6 – Index
erase certificate key pair … 7-9
erase host key pair … 7-9
generate CA-signed certificate … 7-15
generate host key pair … 7-9
generate self-signed … 7-12
generate self-signed certificate … 7-9, 7-12
generate server host certificate … 7-9
generating Host Certificate … 7-8
host key pair … 7-9
key, babble … 7-12
key, fingerprint … 7-12
man-in-the-middle spoofing … 7-18
OpenSSL … 7-2
operating notes … 7-6
operating rules … 7-6
passwords, assigning … 7-7
prerequisites … 7-5
remove self-signed certificate … 7-9
remove server host certificate … 7-9
reserved TCP port numbers … 7-20
root … 7-4
root certificate … 7-4
self-signed … 7-4, 7-12
self-signed certificate … 7-4, 7-9, 7-12
server host certificate … 7-9
SSL server … 7-3
SSLv3 … 7-2
stacking, security … 7-6
steps for configuring … 7-5
supported encryption methods … 7-3
terminology … 7-3
TLSv1 … 7-2
troubleshooting, operating … 7-21
version … 7-2
zeroize … 7-10, 7-11
stacking
SSH security … 6-8
SSL security … 7-6
T
TACACS
aaa parameters … 4-13
authentication … 4-3
authentication process … 4-23
authentication, local … 4-25
authorized IP managers, effect … 4-28
authorized IP managers, precedence … 10-2
configuration, authentication … 4-11
configuration, encryption key … 4-22
configuration, server access … 4-18
configuration, timeout … 4-23
configuration, viewing … 4-10
encryption key … 4-6, 4-18, 4-19, 4-22
encryption key, general operation … 4-26
encryption key, global … 4-23
general operation … 4-2
IP address, server … 4-18
local manager password requirement … 4-29
messages … 4-28
NAS … 4-3
overview … 1-2
precautions … 4-5
preparing to configure … 4-8
preventing switch lockout … 4-18
privilege level code … 4-7
server access … 4-18
server priority … 4-21
setup, general … 4-5
show authentication … 4-8
single login … 4-16
single sign-on … 4-16
system requirements … 4-5
server … 4-3
testing … 4-5
timeout … 4-18
troubleshooting … 4-6
unauthorized access, preventing … 4-7
web access, controlling … 4-27
web access, no effect on … 4-5
tacacs-server … 4-8
TCP
reserved port numbers … 7-20
TLS
See
RADIUS.
troubleshooting
authorized IP managers … 10-12
trunk
LACP, 802.1X not allowed … 8-17
See also
LACP.
U
user name
cleared … 2-5
Содержание ProCurve 2510-24
Страница 1: ...Access Security Guide 2510 www procurve com ProCurve Switches Q 11 XX 2510 24 U 11 XX 2510 48 ...
Страница 2: ......
Страница 3: ...ProCurve Series 2510 Switches Access Security Guide July 2008 ...
Страница 26: ...1 10 Getting Started Need Only a Quick Start ...
Страница 104: ...4 30 TACACS Authentication Configuring TACACS on the Switch ...
Страница 144: ...5 40 RADIUS Authentication Authorization and Accounting Messages Related to RADIUS Operation ...
Страница 174: ...6 30 Configuring Secure Shell SSH Messages Related to SSH Operation ...
Страница 196: ...7 22 Configuring Secure Socket Layer SSL Common Errors in SSL Setup ...
Страница 294: ...9 40 Configuring and Monitoring Port Security Configuring Protected Ports ...
Страница 308: ...10 14 Using Authorized IP Managers Operating Notes ...
Страница 316: ...8 Index ...
Страница 317: ......