Unauthenticated Services | Aruba Networks FIPS 140-2 guide

4.2.4 Unauthenticated Services

The module provides the following unauthenticated services, which are available regardless of role. No CSPs are accessed by these services.

∙System status – SYSLOG and module LEDs

∙802.11 a/b/g/n

∙FTP

∙TFTP

∙NTP

∙GRE tunneling of 802.11 wireless user frames (when acting as a “Local AP”)

∙Reboot module by removing/replacing power

∙Self-test and initialization at power-on

29

Image 29

Aruba Networks FIPS 140-2 manual Unauthenticated Services, ∙ FTP ∙ Tftp ∙ NTP

Contents

Fips 140-2 Non-Proprietary Security Policy Page Aruba Dell Relationship Acronyms and Abbreviations ServicesAruba AP-120 Series Security Levels Physical SecurityPage Aruba Dell Relationship IntroductionAcronyms and Abbreviations GHz LAN Aruba AP-120 Series Product OverviewPhysical Description Aruba Part Number Dell Corresponding Part Number Enet Indicator LEDs Label Function Action StatusPWR Label Function Action Status Security Levels Module ObjectivesPhysical Security Applying TELs AP-124 Front view Aruba AP-124 TEL Placement AP-124 Back view AP-124 Bottom view Aruba AP-125 TEL Placement AP-125 Front view AP-125 Right view AP-125 Bottom view Inspection/Testing of Physical Security Mechanisms Modes of Operation Configuring Remote AP Fips Mode Enable Fips mode on the AP. This accomplished by going to Configuring Remote Mesh Portal Fips Mode Configuring Remote Mesh Point Fips Mode Operational Environment Verify that the module is in Fips mode Fips 140-2 Logical Interfaces Module Physical Interface Logical Interfaces Roles Roles, Authentication and ServicesCrypto Officer Authentication Wireless Client Authentication User AuthenticationStrength of Authentication Mechanisms Authentication Mechanism Strength WPA2-PSK Crypto Officer Services ServicesService Description CSPs Accessed see section WPA2 PSK Service User ServicesService Description CSPs Wireless Client Services ∙ FTP ∙ Tftp ∙ NTP Unauthenticated Services Non-FIPS Approved Algorithms Cryptographic Algorithms Hmac Critical Security Parameters RNG AES-CCM PSKPTK GTK GMK Self Tests For an AES Cavium hardware Post failure