Dell OpenManage Enterprise Modular Edition Version 2.00.00 for PowerEdge MX7000 Security Configuration Guide

Login security settings

OME-Modular supports only secure connections to appliance over TLS v1.2 channel. It redirects all HTTP requests to HTTPS and ensures that credentials are communicated through a secure channel.

You can use the OME-Modular web interface to access the security configuration settings on the Application Settings > Security page. You can restrict incoming connections to the application by providing network IP details in the Restrict Allowed IP Range option or by selecting the Login Lockout Policy and:

• Selecting lockout count enforcement by username that is attempted or from IP address or both.
• Entering the number of unsuccessful attempts after which OME-Modular must prevent the user from further logging in, in the Lockout Fail Count text box. The default value is three attempts.
• Entering the duration for which OME-Modular must display information about a failed attempt, in the Lockout Fail Window text box. The default value is 30 seconds.
• Entering the duration for which the user is prevented from making any login attempt after multiple unsuccessful attempts, in the Lockout Penalty Time text box. The default value is 900 seconds.

A security banner is also displayed on the OME-Modular Login page which states that you are accessing the system in compliance with the security policy of your organization. You can update the security banner message using the API, api/Actions/ApplicationService.SetSecurityPolicyMessage. The message can have a maximum of 512 characters. For more information, see the Dell OpenManage Enterprise - Modular Edition RESTful API Guide.