Configuration manual
Fixed Switch Configuration Guide 26-1
26
Configuring Security Features
This chapter. describes the following security features and how to configure them on the Fixed
Switch platforms.
Security Mode Configuration
About the Security Mode
The security mode of a Fixed Switch determines how the switch performs all cryptographic
functions. The security mode is set with the set security profile command. Currently, the modes
supported are:
• Normal, when all supported cryptographic algorithms are available to be selected and used.
• Federal Information Processing Standard (FIPS) 140-2 mode, when the switch adheres to the
FIPS 140-2 Security Requirements for Cryptographic Modules. In this mode, all cryptographic
functions are performed by the FIPs Cryptographic Module, including SSH, SSL, SNMPv3,
and password encryption. Optional selection of non-FIPS approved algorithms will fail.
For information about... Refer to page...
Security Mode Configuration 26-1
IPsec Configuration 26-4
RADIUS Management Authentication 26-6
MAC Locking 26-7
TACACS+ 26-11
Service ACLs 26-16
DHCP Snooping 26-18
Dynamic ARP Inspection 26-22
For information about... Refer to page...
About the Security Mode 26-1
Security Mode and SNMP 26-2
Security Mode and User Authentication and Passwords 26-3
Security Mode and System Logging 26-3
Security Mode and File Management 26-4