HP 2600 Series User Manual
Access security guide
Table of contents
Document Outline
- Access Security Guide cover.pdf
- !Value_Line-Security-12_2008.pdf
- ProCurve Switch 2600 Series Switch 2600-PWR Series Switch 2800 Series Switch 4100gl Series Switch 6108
- Product Documentation
- Getting Started
- Configuring Username and Password Security
- Web and MAC Authentication for the Series 2600/2600-PWR and 2800 Switches
- Contents
- Overview
- How Web and MAC Authentication Operate
- Terminology
- Operating Rules and Notes
- General Setup Procedure for Web/MAC Authentication
- Configuring the Switch To Access a RADIUS Server
- Configuring Web Authentication
- Configuring MAC Authentication on the Switch
- Show Status and Configuration of Web-Based Authentication
- Show Status and Configuration of MAC-Based Authentication
- Show Client Status
- TACACS+ Authentication
- Contents
- Overview
- Terminology Used in TACACS Applications:
- General System Requirements
- General Authentication Setup Procedure
- Configuring TACACS+ on the Switch
- How Authentication Operates
- Controlling Web Browser Interface Access When Using TACACS+ Authentication
- Messages Related to TACACS+ Operation
- Operating Notes
- RADIUS Authentication and Accounting
- Contents
- Overview
- Terminology
- Switch Operating Rules for RADIUS
- General RADIUS Setup Procedure
- Configuring the Switch for RADIUS Authentication
- Local Authentication Process
- Controlling Web Browser Interface Access When Using RADIUS Authentication
- Configuring RADIUS Accounting
- Viewing RADIUS Statistics
- Changing RADIUS-Server Access Order
- Messages Related to RADIUS Operation
- Configuring Secure Shell (SSH)
- Contents
- Overview
- Terminology
- Prerequisite for Using SSH
- Public Key Formats
- Steps for Configuring and Using SSH for Switch and Client Authentication
- General Operating Rules and Notes
- Configuring the Switch for SSH Operation
- 1. Assign Local Login (Operator) and Enable (Manager) Password
- 2. Generate the Switch’s Public and Private Key Pair
- 3. Provide the Switch’s Public Key to Clients
- 4. Enable SSH on the Switch and Anticipate SSH Client Contact Behavior
- 5. Configure the Switch for SSH Authentication
- 6. Use an SSH Client To Access the Switch
- Further Information on SSH Client Public-Key Authentication
- Messages Related to SSH Operation
- Configuring Secure Socket Layer (SSL)
- Contents
- Overview
- Terminology
- Prerequisite for Using SSL
- Steps for Configuring and Using SSL for Switch and Client Authentication
- General Operating Rules and Notes
- Configuring the Switch for SSL Operation
- Common Errors in SSL Setup
- Configuring Port-Based Access Control (802.1X)
- Contents
- Overview
- How 802.1X Operates
- Terminology
- General Operating Rules and Notes
- General Setup Procedure for Port-Based Access Control (802.1X)
- Configuring Switch Ports as 802.1X Authenticators
- 802.1X Open VLAN Mode
- Option For Authenticator Ports: Configure Port-Security To Allow Only 802.1X Devices
- Configuring Switch Ports To Operate As Supplicants for 802.1X Connections to Other Switches
- Displaying 802.1X Configuration, Statistics, and Counters
- How RADIUS/802.1X Authentication Affects VLAN Operation
- Messages Related to 802.1X Operation
- Configuring and Monitoring Port Security
- Contents
- Overview
- Planning Port Security
- Port Security Command Options and Operation
- MAC Lockdown
- MAC Lockout
- IP Lockdown
- Web: Displaying and Configuring Port Security Features
- Reading Intrusion Alerts and Resetting Alert Flags
- Operating Notes for Port Security
- Traffic/Security Filters (ProCurve Series 2600/2600-PWR and 2800 Switches)
- Using Authorized IP Managers
- ProCurve Switch 2600 Series Switch 2600-PWR Series Switch 2800 Series Switch 4100gl Series Switch 6108