Cisco 2821 Series 운영 - 페이지 18

{카테고리_이름} Cisco 2821 Series에 대한 운영을 온라인으로 검색하거나 PDF를 다운로드하세요. Cisco 2821 Series 31 페이지. 2800 series integrated services routers
Cisco 2821 Series에 대해서도 마찬가지입니다: 설치 및 업그레이드 (21 페이지), 데이터시트 (20 페이지), 운영 (31 페이지), 빠른 시작 매뉴얼 (47 페이지)

페이지 인쇄

1. Initial Setup

Cisco 2811 and Cisco 2821 Routers

Table 9

Cryptographic Keys and CSPs (Continued)

Enable secret

Shared

Secret

RADIUS secret Shared

Secret

TACACS+

Shared

secret

Secret

All RSA operations are prohibited by policy, and commands that can be executed by Officer are shown

Note

"# command".

Table 10

Note: An empty entry indicates that a particular SRDI is not accessible by the corresponding service

SRDI/Role/Service Access Policy

Security Relevant Data Item

PRNG Seed

DH private exponent

DH public key

Cisco 2811 and Cisco 2821 Integrated Services Router FIPS 140-2 Non Proprietary Security Policy

The ciphertext password of the CO role. However,

the algorithm used to encrypt this password is not

FIPS approved. Therefore, this password is

considered plaintext for FIPS purposes. This

password is zeroized by overwriting it with a new

password.

The RADIUS shared secret. This shared secret is

zeroized by executing the "no radius-server key"

command.

The TACACS+ shared secret. This shared secret is

zeroized by executing the "no tacacs-server key"

command.

Role and Service Access to CSP

NVRAM

Overwrite with new

(plaintext)

password

NVRAM

"# no radius-server key"

(plaintext),

DRAM

(plaintext)

NVRAM

"# no tacacs-server key"

(plaintext),

DRAM

(plaintext)

OL-8663-01