BLADE OS™ Application Guide HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Version 5.1 Advanced Functionality Software
Table Of Contents
- Contents
- Figures
- Tables
- Preface
- Part 1: Basic Switching
- Accessing the Switch
- The Management Network
- Local Management Using the Console Port
- The Command Line Interface
- Remote Management Access
- Client IP Address Agents
- Securing Access to the Switch
- Setting Allowable Source IP Address Ranges
- RADIUS Authentication and Authorization
- TACACS+ Authentication
- LDAP Authentication and Authorization
- Secure Shell and Secure Copy
- Configuring SSH/SCP Features on the Switch
- Configuring the SCP Administrator Password
- Using SSH and SCP Client Commands
- SSH and SCP Encryption of Management Messages
- Generating RSA Host and Server Keys for SSH Access
- SSH/SCP Integration with Radius Authentication
- SSH/SCP Integration with TACACS+ Authentication
- End User Access Control
- Ports and Trunking
- Port-Based Network Access Control
- VLANs
- Spanning Tree Protocol
- RSTP and MSTP
- Link Layer Discovery Protocol
- Quality of Service
- Accessing the Switch
- Part 2: IP Routing
- Basic IP Routing
- Routing Information Protocol
- IGMP
- OSPF
- OSPF Overview
- OSPF Implementation in BLADE OS
- OSPF Configuration Examples
- Remote Monitoring
- Part 3: High Availability Fundamentals
- High Availability
- Layer 2 Failover
- Server Link Failure Detection
- VRRP Overview
- Failover Methods
- BLADE OS Extensions to VRRP
- Virtual Router Deployment Considerations
- High Availability Configurations
- High Availability
- Part 4: Appendices
- Index
BLADE OS 5.1 Application Guide
4 Contents BMD00113, September 2009
Securing Access to the Switch 41
Setting Allowable Source IP Address Ranges
42
RADIUS Authentication and Authorization
43
How RADIUS Authentication Works
43
Configuring RADIUS on the Switch
44
RADIUS Authentication Features in BLADE OS
45
Switch User Accounts
45
RADIUS Attributes for BLADE OS User Privileges
46
TACACS+ Authentication
47
How TACACS+ Authentication Works
47
TACACS+ Authentication Features in BLADE OS
47
Authorization
48
Accounting
49
Command Authorization and Logging
49
TACACS+ Password Change
50
Configuring TACACS+ Authentication on the Switch
51
LDAP Authentication and Authorization
52
Secure Shell and Secure Copy
54
Configuring SSH/SCP Features on the Switch
55
Configuring the SCP Administrator Password
56
Using SSH and SCP Client Commands
56
SSH and SCP Encryption of Management Messages
57
Generating RSA Host and Server Keys for SSH Access
58
SSH/SCP Integration with Radius Authentication
58
SSH/SCP Integration with TACACS+ Authentication
59
End User Access Control
60
Considerations for Configuring End User Accounts
60
Strong Passwords
61
User Access Control Menu
61
Listing Current Users
63
Logging In to an End User Account
63