R21xx-HP FlexFabric 11900 Security Configuration Guide

ManualsBrandsHP ManualsNetwork HardwareHP FlexFabric 11000 Switch Products

207

configuring SFTP server password

authentication, 105

configuring SSH client host public key, 81

configuring SSH client user interfaces, 81

configuring SSH device as SFTP client, 86

configuring SSH device as Stelnet client, 84

configuring SSH user, 82

configuring SSH user local

authentication+HWTACACS

authorization+RADIUS accounting, 45

configuring Stelnet client password

authentication, 100

configuring Stelnet client publickey

authentication, 103

configuring Stelnet server password

authentication, 92

configuring Stelnet server publickey

authentication, 94

configuring unresolvable IP attack protection,

123 , 124

c o n f ig u ri n g u R P F, 142, 143

creating AAA ISP domain, 39

creating HWTACACS scheme, 30

creating LDAP scheme, 38

creating LDAP server, 35

creating local key pair, 67

creating RADIUS scheme, 22

destroying local key pair, 70

displaying AAA, 43

displaying AAA local users/local user groups,

21

displaying ARP detection, 133

displaying ARP source MAC address based

attack detection, 127

displaying FIPS, 147

displaying host public key, 69, 70

displaying HWTACACS, 35

displaying IP source guard, 117

displaying IPsec, 169

displaying IPv4 source guard, 117

displaying IPv6 source guard, 117

displaying LDAP, 38

displaying password control, 64

displaying public key, 72

displaying RADIUS, 29

displaying SFTP help information, 89

displaying SSH, 91

displaying unresolvable IP attack protection,

124

distributing local host public key, 69

enabling ACL checking for de-encapsulated

IPsec packets, 165

enabling ARP black hole routing, 124

enabling FIPS mode, 146

enabling invalid SPI recovery, 185

enabling IPv4 source guard on interface, 115

enabling IPv6 source guard on interface, 116

enabling logging of IPsec packets, 168

enabling password control, 60

enabling QoS pre-classify (IPsec), 167

enabling RADIUS session-control feature, 42

enabling SFTP server function, 80

enabling SSH server function, 80

entering peer public key, 71

establishing SSH SFTP server connection, 87

establishing SSH Stelnet server connection, 85

exporting host public key to file, 69

generating SSH local DSA key pair, 79

generating SSH local RSA key pair, 79

implementing ACL-based IPsec, 155

importing peer host public key from file, 71

importing public key from file, 74

maintaining ARP detection, 133

maintaining HWTACACS, 35

maintaining IP source guard, 117