Table of Contents
Advertisement
Table 4: User and VSYS User
User and VSYS User
CSP \ Services
IPSEC HMAC SHA-1 Key
IPSEC ESP Key
IKE Pre-shared Key
IKE Encryption Key
IKE HMAC SHA-1 Key
Password
SSH Server/Host DSA Private Key
SSH Encryption Key
SSH HMAC SHA-1 Key
HA Key
IKE RSA/DSA Private Key
PRNG Algorithm Key
Diffie Hellman Private Key Components G
Table 5: Read-Only User and VSYS Read-Only User
Read-Only User and VSYS Read-Only User
CSP \ Services
IPSEC HMAC SHA-1 Key
IPSEC ESP Key
IKE Pre-shared Key
IKE Encryption Key
IKE HMAC SHA-1 Key
Password
SSH Server/Host DSA Private Key
SSH Encryption Key
SSH HMAC SHA-1 Key
HA Key
IKE RSA/DSA Private Key
PRNG Algorithm Key
Diffie Hellman Private Key Components N/A N/A
1. The Crypto-Officer is authorized to change all authorized operators' user names and passwords, but the user is only
allowed to change his/her own user name and password
2. The Crypto-Officer is authorized to remove all authorized operators.
3. The Crypto-Officer is authorized to change all authorized operators' user names and passwords, but the user is only
allowed to change his/her own user name and password.
Juniper NS-5400 Security Policy
Set Unset Clear/Delete Get Exec Save Ping Reset Exit Trace-route
G
D
N/A
U
G
D
N/A
U
G
D
N/A
U
N/A N/A
D
N/A N/A
N/A N/A
D
N/A N/A
G3
N/A
N/A
U
G
D
D
U
N/A N/A
D
N/A N/A
N/A N/A
D
N/A N/A
G
D
N/A
N/A U
N/A D
N/A
N/A G,D,U
N/A N/A
N/A
N/A G,U
N/A
N/A
N/A N/A
Get PingExitTrace-route
U
N/A
N/A N/A
U
N/A
N/A N/A
U
N/A
N/A N/A
N/A N/A
N/A N/A
N/A N/A
N/A N/A
U
N/A
N/A N/A
U
N/A
N/A N/A
N/A N/A
N/A N/A
N/A N/A
N/A N/A
N/A N/A
N/A N/A
N/A N/A
N/A N/A
N/A N/A
N/A N/A
N/A N/A
N/A
U
N/A N/A
N/A N/A
N/A
U
N/A N/A
N/A N/A
G
U
N/A N/A
N/A N/A
N/A
N/A D
N/A N/A
N/A
N/A D
N/A N/A
N/A
U
N/A N/A
N/A N/A
D
G
U
N/A
(Server
N/A N/A
Key)
N/A
N/A D
N/A N/A
N/A
N/A D
N/A N/A
U
N/A N/A
N/A N/A
N/A
N/A N/A
N/A N/A
N/A
N/A D
N/A N/A
N/A
N/A D
N/A N/A
16
Advertisement
Table of Contents
