Brocade FastIron Ethernet Switch Security Configuration Guide User Manual
Page 22
Ways to secure management access to Brocade devices (Continued)
TABLE 2
Access method
How the access method is
secured by default
Ways to secure the
access method
See page
Set up local user
accounts
page 35
Configure TACACS/
TACACS+ security
on page 42
Configure RADIUS
security
58
SNMP access
SNMP read or read-write
community strings and the
password to the Super User
privilege level
NOTE
SNMP read or read-write
community strings are always
required for SNMP access to the
device.
Regulate SNMP
access using ACLs
Using ACLs to restrict
SNMP access
24
Allow SNMP access
only from specific IP
addresses
Restricting SNMP access
to a specific IP address
on page 26
Disable SNMP access
on page 31
Allow SNMP access
only to clients
connected to a specific
VLAN
Restricting SNMP access
to a specific VLAN
page 28
Establish passwords to
management levels of
the CLI
Setting passwords for
management privilege
levels
Set up local user
accounts
page 35
Establish SNMP read
or read-write
community strings
on page 42
TFTP access
Not secured
Allow TFTP access
only to clients
connected to a specific
VLAN
Restricting TFTP access
to a specific VLAN
page 29
Disable TFTP access
on page 31
Access for Stacked
Devices
Access to multiple consoles must
be secured after AAA is enabled
Extra steps must be
taken to secure
multiple consoles in a
traditional stack.
Configuring TACACS/
TACACS+ for devices in
a Brocade traditional
stack
on page 43
Security Access
22
FastIron Ethernet Switch Security Configuration Guide
53-1003088-03