beautypg.com

Generating an ssl certificate, Deleting the ssl certificate, Authentication-method lists – Brocade FastIron Ethernet Switch Security Configuration Guide User Manual

Page 75: Telnet access and snmp access. refer to

background image

Generating an SSL certificate

If the certificate does not automatically generate, enter the following command to
generate it.

Brocade(config)#crypto-ssl certificate generate

Syntax: [no] crypto-ssl certificate generate

If you did not already import a digital certificate from a client, the device can
create a default certificate. To do this, enter the following command.

Brocade(config)#crypto-ssl certificate generate default_cert

Syntax: [no] crypto-ssl certificate generate default_cert

Deleting the SSL certificate

To delete the SSL certificate, enter the following command.

Brocade(config)#crypto-ssl certificate zeroize

Syntax: [no] crypto-ssl certificate zeroize

Authentication-method lists

To implement one or more authentication methods for securing access to the device, you configure
authentication-method lists that set the order in which the authentication methods are consulted.

In an authentication-method list, you specify the access method (Telnet, SNMP, and so on) and the
order in which the device tries one or more of the following authentication methods:

• Local Telnet login password
• Local password for the Super User privilege level
• Local user accounts configured on the device
• Database on a TACACS or TACACS+ server
• Database on a RADIUS server
• No authentication

NOTE
The TACACS/TACACS+, RADIUS, and Telnet login password authentication methods are not
supported for SNMP access.

NOTE
To authenticate Telnet access to the CLI, you also must enable the authentication by entering the
enable telnet authentication command at the global CONFIG level of the CLI.

NOTE
You do not need an authentication-method list to secure access based on ACLs or a list of IP
addresses. Refer to

ACL usage to restrict remote access

on page 23 or

Remote access restrictions

on

page 25.

Generating an SSL certificate

FastIron Ethernet Switch Security Configuration Guide

75

53-1003088-03

See also other documents in the category Brocade Computer Accessories: