Management security, Network performance assurance – CANOGA PERKINS N525 Ethernet Termination Service Unit User Manual

1-2

N525 Ethernet Termination Service Unit

Management Security

The N525 supports enhanced security for access to Management Functions. Four network
security protocols are supported: SNMPv3, Remote Access Dial In User Security (Radius),
Secure Shell version 2 (SSH-2) and Secure File Transfer Protocol (SFTP). You can set
values and options within the software that will work with the security protocols on your
network; for specific information, see the documentation for your implementation. In
addition, the N525 supports strong passwords, independent of the security protocol.

1. SNMPv3 provides authentication and encryption across a network.
2. The Radius server maintains user account information. At login, it authenticates the

username and password and sends a message to the N525 to allow the login. The
Radius server can also be set up to require additional authentication information
before accepting the user. If the username or password is not valid, the Radius server
sends a message to the N525 to disallow the login and reject the user. Set up the
parameters for the N525 on the Radius Client Configuration screen.

3. SSH-2 provides authentication and encryption for a secure remote connection that is

similar to a standard Telnet connection, but more secure. Set up the SSH access
option individually for each User Account.

4. SFTP adds encryption to protect uploaded files during the file transfer process, such

as for a software update.

5. In software, the Security Configuration Menu provides nine options to define

password characteristics, as well as parameters that configure lockout and logout for
failed access attempts.

Network Performance Assurance

Network Performance Assurance (NPA) is not available in this version of the N525.