Technical data
Brocade Communications Systems, Inc. Page 14 of 48
2.2.2.6 TOE Access
The TOE provides an IP Filter policy that is a set of rules applied to the IP management interfaces. These rules
provide the ability to control how and to whom the TOE exposes the management services hosted on a switch. They
cannot affect the management traffic that is initiated from a switch.
4
The TOE limits the number of concurrent login sessions for users, such that the number of simultaneous login
sessions for each role is limited.
2.2.2.7 Trusted Path
The TOE enforces a trusted path between the TOE administrators and the TOE using SSH and HTTPS connections
for Ethernet connections from the Administrator terminal to the TOE. The TOE encrypts commands sent from
terminal applications by administrators using SSH for the command line interface and HTTPS for the Advanced
Web Tools GUI interface.
2.3 TOE Documentation
Brocade offers a series of documents that describe the installation process for the TOE as well as guidance for
subsequent use and administration of the applicable security features. See section 1.1 for the applicable guidance
documentation included in the TOE.
4
While the mechanism is built from a general purpose firewall capability of the underlying FabricOS, limitations on
functionality provided to the end user limit its use to providing restrictions on administrative connectivity.