Reference Guide

ManualsBrandsDell ManualsAccess PlatformsW-Series FIPS

Aruba 3000, 6000/M3 Mobility Controller FIPS 140-2 Level 2 Security Policy|13

management session over the Ethernet ports or locally over the serial port. In FIPS mode, the serial

port is disabled.

 Web Interface

The Crypto Officer can use the Web Interface as an alternative to the CLI. The Web Interface

provides a highly intuitive, graphical interface for a comprehensive set of controller management

tools. The Web Interface can be accessed from a TLS-enabled Web browser using HTTPS (HTTP

with Secure Socket Layer) on logical port 4343.

 SNMP v3

The Crypto Officer can also use SNMPv3 to remotely perform non-security-sensitive monitoring using

the ‘get’ and ‘getnext’ commands.

See the table below for descriptions of the services available to the Crypto Officer role.

Table4‐Crypto‐OfficerServices

Service Description Input Output CSP Access

SSH v2.0

Provide authenticated and

encrypted remote management

sessions while using the CLI

SSHv2 key agreement

parameters, SSH

inputs, and data

SSHv2 outputs and

data

6, 16 (read)

8, 9, 24, 25

(read/write)

SNMPv3

Provides ability to query

management information

SNMPv3 requests

SNMPv3

responses

34, 35 (read)

36 (read/write)

IKEv1/IKEv2-

IPSec

Provide authenticated and

encrypted remote management

sessions to access the CLI

functionality

IKEv1/IKEv2 inputs and

data; IPSec inputs,

commands, and data

IKEv1/IKEv2

outputs, status, and

data; IPSec

outputs, status, and

data

29, 30, 31, 32 (read)

8, 9, 10, 11, 12, 13

(read/write)

17 (read)

18, 19, 20, 21, 22, 23

(read/write)

Configuring

Network

Management

Create management Users and

set their password and privilege

level; configure the SNMP agent

Commands and

configuration data

Status of

commands and

configuration data

36, 37 (read/write)