Carrier Access 1750 user manual Management Interfaces, Security, Fips Interface

Product Description

Management Interfaces

Management Interfaces

Security ... 1-5

FIPS Interface ... 1-5

Physical and Logical Interfaces ... 1-6

User Interfaces ... 1-6

File Access and Software Upgrades ... 1-6

Security

The Broadmore is controlled via system management software embedded in the CPU’s “flash disk” memory. This software defines the system command structure and provides a user interface for operation and administration. The Broadmore supports multiple user accounts and access levels. There are four levels of user access. Only a network administrator or crypto officer with “SuperUser” access can assign user names, passwords, and access levels.

FIPS Interface

The Broadmore now includes the Broadmore/SSHield Management Module, which is a FIPS 140-2 validated software-only module that meets the security requirements of Federal Information Processing Standard PUB 140-2. The Broadmore can operate in either FIPS mode or non-FIPS mode, depending on the desired level of security. (For a description of the FIPS mode features, see “Security Management (FIPS Mode)” on page 11-1.)

NOTE: Enabling FIPS mode security will disable FTP and Telnet access. Users must then log in using secure client replacements such as SecureCRT® and SecureFX®. A secure terminal emulator is required to enter a secure Broadmore system. Although many secure terminal emulators are available, SecureCRT is recommended.