Using the Web Browser Interface for Basic Configuration Tasks
Configuring Passwords to Control Management Access to the Router
14-26
Configuring Passwords to Control
Management Access to the Router
The ProCurve Secure Router uses usernames and passwords to control man-
agement access to the router. In addition to configuring usernames and
passwords for each access method, you can enable the Authentication, Autho-
rization, and Accounting (AAA) subsystem, which allows you to configure
multiple access methods in case an access method fails. The AAA subsystem
also supports Remote Authentication Dial-In User Service (RADIUS) servers
for authentication and Terminal Access Controller Access-Control System
Plus (TACACS+) servers for authentication, authorization, and accounting.
Encrypting All the Passwords
You can encrypt all passwords that you establish on the ProCurve Secure
Router. These include
enable mode password
telnet and console line passwords
passwords for SSH, HTTP, and FTP access
passwords in the router's local username database
The Secure Router OS can perform an MD5 hashing function on these pass-
words so that they are encrypted in the running-config and when they are sent
over the line.
To enable password encryption globally, complete these steps:
1.
Select Passwords under System in the navigation bar.
2.
Check the Encryption Enabled box in the Password Encryption window.
See Figure 14-19.
Figure 14-19. Add/Modify/Delete Users Window