R211x-HP Flexfabric 11900 Security Configuration Guide
258
security FIPS mode entry (automatic
reboot), 246
sec
urity FIPS mode exit (automatic reboot), 249
B
bi
nding
security IPsec source interface to policy, 141
blac
khole routing (ARP), 217
C
ch
ecking
security IPsec ACL de-encapsulated packet
check, 14 0
s
ecurity uRPF loose check mode, 234
sec
urity uRPF strict check mode, 234
cl
assifying
security IPsec QoS pre-classify enable, 141
cl
earing
security IPsec packet DF bit clear, 142
cl
ient
security 802.1X authentication, 65
sec
urity 802.1X authentication (access device
initiated), 64
sec
urity 802.1X authentication
(client-initiated), 64
sec
urity 802.1X authentication client timeout
timer, 72
sec
urity 802.1X authentication configuration, 76
sec
urity 802.1X authentication initiation, 64
sec
urity 802.1X configuration, 69, 69
command
s
ecurity AAA command accounting method, 12
s
ecurity AAA command authorization
method, 12
c
ommunication
security peer public key entry, 122
c
omparing
security 802.1X EAP relay/termination
authentication modes, 65
co
mplexity checking (password control), 107
c
omposition checking (password control), 106
conditi
onal self-test, 245
co
nfiguring
IP source guard, 211
por
t security, 88, 91 , 97
por
t security client
macAddressElseUserLoginSecure, 102
por
t security client userLoginWithOUI, 99
por
t security feature, 94
por
t security intrusion protection feature, 94
por
t security MAC address autoLearn mode, 97
por
t security NTK feature, 94
por
t security secure MAC addresses, 95
sec
urity 802.1X, 69, 69
sec
urity 802.1X authentication, 76
sec
urity 802.1X authentication trigger function, 73
sec
urity 802.1X online user handshake function, 73
sec
urity 802.1X quiet timer, 75
s
ecurity AAA, 1, 17
sec
urity AAA authentication methods for ISP
domain, 42
s
ecurity AAA HWTACACS schemes, 31
s
ecurity AAA HWTACACS server SSH user
AAA, 46
s
ecurity AAA ISP domain accounting methods, 44
s
ecurity AAA ISP domain attributes, 42
s
ecurity AAA ISP domain authorization methods, 43
s
ecurity AAA ISP domain methods, 41
sec
urity AAA LDAP administrator attributes, 39
s
ecurity AAA LDAP schemes, 38
sec
urity AAA LDAP server IP address, 38
s
ecurity AAA LDAP server SSH user
authentication, 53
s
ecurity AAA LDAP user attributes, 39
s
ecurity AAA local user, 18
s
ecurity AAA local user attributes, 19
s
ecurity AAA RADIUS accounting-on feature, 30
s
ecurity AAA RADIUS schemes, 23
sec
urity AAA RADIUS security policy server IP
address, 30
s
ecurity AAA RADIUS server SSH user
authentication+authorization, 50
s
ecurity AAA scheme, 18
s
ecurity AAA SSH user local
authentication+HWTACACS
authorization+RADIUS accounting, 48
s
ecurity AAA user group attributes, 22
sec
urity ARP active acknowledgement, 222
sec
urity ARP attack protection, 216
s
ecurity ARP attack protection (unresolvable IP
attack), 217
sec
urity ARP automatic scanning, 229
sec
urity ARP detection, 225