Manualshelf

Specifications

ManualsBrandsCisco ManualsComputer equipment4404 - Wireless LAN Controller
41424344454647484950
50
Crypto: load a key
Crypto: delete/zeroize a key
Crypto: set a key lifetime
Crypto: set the cryptographic algorithm
Crypto: set the TOE to encrypt or not to encrypt wireless transmissions
Crypto: execute self tests of TOE hardware and the cryptographic functions
to administrators with read-write permission.
6.1.26 FMT_MOF.1(2) Management of Audit Security Functions Behavior
FMT_MOF.1.1 (2) The TSF shall restrict the ability to enable, disable, and modify the behavior of the functions
Audit: pre-selection of the events which trigger an audit record,
Audit: start and stop of the audit function
to administrators with read-write permission.
6.1.27 FMT_MOF.1(3) Management of Authentication Security Functions
Behavior
FMT_MOF.1.1(3) The TSF shall restrict the ability to modify the behavior of the Authentication functions
Auth: allow or disallow the use of an authentication server
Auth: set the number of authentication failures that must occur before the TOE
takes action to disallow future logins
Auth: set the length of time a session may remain inactive before it is terminated
to administrators with read-write permissions.
Application note: The TOE must be configured to defer all authentication of Management Users to the RADIUS
server, though the administrator can allow or disallow use of the RADIUS server for wireless
users, and can add or remove secondary, tertiary (up to 17 total) RADIUS servers.
Authentication failure limits are managed by the RADIUS server administrator. Inactivity
timeouts only apply to interactive interfaces (CLI and GUI), not to programmatic interfaces
(SNMPv3 and NMSP).
6.1.28 FMT_MSA.2 Secure Security Attributes
FMT_MSA.2.1 The TSF shall ensure that only secure values are accepted for security attributes.
6.1.29 FMT_MTD.1(1) Management of Audit Pre-selection Data
FMT_MTD.1.1(1) The TSF shall restrict the ability to query, modify, clear, create the set of rules used to pre-
select audit events to the administrator.
6.1.30 FMT_MTD.1(2) Management of Authentication Data (Administrator)
FMT_MTD.1.1(2) The TSF shall restrict the ability to query, modify, delete, clear, create the authentication
credentials and user identification credentials to administrators.