Brocade FastIron Ethernet Switch Security Configuration Guide User Manual

Page 394

background image

SSH2

DSA challenge-response authentication

password authenticationSSH2

configuration

RSA challenge-response authentication

use with secure copy

SSH2 client

configuring public key authentication

displaying information

enabling

overview

using

SSH authentication

setting the number of retries

T

TACACS

authentication

enabling

TACACS+

accounting

accounting configuration

authorization

configuring authorization

prompts when server is unavailable

setting the key

specifying servers for individual AAA functions

TACACS and TACACS+

authentication, authorization, and accounting

configuration

configuration considerations

configuring an interface for all packets

configuring authentication-method lists

how they differ

identifying servers

setting optional parameters

setting the retransmission limit

TCP flags and edge port security

Telnet

designated VLANs to Layer 2 switch

Test-Route

set ip next hop

U

user accounts

defining localmanagement privileges

local configuration

local with no passwords

local with unencrypted passwords

user authentication, deactivating

username

configuration

username>

V

VLAN

ip access-group

mac-vlan-permit

no webauth

source-guard enable

webauthcommand

webauth

W

Webauth

accounting

add mac

add mac duration | ethernet duration

attempt-max-num

authenticated-mac-age-time

auth-mode none

auth-mode passcode

auth-mode passcode flush-expired

auth-mode passcode generate

auth-mode passcode grace-period

auth-mode passcode length

auth-mode passcode log syslog | snmp-trap

auth-mode passcode refresh-type duration

auth-mode passcode refresh-type time

auth-mode passcode refresh-type time delete-all

auth-mode passcode resend-log

auth-mode passcode static command

394

FastIron Ethernet Switch Security Configuration Guide

53-1003088-03