3–Managing Fabric Security
Device Security
3-4 59266-01 B
Each switch maintains its own security database consisting of the active security
set (if one has been activated), configured security sets, and groups. A switch
may have more than one configured security set, but only one security set may be
active. The security database has the following limits:
Maximum number of security sets is 4.
Maximum number of security groups is 16.
Maximum number of members in a group is 1000.
Maximum total number of group members is 1000.
Switches, devices, and users can be authenticated locally using the switch
security database, or remotely using a Remote Authentication Dial-In User
Service (RADIUS) server. With a RADIUS server, the security database for the
entire fabric resides on the server. In this way, you can manage the security
database centrally, rather than on each switch. For more information about
RADIUS server, see “Using RADIUS Servers” on page 3-15.
The device security options and menu selections are available only on the entry
switch, and the entry switch must have a secure connection. To establish a secure
connection, the SSL service must be enabled on the entry switch before you log
in. For information about enabling the SSL service, see “Managing System
Services” on page 5-24.
You manage device security through the Edit Security dialog box (Figure 3-2). The
Edit Security dialog box is available only on the entry switch, which must have a
secure connection (SSL). To view the Edit Security dialog box:
1. Select the entry switch in the fabric tree.
2. Click Security on the tool bar, or on the Security menu, click Edit Security
to view the Edit Security dialog box (Figure 3-2).
Figure 3-2. Edit Security Dialog Box
To Next Page
Loading...
Need help?
General
