This section includes the following topics:
Amaranten Firewall Manager can be instructed to generate a new pair of remote management keys for a firewall, and make sure the new key pair is being used. To generate new keys, first select the target firewall in the tree view of the Security Editor, and then choose Change Remote Management Keys... from the Action->Communication menu. The communication wizard is used in the same way as in the Uploading a configuration section.
A firewall can be reset to its factory default settings using an option in the boot menu available from the local console of the firewall. If this has been done, the firewall will be using the default remote management keys that were originally shipped with the product. As the management data source still contains the keys used before the reset, Amaranten Firewall Manager will be unable to communicate with the firewall.
This can be solved by reverting the remote management keys in the data source to the default keys. To revert to default keys, first select the target firewall in the tree view of the Security Editor, and then choose Revert to Default Remote Management Keys... from the Action->Communication menu. The communication wizard is used in the same way as in the Uploading a configuration section.
Note: When the keys have been reverted and communication with the firewall has been re-established, new keys should be generated immediately to minimize the risk of an unauthorized administrator taking control of the firewall. Please see the section Changing Remote Management Keys for more information.
The local console of the firewall can be protected by a password to prevent tampering. The password can be set initially from the New Firewall wizard, but can also be set later using the change firewall password command.
To change the password, first select the target firewall in the tree view of the Security Editor, and then choose Change Firewall Password... from the Action->Communication menu. The communication wizard will initially is used in the same way as in the Uploading a configuration section. After the firewall selection page, the wizard will query for the new password.
Note: The password is only used for the local console on the firewall.