Cisco ASR 1000 Series Common Criteria Operational User Guidance And Preparative Procedures page 54
Aggregation services router
Hide thumbs
Also See for ASR 1000 Series:
- Software configuration manual (602 pages) ,
- Configuration manual (442 pages) ,
- Replacing (120 pages)
Table of Contents
Advertisement
Requirement
Auditable
FPT_TST_EXT.
Indication that
1
TSF self-test was
completed.
FPT_TST_EXT.
Failure of self-
2
test
FTA_SSL_EXT.
Any attempts at
1
unlocking of an
[local]
interactive
session.
FTA_SSL.3
The termination
of a remote
session by the
session locking
mechanism.
FTA_SSL.4
The termination
of an interactive
session.
FTP_ITC.1
Initiation of the
trusted channel.
Termination of
the trusted
channel.
Additional Audit
Events
Record Contents
Any additional
information
generated by the
tests beyond
"success" or
"failure".
Reason for failure
(including
identifier of invalid
certificate)
No additional
information.
No additional
information.
No additional
information.
Identification of
the initiator and
target of failed
trusted channels
establishment
attempt.
Sample Record
command:copy tftp ....
*Jul 10 11:04:09.179: %PARSER-5-
CFGLOG_LOGGEDCMD: User:cisco logged
command:reload
Jan 23 2013 06:53:24.570: %CRYPTO-6-
SELF_TEST_RESULT: Self test info: (Self test
activated by user: admin)
Jan 23 2013 06:53:24.670: %CRYPTO-6-
SELF_TEST_RESULT: Self test info: (Software
checksum
Cause: c3m_set_fips_mode, Fatal Fault, FIPS POST
Failure requested by: Process ID: 147461 (syslogd)
app_name: ssl Process: syslogd
In the TOE this is represented by login attempts that
occur after the timeout of a local administrative user.
001383: May 10 18:06:34.091: %SYS-6-
EXEC_EXPIRE_TIMER: (tty 0 (0.0.0.0)) exec-
timeout timer expired for user securityperson
001384: May 10 18:06:34.091: %SYS-6-
EXIT_CONFIG: User securityperson has exited tty
session 0(0.0.0.0)
Audit record generated when SSH session is
terminated because of idle timeout:
May 29 2012 15:18:00 UTC: %SYS-6-
TTY_EXPIRE_TIMER: (exec timer expired, tty 0
(0.0.0.0)), user admin
Audit record generate when admin logs out of
CONSOLE.
May 17 2011 16:29:09: %PARSER-5-
CFGLOG_LOGGEDCMD: User:test_admin logged
command:exit
Audit record generated when the admin logs out
of SSH:
Jun 18 11:17:36.653: SSH0: Session terminated
normally
AUDIT: See logs provided by FCS_IPSEC_EXT.1.
... passed)
Page 54 of 72
Hide quick links:
Advertisement
Table of Contents
Related Manuals for Cisco ASR 1000 Series
Related Products for Cisco ASR 1000 Series
- Cisco ASR1000-RP1 - ASR 1000 Series Route Processor 1 Router
- Cisco ASR1000-RP2 - ASR 1000 Series Route Processor 2 Router
- Cisco ASR-1000-SIP10
- Cisco ASR1002-5G-SEC/K9 - ASR 1002 VPN+FW Bundle Router
- Cisco ASR1002-5G-SHA/K9 - ASR 1002 Sec+HA Bundle Router
- Cisco ASR1004-10G-SHA/K9 - ASR 1004 Sec+HA Bundle Router
- Cisco ASR1004-20G-SEC/K9 - ASR 1004 VPN+FW Bundle Router
- Cisco ASR1006-10G-SEC/K9 - ASR 1006 VPN+FW Bundle Router
- Cisco ASR1006-10G-VPN/K9 - ASR 1006 VPN Bundle Router
- Cisco ASR1006-10G-SHA/K9 - ASR 1006 Sec+HA Bundle Router
- Cisco ASR1006-10G-HA/K9 - ASR 1006 HA Bundle Router
- Cisco ASR1004-10G/K9 - ASR 1004 Router
- Cisco ASR1006 - ASR 1006 Modular Expansion Base
- Cisco ASR 1002-F
- Cisco ASR 1002-RP1
- Cisco ASR 1002-RP2