API tools faq
paste
Guest User

Untitled

a guest
Jul 17th, 2018
80
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.12 KB | None | 0 0
raw download clone embed print report
  1. [Header]
  2. DebugStrings=on
  3. AbortOnError=off
  4. ConcurrentSectionLimit=100
  5. GlobalReportFile=|$scriptpath||$scriptfilename|-Report Log |$date| |$time|.log
  6. GlobalReportFileIncludeAll=on
  7.  
  8. //-----------------------------------------------------------------------------
  9.  
  10. [AddressList:Processors]
  11. auto AV3-BOARDROOM
  12. // auto 192.168.1.100
  13. // ssh PRO3-OFFICE
  14. // Add IPs or Hostnames as needed - Use SSH or Auto (not CTP)
  15.  
  16. [Variables]
  17. AdminAccountUsername=AdminUN123
  18. AdminAccountPassword=AdminPW123
  19. UserAccountUsername=UserUN123
  20. UserAccountPassword=UserPW123
  21. // Note minimum password length is 6 characters
  22.  
  23. //-----------------------------------------------------------------------------
  24.  
  25. [Enable Authentication On Processors]
  26. Connect=AddressList:Processors
  27. LogComment "Connected to |$scriptconnect|. "
  28. CommunicationsSendAndWait "AUTH\r",5,true,>
  29. TestResults 0,has,"OFF"
  30. IfSuccess
  31. LogComment "Authentication is off. "
  32. CommunicationsSendAndWait "AUTH ON\r",5,true,Username:
  33. TestResults 0,has,"create"
  34. IfSuccess
  35. LogComment "First time enabling Authentication. "
  36. LogComment "Creating new Administrator account. "
  37.  
  38. CommunicationsSendAndWait "|AdminAccountUsername|\r",5,true,Password:
  39. CommunicationsSendAndWait "|AdminAccountPassword|\r",5,true,password:
  40. CommunicationsSendAndWait "|AdminAccountPassword|\r",5,true,ON
  41.  
  42. LogComment "Creating User account. "
  43. CommunicationsSendAndWait "ADDUSER -N:|UserAccountUsername| -P:|UserAccountPassword|",5,true,created.
  44. CommunicationsSendAndWait "ADDUSERTOGROUP -N:|UserAccountUsername| -G:USERS",5,true,'USERS'.
  45. Else
  46. LogComment "Authentication enabled prior. "
  47. CommunicationsSendAndWait "|AdminAccountUsername|\r",5,true,Password:
  48. CommunicationsSendAndWait "|AdminAccountPassword|\r",5,true,>
  49. TestResults 0,has,"Invalid"
  50. IfSuccess
  51. LogComment "Login with Admin credentials failed. Restoring processor to clear out old Admin account. "
  52. CommunicationsSendAndWait "RESTORE\r",5,true,(Y or N)?
  53. CommunicationsSend "Y\r"
  54. Else
  55. LogComment "Login with Admin credentials successful. Authentication re-enabled. "
  56. LogComment "Creating User account. "
  57. CommunicationsSendAndWait "ADDUSER -N:|UserAccountUsername| -P:|UserAccountPassword|",5,true,created.
  58. CommunicationsSendAndWait "ADDUSERTOGROUP -N:|UserAccountUsername| -G:USERS",5,true,'USERS'.
  59. EndIf
  60. EndIf
  61. Else
  62. LogComment "Authentication has already been enabled on this processor. "
  63. Endif
  64.  
  65. //--------------------------- AUTH ON FOR FIRST TIME --------------------------
  66. // CP3N>auth on
  67. // Please create a local administrator account.
  68. // Username: UserName123!
  69. // Password: ************
  70. // Verify password: ************
  71. //
  72. // An administrator account was successfully created.
  73. // Authentication is now ON.
  74. // SSL is currently off, turning it on using a self-signed certificate...
  75. // Reboot to complete change.
  76. // Reboot to take effect....
  77. //--------------------------- AUTH ENABLED PREVIOUSLY ------------------------
  78. // CP3N>auth on
  79. // Please enter your administrator's credentials.
  80. // Username: UserName123!
  81. // Password: ************
  82. //
  83. // Authentication is now ON.
  84. // SSL is currently off, turning it on using a self-signed certificate...
  85. // Reboot to complete change.
  86. // Reboot to take effect....
  87. //--------------------------- ADDITIONAL INFO --------------------------------
  88. // * Additional Info *
  89. // Note enabling Authentication enables Self-Signed SSL by default
  90.  
  91. // To harden further, disable fallback & only allow strong cyphers
  92. // CommunicationsSendAndWait "SSL SELF TLSONLY\r",5,true,>
  93. // CommunicationsSendAndWait "CIPHER STRONG\r",5,true,>
  94.  
  95. // To harden even further, instead enable CA issued certificates & extended secure gateway
  96. // CommunicationsSendAndWait "SSL CA -P:PrivateKeyFilePassword123!\r",5,true,>
  97. // CommunicationsSendAndWait "SECUREGATEWAYMODE secureext\r",5,true,>
  98.  
  99. // SSL can otherwise be disabled if desired
  100. // CommunicationsSendAndWait "SSL OFF\r",5,true,>
  101.  
  102. // Please review Secure Deployment Guide & Security Audit Tool OLH
  103. // https://support.crestron.com/app/answers/answer_view/a_id/5571
  104. //-----------------------------------------------------------------------------
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!