Security Defense Capabilities of the Management Plane

To ensure the normal running of the operating system and management applications, the management plane of NetEngine 8000 F routers provides the following security defense capabilities:
  • Secure Boot
  • System right management and control
  • Account right management and control
  • Log recording system
  • Security management channel using Simple Network Management Protocol Version 3 (SNMPv3), Secure Shell (SSH), or Secure File Transfer Protocol (SFTP)
  • Advanced encryption algorithm
  • Multi-level information isolation
  • Terminal Access Controller Access Control System (TACACS) authorization management
  • Authentication, Authorization and Accounting (AAA)
  • HWTACACS authorization management

The management plane controls user rights based on roles to ensure that users at different levels have different rights.

AAA can be used to control system rights in different application scenarios.

NetEngine 8000 F routers have a complete log system. The log system can record all system configurations and all exceptions in the running system, and it will not violate users privacy, which facilitates subsequent audit.

Parent Topic: Security Defense Architecture
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic