Setup Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S3048-ON

Enabling SNMP Traps for Root Elections and Topology Changes.................................................................... 699

Modifying Interface Parameters.................................................................................................................................. 699

Enabling SNMP Traps for Root Elections and Topology Changes.......................................................................... 699

Inuencing RSTP Root Selection.................................................................................................................................699

Conguring an EdgePort.............................................................................................................................................. 700

Conguring Fast Hellos for Link State Detection....................................................................................................... 701

43 Software-Dened Networking (SDN)...................................................................................................... 702

44 Security................................................................................................................................................... 703

AAA Accounting.............................................................................................................................................................703

Conguration Task List for AAA Accounting........................................................................................................ 703

AAA Authentication.......................................................................................................................................................705

Conguration Task List for AAA Authentication.................................................................................................. 706

Obscuring Passwords and Keys...................................................................................................................................709

AAA Authorization......................................................................................................................................................... 709

Privilege Levels Overview.......................................................................................................................................709

Conguration Task List for Privilege Levels...........................................................................................................710

RADIUS............................................................................................................................................................................ 714

RADIUS Authentication............................................................................................................................................714

Conguration Task List for RADIUS....................................................................................................................... 715

Support for Change of Authorization and Disconnect Messages packets....................................................... 719

TACACS+........................................................................................................................................................................ 728

Conguration Task List for TACACS+................................................................................................................... 728

TACACS+ Remote Authentication.........................................................................................................................730

Command Authorization..........................................................................................................................................731

Protection from TCP Tiny and Overlapping Fragment Attacks................................................................................ 731

Enabling SCP and SSH.................................................................................................................................................. 731

Using SCP with SSH to Copy a Software Image.................................................................................................732

Removing the RSA Host Keys and Zeroizing Storage ........................................................................................733

Conguring When to Re-generate an SSH Key ..................................................................................................733

Conguring the SSH Server Key Exchange Algorithm....................................................................................... 734

Conguring the HMAC Algorithm for the SSH Server....................................................................................... 734

Conguring the HMAC Algorithm for the SSH Client.........................................................................................735

Conguring the SSH Server Cipher List............................................................................................................... 735

Conguring the SSH Client Cipher List.................................................................................................................736

Secure Shell Authentication................................................................................................................................... 736

Troubleshooting SSH............................................................................................................................................... 739

Telnet...............................................................................................................................................................................739

VTY Line and Access-Class Conguration................................................................................................................. 739

VTY Line Local Authentication and Authorization............................................................................................... 740

VTY Line Remote Authentication and Authorization...........................................................................................740

VTY MAC-SA Filter Support................................................................................................................................... 741

Role-Based Access Control........................................................................................................................................... 741

Overview of RBAC...................................................................................................................................................742

User Roles.................................................................................................................................................................744

Contents