Cisco ISR 4000 Family Routers Administrator Guidance
Page 60 of 66
Allowed use in the certified configuration
As described in Section 4.6.1 of this document.
Internet Message Access
Protocol Secure version 4
No restrictions. Protocol is not considered part of the
evaluation.
Internet Protocol Security
(suite of protocols including
IKE, ESP and AH)
Used for securing both traffic that originates from or
terminates at the TOE, as well as for “VPN Gateway”
functionality to secure traffic through the TOE. See
IKE and ESP for usage restrictions.
A ticket-based
authentication protocol
If used for authentication of TOE administrators,
tunnel this authentication protocol secure with TLS or
IPsec. Protocol is not considered part of the evaluation.
Lightweight Directory
Access Protocol
Use LDAP-over-SSL instead. Protocol is not
considered part of the evaluation.
LDAP over Secure Sockets
Layer
If used for authentication of TOE administrators,
configure LDAP to be tunneled over IPsec. Protocol is
not considered part of the evaluation.
Any configuration. Use of key-based authentication is
recommended.
Remote Authentication Dial
In User Service
If used for authentication of TOE administrators,
secure through IPsec.
RSA SecurID
authentication
If used for authentication of TOE administrators,
secure through IPsec. Protocol is not considered part of
the evaluation.
Simple Mail Transfer
Protocol
Recommended to use SMTPS instead. Protocol is not
considered part of the evaluation.
Simple Network
Management Protocol
Outbound (traps) only. Recommended to tunnel
through IPsec. Protocol is not considered part of the
evaluation.
As described in the Error! Reference source not f
ound.section of this document.
To Next Page
Loading...
Need help?
General
