beautypg.com

Firewalls, User’s guide, Mete red rac k pdu – Dell Metered PDU LED User Manual

Page 147

background image

USER’S GUIDE

Mete

red Rac

k

PDU

144

and a Certificate Authority of your own company or agency has probably already
loaded its CA certificate to the browser store of each user’s browser.) Therefore,
you do not have to upload a root certificate to the browser of each user who needs
access to the Rack PDU.

– You choose the length of the public key (RSA key) that is used for setting up an

SSL session (use 1024 bits, which is the default setting, or use 2048 bits to provide
complex encryption and a high level of security).

– The server certificate that you upload to the Rack PDU enables SSL to

authenticate that data are being received from and sent to the correct Rack PDU.
This provides an extra level of security beyond the encryption of the user name,
password, and transmitted data.

– The browser matches the digital signature on the server certificate that you

uploaded to the Rack PDU with the signature on the CA root certificate that is
already in the browser’s certificate cache to provide additional protection from
unauthorized access.

Disadvantages:

– Setup requires the extra step of requesting a signed root certificate from a

Certificate Authority.

– An external Certificate Authority may charge a fee for providing signed certificates.

Firewalls

Although some methods of authentication provide a higher level of security than others,
complete protection from security breaches is almost impossible to achieve.
Well-configured firewalls are an essential element in an overall security scheme.