R211x-HP Flexfabric 11900 Security Configuration Guide

ManualsBrandsHP ManualsNetwork HardwareHP FlexFabric 11000 Switch Products

266

maintaining, 210

static binding entry, 206

stati

c configuration, 215

stati

c entry (global), 210

stat

ic entry (on interface), 210

IS

AKMP, 15 0 , S

ee also IKE

security IPsec IKE configuration, 15 0 , 152

sec

urity IPsec IKE configuration (main

mode/pre-shared key authentication), 161

IS

P

security AAA implementation, 11

s

ecurity AAA ISP domain accounting methods

configuration, 44

s

ecurity AAA ISP domain attribute

configuration, 42

sec

urity AAA ISP domain authentication

methods configuration, 42

s

ecurity AAA ISP domain authorization

methods, 43

s

ecurity AAA ISP domain creation, 41

s

ecurity AAA ISP domain methods

configuration, 41

K

k

eepalive

security IPsec IKE function configuration, 157

sec

urity IPsec IKE NAT function

configuration, 15 8

ke

y

security IPsec IKE pre-shared key

authentication, 151

k

ey pair

security SSH DSA host key pair, 171

sec

urity SSH RSA host key pair, 171

sec

urity SSH RSA server key pair, 171

ke

ychain

security IPsec IKE configuration, 156

ke

yword

security IPsec ACL rule keywords, 133

L

LA

N

security 802.1X overview, 61

Lay

er 3

security IPsec configuration, 127 , 14 4

sec

urity IPsec IKE-based tunnel for IPv4 packets

configuration, 147

sec

urity IPsec tunnel for IPv4 packets

configuration, 14 4

LD

AP

AAA configuration, 17

AAA im

plementation, 9

AAA l

ocal user configuration, 18

AAA s

cheme configuration, 18

administr

ator attribute configuration, 39

a

uthentication, 9

a

uthentication server specification, 40

au

thorization, 9

dir

ectory service, 9

displa

ying, 41

pac

ket exchange process, 10

pr

otocols and standards, 13

s

cheme configuration, 38

s

cheme creation, 40

s

ecurity AAA configuration, 1

se

rver creation, 38

se

rver IP address configuration, 38

se

rver SSH user authentication, 53

se

rver timeout period, 39

tr

oubleshooting, 59

u

ser attribute configuration, 39

v

ersion specification, 38

L

ightweight Directory Access Protocol. Use LDAP

limiting

port security secure MAC addresses, 92

sec

urity ARP packet rate limit configuration, 219

local

security AAA local accounting method, 12

sec

urity AAA local authentication, 12

sec

urity AAA local authentication configuration, 17

s

ecurity AAA local authorization method, 12

s

ecurity AAA SSH user local

authentication+HWTACACS

authorization+RADIUS accounting, 48

sec

urity host public key display, 12 0 , 120

sec

urity host public key distribution, 119

sec

urity host public key export to file, 119

sec

urity host public key save to file, 12 0

sec

urity key pair creation, 118

sec

urity key pair destruction, 12 0

sec

urity MAC authentication, 79

sec

urity MAC local authentication configuration, 84