Manualshelf

Configuration Guide User guide

ManualsBrandsBrocade ManualsComputer AccessoriesFastIron
161162163164165166167168169170
FastIron Configuration Guide 109
53-1002494-02
Chapter
4
Security Access
Table 19 lists the individual Brocade FastIron switches and the security access features they
support. These features are supported in the Layer 2, base Layer 3, edge Layer 3, and full Layer 3
software images, except where explicitly noted.
This chapter explains how to secure access to management functions on a Brocade device.
NOTE
For all Brocade devices, RADIUS Challenge is supported for 802.1x authentication but not for login
authentication. Also, multiple challenges are supported for TACACS+ login authentication.
TABLE 19 Supported security access features
Feature FESX
FSX 800
FSX 1600
FWS FCX ICX 6610 ICX 6430
ICX 6450
Authentication, Authorization and
Accounting (AAA):
RADIUS
TACACS/TACACS+
Yes Yes Yes Yes Yes
AAA support for console commands Yes No Yes Yes Yes
Restricting remote access to management
functions
Yes Yes Yes Yes Yes
Disabling TFTP access Yes No Yes Yes Yes
Using ACLs to restrict remote access Yes Yes Yes Yes Yes
Local user accounts Yes Yes Yes Yes Yes
Local user passwords Yes Yes Yes Yes Yes
SSL security for the Web Management
Interface
Yes Yes Yes Yes Yes
AAA authentication-method lists Yes Yes Yes Yes Yes
Packet filtering on TCP flags No Yes Yes Yes Yes