Professional Documents
Culture Documents
AVP Security User Guide v9 - 41
AVP Security User Guide v9 - 41
41
A
Copyright
Disclaimer
Trademarks
1 Introduction ..................................................................................... 4
1.1 Prerequisites ................................................................................... 4
1.1.1 Conditions ........................................................................................ 4
2 Environment ................................................................................... 6
2.1.1 Security Model and Zoning .......................................................... 7
1 Introduction
This document describes the security functions implemented by the
AVP. It also describes the security-related procedures that can be
performed by the system administrators.
9.41.
1.1 Prerequisites
1.1.1 Conditions
2 Environment
This section describes the environment requirements for product
operations.
The AVP is always installed in the trusted zone. Any equipment which
communicates with the AVP without authentication or data encryption
should also be installed in the trusted zone.
4 Security Configuration
This section describes how to operate the security functionality of the
product.
4.1 Procedures
a. 30000
b. 30010
c. 30015
d. 32001
e. 40011
f. 55432
This procedure enables control of the unit over the Data3 / Data4
connection pair. This facility is provided for installations where the
provision of separate control and data networks is impractical. From a
security standpoint, it mixes the operation and maintenance network
with the data network which reduces the security of the system.
3. Select Apply All to effect the change. This will reboot the
unit.
4. Select Yes to confirm the change and wait for the unit to
reboot.
Ensure that the selected remote logging settings are still selected and
that events are still being exported.
The upload viper file facility provided via the Support/Upgrade Encoder
facility is for extraordinary maintenance procedures. Using this facility
may result in an “Uncontrolled Release” and “Version mismatch” alarms
on the affected cards.
Authentication Off
Password password
SNMP version v1
Requires AVP/SWO/PSIP
license
8 The ports are only created when this feature is licensed and enabled.
9 Default shown. User may set base port value in the range 1..65535.
10 Default shown. User may select value in the range 0..65535
11 This is the transmit port.
12 The port is only created when the feature is enabled.