Cisco 2811 Series Операции - Страница 18
Просмотреть онлайн или скачать pdf Операции для Сетевой маршрутизатор Cisco 2811 Series. Cisco 2811 Series 31 страница. 2800 series integrated services routers
Также для Cisco 2811 Series: Информационный лист (20 страниц), Установка и модернизация (14 страниц), Операции (31 страниц), Краткое руководство по эксплуатации (47 страниц)
Cisco 2811 and Cisco 2821 Routers
Table 9
Cryptographic Keys and CSPs (Continued)
Enable secret
Shared
Secret
RADIUS secret Shared
Secret
TACACS+
Shared
secret
Secret
All RSA operations are prohibited by policy, and commands that can be executed by Officer are shown
Note
"# command".
.
Table 10
Note: An empty entry indicates that a particular SRDI is not accessible by the corresponding service
SRDI/Role/Service Access Policy
Security Relevant Data Item
PRNG Seed
DH private exponent
DH public key
Cisco 2811 and Cisco 2821 Integrated Services Router FIPS 140-2 Non Proprietary Security Policy
18
The ciphertext password of the CO role. However,
the algorithm used to encrypt this password is not
FIPS approved. Therefore, this password is
considered plaintext for FIPS purposes. This
password is zeroized by overwriting it with a new
password.
The RADIUS shared secret. This shared secret is
zeroized by executing the "no radius-server key"
command.
The TACACS+ shared secret. This shared secret is
zeroized by executing the "no tacacs-server key"
command.
Role and Service Access to CSP
NVRAM
Overwrite with new
(plaintext)
password
NVRAM
"# no radius-server key"
(plaintext),
DRAM
(plaintext)
NVRAM
"# no tacacs-server key"
(plaintext),
DRAM
(plaintext)
r
r
r
d
r
w
d
r
w
d
r
w
d
OL-8663-01