Table 36: Roles and required identification and authentication (continued)
Role
PPPoE Client
IKE Peer
Serial Number
Peer
Assumptions concerning user behavior
Password length:
●
- User password: at least eight characters
- Other passwords: at least six characters
- PSK (Pre-shared keys) for IKE: at least 13 characters
!
SECURITY ALERT:
The user should refer to
SECURITY ALERT:
Lock-out after authentication fail after fixed number of log-in attempts (default value is
●
three)
Device managed locally via direct link to Console port, and remotely via IPSec tunnel only.
●
Commands are documented in the Avaya G250 and Avaya G350 CLI Reference,
●
03-300437.
Type of
authentication
Role-based operator
authentication
Role-based operator
authentication
Role-based verification
Password guidelines
Authentication data
Chap/Pap Secrets.
Simple password
authentication is used
for PAP-based
authentication.
Gateway uses MD5
function to hash the
challenge and the
secret value in the
response message to
PPPoE Server.
IKE pre-shared keys
TDES encrypted
challenge
on page 509.
Overview
Description
An entity that facilitates
connection to the
broadband access
network using PPP over
Ethernet protocol
(PPPoE)
An entity that facilitates
IPSec VPNs
Gateway exchanges its
serial number with a
Server to enable feature
activation
2 of 2
Issue 1.1 June 2005
499