Overview
Port Requirements
To use the CBH system for resource management, ensure that the communication between the CBH system and the managed resources is enabled. Before you start, check whether your network ACL configuration allows access to CBH and configure the security group of the mapped CBH instance by referring to Table 1.
|
Scenario |
Direction |
Protocol/Application |
Port |
|---|---|---|---|
|
Accessing the CBH system through a web browser (over HTTPS) |
Inbound |
TCP |
443 |
|
Accessing the CBH system through SSH clients |
Inbound |
TCP |
2222 |
|
Accessing the CBH system through Microsoft Terminal Services Client (MSTSC) |
Inbound |
TCP |
20 or 21 |
|
Remotely accessing Linux hosts from the CBH system over SSH clients |
Inbound |
TCP |
22 |
|
Remotely accessing Windows hosts from the CBH system over the RDP client |
Inbound |
TCP |
3389 |
|
Accessing Oracle databases from the CBH system |
Inbound |
TCP |
1521 |
|
Accessing MySQL databases from the CBH system |
Inbound |
TCP |
33306 |
|
Accessing SQL Server databases from the CBH system |
Inbound |
TCP |
1433 |
|
Accessing DB2L databases from the CBH system |
Inbound |
TCP |
50000 |
|
License servers |
Outbound |
TCP |
9443 |
|
HUAWEI CLOUD services |
Outbound |
TCP |
443 |
|
Accessing a CBH system through the SSH client in the same security group as the CBH system |
Outbound |
TCP |
2222 |
|
SMS service |
Outbound |
TCP |
8061 or 80 |
|
Domain name resolution service |
Outbound |
UDP |
53 |
Authentication Methods
CBH provides remote Active Directory (AD), Remote Authentication Dial In User Service (RADIUS), Lightweight Directory Access Protocol (LDAP), and Azure AD authentication methods. You can use existing user passwords on any of those remote servers for identity verification.
|
Authentication Type |
Authentication Description |
|---|---|
|
Local authentication |
Static passwords configured for the CBH system are used for identity verification.
|
|
AD domain authentication |
The passwords of users on the AD server are used for identity verification.
|
|
RADIUS authentication |
The passwords of users on the RADIUS server are used for identity verification.
|
|
LDAP authentication |
The passwords of users on the LDAP server are used for identity verification.
|
|
Azure AD authentication |
The passwords of Microsoft account are used for identity verification. The login page is redirected to the Microsoft Azure login page for you to provide credentials.
|
Login Methods
Different login methods require different credentials. If multifactor verification is enabled, the static password login method becomes invalid.
|
Login Method |
Login Description |
|---|---|
|
Password |
Enter the username and password of your CBH system account. |
|
SMS |
Enter the username and password of your CBH system account, click Send Code, and enter the SMS verification code you will receive. |
|
OTP |
Enter the username and password first, and then enter the mobile one-time password (OTP). |
|
USBKey |
Insert your USB key into your terminal device, select the issued USB key, and enter the corresponding personal identification number (PIN). |
|
OTP token |
Enter the username and password first, and then enter the verification code displayed on your OTP token device. |
Last Article: Logging In to the CBH System
Next Article: Accessing the CBH system through a web browser
Did this article solve your problem?
Thank you for your score!Your feedback would help us improve the website.