Manualshelf

Technical data

ManualsBrandsBrocade Communications Systems ManualsHousehold Appliances8
21222324252627282930
Brocade Communications Systems, Inc. Page 22 of 48
5.1.5.6 Management of TSF data (FMT_MTD.1(2))
FMT_MTD.1.1(2) The TSF shall restrict the ability to [set] the [passwords] to [the administrative user
associated with the password, and users possessing one of the following administrative roles:
admin, SecurityAdmin, root, factory].
5.1.5.7 Specification of Management Functions (FMT_SMF.1)
FMT_SMF.1.1 The TSF shall be capable of performing the following security management functions:[
manage the attributes of the encrypted user data SFP
add or remove members of a zone;
manage the minimum password length and minimum number of specified character
types used in a password,
manage the number of unsuccessful authentication attempts that cause accounts to be
locked,
manage the locked status of an account,
specify the order in which authentication providers are checked,
specify the presumed source address and service permitted from which remote users
connect to the TOEquery, modify, delete, and assign the user identity and role; and
set and reset passwords of users possessing administrative roles. ].
5.1.5.8 Security roles (FMT_SMR.1)
FMT_SMR.1.1 The TSF shall maintain the roles [the following administrative roles:
admin
switchAdmin
operator
zoneAdmin
fabricAdmin
SecurityAdmin
basicSwitchAdmin
root
factory
].
FMT_SMR.1.2 The TSF shall be able to associate users with roles.
Application note: Other than being able to log into TOE management interfaces and change their own passwords,
users possessing the user administrative role can only access interfaces that provide the ability to monitor TOE
performance.
5.1.6 Protection of the TSF (FPT)
5.1.6.1 Reliable time stamps (FPT_STM.1)
FPT_STM.1.1 The TSF shall be able to provide reliable time stamps for its own use.
5.1.7 TOE access (FTA)
5.1.7.1 Basic limitation on multiple concurrent sessions (FTA_MCS.1)
FTA_MCS.1.1 The TSF shall restrict the maximum number of concurrent sessions that belong to the same user.
FTA_MCS.1.2 The TSF shall enforce, by default, a limit of [4] sessions per user.
5.1.7.2 TOE session establishment (FTA_TSE.1)
FTA_TSE.1.1 The TSF shall be able to deny session establishment based on [authentication data expiration,
presumed source address of the remote user and service being requested].