Jul 18, 2024 09:14 AM

    Airwave doesn't have telnet enabled, and SSH is already enabled. Don't think you can enable telnet, nor you can disable SSH.

    You can very that by attempting to telnet to Airwave (should not work) and attempt SSH (expected to work).



    ------------------------------
    Herman Robers
    ------------------------
    If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

    In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
    ------------------------------



  • 3.  RE: Disable Telnet and Enable SSH on Airwave

    Posted Jul 22, 2024 03:01 AM

    Herman Robers thanks for clarifying. Compliance need documented evidence. I have looked in Airwave Best practices document but could/t find it. Appreciate if you can refer document for evidence. 




  • 4.  RE: Disable Telnet and Enable SSH on Airwave

    Posted Jul 22, 2024 05:46 AM

    I don't think there are documents to confirm that a product does not have telnet enabled if telnet is not supported. Telnet is a protocol of the 1970s and should not show up in any modern product, IMHO, so it's not documented either. You may reach out to your Aruba partner and see if they can create a statement or so, or tell compliance that telnet is not supported to access Airwave, so there is no documentation on how to disable that.



    ------------------------------
    Herman Robers
    ------------------------
    If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

    In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
    ------------------------------



  • 5.  RE: Disable Telnet and Enable SSH on Airwave

    Posted Aug 01, 2024 03:22 AM

    HI Herman 

    I am working for Aruba partner and customer compliance require document evidence that telnet is disable by default. Without official documented evidence I can't move forward to production. Appreciate your support if you can provide official document evidence. 




  • 6.  RE: Disable Telnet and Enable SSH on Airwave

    Posted Aug 01, 2024 09:58 AM

    As mentioned, I have not seen documentation on features that are not supported. You can't enable or disable a feature that does not exist, so it can't be documented.

    For the customers that I know, it's enough to state that telnet is not supported to access Airwave, and you can back that up with a test of telnet to Airwave which fails. Or provide the documentation of Airwave to the security team and let them lookup theirselves for proof that Airwave would accept telnet connections. Telnet is a protocol that needs to be phased out, which is a correct goal of the security team, but the assumption that all products support telnet is just wrong for the same reason.

    If you need a legally binding document, you should reach out to HPE Support or your local HPE Team.



    ------------------------------
    Herman Robers
    ------------------------
    If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

    In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
    ------------------------------