Release Notes

Table Of Contents

12 System Firmware Version 5.1.1.7

 SNTP over IPv6

SNTP operates over IPv4 and IPv6 and may be configured using IPv4 or IPv6 addresses or DNS.

 Strong Passwords

The strong passwords feature allows administrators to specify that local switch passwords meet certain characteristics

considered to enhance network security.

Administrators are advised that the minimum character classes configuration must be enabled (value equal to 1 or

greater) along with enabling the strong password feature before the other minimum character class configurations are

enforced. These character class configurations are:

• Minimum number of uppercase letters.

• Minimum number of lowercase letters.

• Minimum number of numeric characters.

• Minimum number of special characters

The password strength restrictions do not apply to users configured for the internal authentication server.

 Switch Auditing

Switch auditing enhances network security by logging sensitive administrative actions. Switch auditing logs the

following actions:

• Successful login

• Unsuccessful attempt to login

• Logout out from the switch

• Timed out logout from the switch

• Download file to the switch

• Upload file from the switch

• Remove file from the flash

• File changes on the flash

• Clear configuration

• Add or remove user

• Change user access level

Use of a SYSLOG server for monitoring network events is highly recommended.

 Authentication

The PowerConnect switches support authentication via a number of methods. The methods are specified in named

lists. Lists may be assigned to the enable and login access methods. The supported authentication methods are:

• Enable

• Line

• RADIUS

• TACACS

• IAS

• Local

• None

Methods are attempted in the order specified in the authentication list. If the authentication method rejects

authentication, the user login is rejected. If an authentication method fails, e.g. unable to contact the authentication

server, the next method in the list is attempted. The IAS, local and none methods can never fail so, if specified, must

be last in the list.

The 802.1X authentication list cannot be named and only supports the RADIUS, IAS, or none authentication methods.

The 802.1X authentication can only have a single method.