Security: Secure Sensitive Data Management
SSD Management Channels
SSD Management Channels
Menu CLI and Password Recovery
Cisco 500 Series Stackable Managed Switch Administration Guide
Devices can be managed over management channels such as telnet, SSH, and
web. SSD categories the channels into the following types based on their security
and/or protocols: secured, insecure, secure-XML-SNMP, and insecure-XML-SNMP.
The following describes whether SSD considers each management channel to be
secure or insecure. If it is insecure, the table indicates the parallel secure channel.
Management Channel
Console
Telnet
SSH
GUI/HTTP
GUI/HTTPS
XML/HTTP
XML/HTTPS
SNMPv1/v2/v3 without
privacy
SNMPv3 with privacy
TFTP
SCP (Secure Copy)
HTTP based file transfer
HTTPS based file transfer
The Menu CLI interface is only allowed to users if their read permissions are Both
or Plaintext Only. Other users are rejected. Sensitive data in the Menu CLI is always
displayed as plaintext.
SSD Management
Channel Type
Secure
Insecure
Secure
Insecure
Secure
Insecure-XML-
SNMP
Secure-XML-SNMP
Insecure-XML-
SNMP
Secure-XML-SNMP
(level-15 users)
Insecure
Secure
Insecure
Secure
26
Parallel Secured
Management Channel
SSH
GUI/HTTPS
XML/HTTPS
Secure-XML-SNMP
SCP
HTTPS-based file transfer
576