| |
Each time you make changes to your configuration, generate a configuration report to verify your configuration. You can also use the configuration report for subsequent troubleshooting efforts. To generate a configuration report, load NIASCFG and follow this path:
Select View Status for NIAS > Remote Access > Generate Configuration Report
You are given the option of sending the report to the screen or a disk file. If you save the configuration report to a file, you can print the file or save it to compare with future reports. Table 22 shows the information generated for a configuration report.
By default, all options are enabled. The F2 key enables you to customize options. For example, if you have many users, you can turn off User Information to generate a shorter, quicker report. You can enable or disable options before running the configuration report.
Table 22. Configuration Report Information
| Report Entry | Description |
|---|---|
Warning messages |
Consistency. These warnings display inconsistencies in port configurations, licenses, user restrictions to ports and services, and service restrictions to ports.These service-specific consistency checks help you determine configuration errors in the Configure Service windows: ARAS-specific messages. Make sure valid zone names are specified for user and global restrictions. PPPRNS-specific messages. Make sure the correct protocol is selected for security. NCS-specific messages. Group names and port names defined in NIASCFG are equivalent to general names and specific names (with a slight difference) of NetWare Asynchronous Services InterfaceTM (NASITM) users. The difference is in the number of characters supported. NIASCFG supports a maximum of 15 characters for group and port names. NCS/NASI supports a maximum of 8 characters in general names and 14 characters in specific names. The inconsistency exists because third-party NASI applications are written to the specification defined for general and specific names; remote access is enhanced to support more characters. |
Directory context and container context |
Specifies the Directory context. Verify that it is set to the container in which most of your remote access users exist. This context is useful when you must browse NIASCFG menus to set up user configuration parameters. The Directory context is set in NIASCFG in the remote access Set Up... window. The Container context (Connect Rights Level) is defined when you create the CONNECT object in the Novell Directory ServicesTM (NDSTM) tree during remote access installation. All NetWare users in the Connect container and below can access remote access, except users in the containers that are blocked with the Inheritance Rights Filter. A user who does not belong to the Container context might fail to establish a connection. You cannot change the Container context to allow users to establish connections. However, you can modify the CONNECT object's rights to the user's container. Use the appropriate NetWare administrative utility to grant the CONNECT object Browse rights and Read attributes to the container. This allows the users in that container to access remote access. To allow the CONNECT object to manage the user's connect parameters, also grant the CONNECT object Write attribute rights to the container. |
Installed and loaded remote access services |
Displays the installed and loaded remote access services. These are installed automatically when you install remote access. However, load only the services that you require. If you do not see the proper services loaded, choose Select Remote Access Services from the Set Up... window and load the required services. |
Installed and enabled third-party security services |
Displays the installed and enabled third-party security services. Third-party security devices are installed separately from remote access. When at least one third-party security device is installed, the third-party security entries appear in the configuration report. Verify that the third-party security product is enabled or disabled as required by your installation. |
Defined communication ports |
Displays the port mapping, modem type, and link parameters for the list of defined ports. Defined Remote Access Ports. Verify that the ports are defined correctly for dialing in, dialing out, or both. Port groups defined. If a port group is named incorrectly or contains the wrong port, refer to Port Groups for instructions on changing the name or configuration. |
Authorized users for ports and services |
Displays the authorized users for the ports and services. Make sure that only valid user IDs are allowed to access these ports and services. Any User means all valid users not restricted by the Connect Rights Level. If you want to restrict some users to ports or services, refer to Remote Access Security. |
Authorized ports for services |
If Any Port is defined to use the service, then all remote access ports can use that service. If you want to restrict specific ports to a service, refer to Remote Access Security. |
Services configured to use ports |
Displays the same information as Authorized ports for services, but in a different format. The ports and the services each has access to are listed in alphabetic order. |
System defaults |
Displays the global defaults: maximum connect time, default dial-back mode, idle timeout, dial-out restriction, and remote access password restriction. The system defaults for maximum connect time, dial-back mode, and dial-out restrictions are overridden by the defaults set for the individual user. |
User information |
Displays the configuration parameters for each user. |
Configuration reports for NCS, PPPRNS, and ARAS |
Displays the configuration parameters for NCS, PPPRNS, and ARAS. For NCS, this is the list of general names that NASI, WIN2NCS, and MAC2NCS users see on their workstations. The default group in the list is ANY_PORT; this group contains all remote access ports. The default general name for DIALIN ports is DIALIN. To make any changes to the NCS configuration parameters, refer to Configuring NCS. For PPPRNS, this is the list of configured options including Enabled Security, enabled IP and IPX interfaces, ISDN short hold parameters, and whether PPP ISDN Multilink is enabled. For ARAS, this is the list of configured options for all ARAS clients. The list of Setup Options includes Forward Packets to AppleTalk with CRC Embedded, Support Version for Remote Access Clients, whether to prompt users for remote client password, and the optional ARAS greeting. The Default Restriction Zone List and User Restricted Zone List are also included. |
| |