CHAPTER 8
System Security
This chapter describes the StarOS security features.
This chapter explores the following topics:
•
Per-Chassis Key Identifier, page 107
•
Protection of Passwords, page 108
•
Support for ICSR Configurations, page 110
•
Encrypted SNMP Community Strings, page 110
•
Lawful Intercept Restrictions, page 110
•
Adding, Modifying and Removing Users, page 111
•
Test-Commands, page 112
Per-Chassis Key Identifier
A user can set a unique chassis key which will work only for a chassis or for any set of chassis that will share
the same configuration information.
The chassis key consists of 1 to 16 alphanumeric ASCII characters. The chassis key plain-text value is never
displayed to the user; it is entered interactively and not echoed to the user.
On the ASR5500 the encrypted chassis key is stored in the midplane EEPROM and shared by both
MIO/UMIO/MIO2s.
If the chassis key identifier stored in the header comment line of the configuration file does not match the
chassis key, an error message is displayed to the user. The user can change the chassis key value simply by
entering the chassis key again. The previous chassis key is replaced by a new chassis key. The user is not
required to enter a chassis key.
If the user does not configure a chassis key, the system generates a unique value for that chassis.
ASR 5500 System Administration Guide, StarOS Release 21.4
107
To Next Page
Loading...
Need help?
General
