Device level security, Configuring device level security, Device level security background information – Enterasys Networks CSX6000 User Manual
Page 167: Device level security 167
Central Site Remote Access Switch 167
C
ONFIGURING
S
ECURITY
L
EVEL
Device Level Security
D
EVICE
L
EVEL
S
ECURITY
C
ONFIGURING
D
EVICE
L
EVEL
S
ECURITY
U
SING
CFGEDIT
1.
Select Device Level Security from the Security Level Menu. If you need guidance to find this
menu, refer to the instructions provided in the
configuration section.
2.
Refer to the chapter
Configuring Device Level Databases
in order to select and configure the
device level database.
U
SING
M
ANAGE
M
ODE
seclevel
Displays the current security level configuration data.
D
EVICE
L
EVEL
S
ECURITY
B
ACKGROUND
I
NFORMATION
Device level security is an authentication process between internetworking devices, in which
authentication takes place automatically. Both bridges and routers support this form of
security.Device level security is available to the network locally through the On-node Device
Database or remotely through CSM or RADIUS Server.
Device level security is the default configuration. Through device level security, you have several
options for validating remote devices and providing security for the network. The security options
available are dependent on the remote device type and the line protocol in use.
The following tables summarize information needed for different device types:
Note:
For further information regarding network interfaces and their corresponding
configuration elements, refer to the network interface information refer to the network
interface information in the
Configuring Basic IP Routing Options
chapter.
Interface Type
Associated Remote
Device Type
Security
Required?
WAN
IP Host
PPP
optional
WAN (Direct Host)
IP Host
PPP
optional
WAN (RLAN)
HDLC Bridge
PPP
REQUIRED
WAN
(UnNumbered)
PPP
REQUIRED
Device Type
Security Options
PPP
CLID, CHAP, PAP
HDLC Bridge
CLID, MAC Address Security
IP Host
CLID, IP Host ID