Manualshelf

TMS zl Management and Configuration Guide ST.1.1.100430

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
1451145214531454145514561457145814591460
B-14
Glossary
Identity Driven
Manager
See IDM.
identity type A name that each endpoint of an IPsec VPN uses to authenticate itself. The
identity is specified in the IKE policy and can be an IP address, a domain name,
an email address, or a distinguished name. For multiple clients in a client-to-
site policy, you can use wildcards.
IDM Identity Driven Manager. A ProCurve networking application that provides
management of user-based profiles (including ACLs, QoS settings, and rate
limits). IDM assigns various profiles to end-users based on their identity
(community), access time, access location, and endpoint integrity posture.
IDS Intrusion Detection System. A device or software that is used to detect
malware or unauthorized attempts to enter the network.
IDS/IPS A device that provides both IDS and IPS capabilities.
IE Microsoft’s Internet Explorer browser.
IETF Internet Engineering Task Force. An organization that promotes LAN and
other networking standards. See www.ietf.org.
IGMP Internet Group Management Protocol. A protocol used by hosts and multicast
routers to establish and manage IP multicast groups.
IGP Interior Gateway Protocol. Routing protocols such as RIP and OSPF that are
designed to operate in a single AS.
IKE Internet Key Exchange. A protocol that mutually authenticates two parties
attempting to establish an IPsec VPN and establishes an IKE SA and a set of
cryptographic algorithms that will be used to protect VPN traffic.
IKE mode The mode in which IKE is initiated. The two IKE modes are Main mode and
Aggressive mode.
IKE mode config The process through which the remote addresses of a client-to-site VPN are
assigned local addresses.
IKE
phases IKE uses two phases to establish an IPsec SA. In the first phase IKE negotiates
security parameters for the IKE SA, generates the keys used to secure data
sent over the IKE SA, and authenticate the endpoints of the tunnel. In the second
phase IKE negotiates the IPsec SA.
IKEv1 policy The policy that the TMS zl Module uses to carry out IKE phase 1 when
establishing an IPsec VPN.
inactivity timeout The timeout applied to an authenticated user.