Table of Contents
Advertisement
ProCurve
Switch
(SSL
Server)
Figure 7-1. Switch/User Authentication
N o t e :
1. Switch-to-Client SSL Cert.
2. User-to-Switch (login password and
enable password authentication)
options:
– Local
– TACACS+
– RADIUS
SSL on the ProCurve switches supports these data encryption methods:
■
3DES (168-bit, 112 Effective)
DES (56-bit)
■
RC4 (40-bit, 128-bit)
■
ProCurve switches use RSA public key algorithms and Diffie-Hellman. All
references to a key mean keys generated using these algorithms unless
otherwise noted
Terminology
SSL Server: A ProCurve switch with SSL enabled.
■
■
Key Pair: Public/private pair of RSA keys generated by switch, of
which public portion makes up part of server host certificate and
private portion is stored in switch flash (not user accessible).
■
Digital Certificate: A certificate is an electronic "passport" that is
used to establish the credentials of the subject to which the certificate
was issued. Information contained within the certificate includes:
name of the subject, serial number, date of validity, subject's public
key, and the digital signature of the authority who issued the certifi-
cate. Certificates on Procurve switches conform to the X.509v3 stan-
dard, which defines the format of the certificate.
Configuring Secure Socket Layer (SSL)
SSL Client
Browser
Terminology
7-3
Hide quick links:
Advertisement
Table of Contents
