Cybersecurity
DevOps Cloud
IT Operations Cloud
When you add a device, Network Automation Software (NA):
To successfully discover and snapshot a device, NA requires full access to the device, and may also require SNMP read access to the device.
Keep in mind that console servers are used to provide access to devices that are not currently reachable on the IP network, and may only be reachable via a serial connection over the device’s console port, for example devices with either a hardware failure, located in protected networks, or that do not run the IP protocol (IPX, ATM, and so on).
If you want to use a standard console server, for example a Cisco AS5xxx, that uses SSH authentication, you can connect from the console server to the target device by Telneting to the console server loopback address with the appropriate port number. To do this, you must:
Telnet Console servers with simple authentication, where the target device is still specified by port, can be supported using a set of Access Variable console_xxx. More complex Telnet console server configurations could require the use of customized bastion host access.
A bastion host is a host that has elevated privileges to access sections of a protected network that most other hosts cannot. This enables a management system to use a bastion host as a “hop” in managing elements on the protected network for which the bastion host has privileges. Typically, a bastion host is used for Internet and DMZ routers/switches, Extranet partners, and secured and/or private networks.
In both cases, NA uses console servers and bastion hosts as a means of accessing a device (usually via the CLI) to perform its normal management functions when other access methods, for example Telnet, SSH, FTP/TFTP, and SNMP, are not available.
If all access methods are enabled, NA uses the following order to access devices: SSH, Telnet, SNMP, and Console. NA also performs file transfers before screen scrapes. For example, SSH+SCP, SSH+TFTP, SSH+Screen Scrape, Telnet+SCP, Telnet+TFTP, Telnet+Screen Scrape, SNMP+TFTP, and Console+Screen Scrape.
For more information, refer to this link :
https://docs.microfocus.com/doc/Network_Automation/2022.05/ManageDevices2