McAfee, Inc. McAfee Firewall Enterprise 4150E

2y ago
23 Views
2 Downloads
1.25 MB
36 Pages
Last View : 11d ago
Last Download : 5m ago
Upload by : Aarya Seiber
Transcription

rect-connected keyboard and mouse, while remote access is via Secure Shell (SSH) session.The CO authenticates to the module using a username and password.The crypto-module uses the SNMP v3 protocol for remote management, and to provide information aboutthe state and statistics as part of a Network Management System (NMS). Although SNMP v3 can supportAES encryption, the protocol employs a non-FIPS-Approved key generation method; therefore, the modulehas been designed to block the ability to view or alter critical security parameters (CSPs) through thisinterface. This is a management-only interface for the McAfee Firewall Enterprise 4150E; no CSPs or userdata are transmitted over this interface.[Note that support for SNMP v3 is not included in the module’s v8.2.0 firmware; only v7.0.1.03 supportsthis interface. Thus, all references made to SNMP v3 in this policy are strictly for its use in v7.0.1.03.]Services provided to the Crypto-Officer are provided in Table 3 below.McAfee Firewall Enterprise 4150E 2012 McAfee, Inc.This document may be freely reproduced and distributed whole and intact including this copyright notice.Page 10 of 36

Security Policy, Version 0.6November 16, 2012Table 3 – Crypto-Officer ServicesServiceDescriptionInputOutputCSP and Type of AccessAuthenticate to the Used whenCommandAdmin Consoleadministrators loginto the appliance usingthe FirewallEnterprise AdminConsoleStatusOutputFirewall Authentication Keys - RKey Agreement Key - RTLS Session Authentication Key - R/WTLS Session Key - R/WAdministrative Password - RAuthenticate to theAdmin Consoleusing CommonAccess Card (CAC)Used whenCommandadministrators loginto the appliance withCAC authenticationto access the FirewallEnterprise AdminConsoleStatusOutputCommon Access Card Authentication Keys - RKey Agreement Key - RTLS Session Authentication Key - R/WTLS Session Key - R/WCommon Access Card One-Time Password - RAuthenticate to the Used whenCommandAdmin CLIadministrators loginto the appliance usingthe FirewallEnterprise AdminCLIStatusOutputFirewall Authentication Keys - RKey Agreement Key RSSH Session Authentication Key - R/WSSH Session Key - R/WAdministrative Password – RAuthenticate to theAdmin CLI usingCommon AccessCard (CAC)StatusOutputCommon Access Card Authentication Keys - RKey Agreement Key - RSSH Session Authentication Key - R/WSSH Session Key - R/WCommon Access Card One-Time Password - RCommandStatusOutputAdministrator Password - RChange passwordAllows external users Commandto use a browser tochange their FirewallEnterprise, SafeWordPremierAccess, orLDAP login passwordStatusOutputFirewall Authentication Keys - RKey Agreement Key - RTLS Session Authentication Key - R/WTLS Session Key - R/WAdministrative Password - R/WConfigure clustercommunicationServices required to Commandcommunicate witheach other in FirewallEnterprise multiapplianceconfigurationsStatusOutputFirewall Authentication Keys - RKey Agreement Key - RTLS Session Authentication Key - R/WTLS Session Key - R/WConfigure andmonitor VirtualPrivate Network(VPN) servicesUsed to generate and Commandexchange keys forVPN sessionsStatusOutputFirewall Authentication Keys - RKey Agreement Key - RTLS Session Authentication Key - R/WTLS Session Key - R/WIKE Preshared key - WIPsec Session Key - WIPsec Authentication Key - WUsed whenCommandadministrators loginto the appliance withCAC authenticationto access the FirewallEnterprise AdminCLIAuthenticate to the Used whenlocal consoleadministrators loginto the appliance viathe local consoleMcAfee Firewall Enterprise 4150E 2012 McAfee, Inc.This document may be freely reproduced and distributed whole and intact including this copyright notice.Page 11 of 36

Security Policy, Version 0.6ServiceNovember 16, 2012DescriptionInputOutputCSP and Type of AccessCreate andconfigure bypassmodeCreate and monitor CommandIPsec policy table thatgoverns alternating

McAfee, Inc. McAfee Firewall Enterprise 4150E Hardware Part Number: NSA-4150-FWEX-E Firmware Versions: 7.0.1.03 and 8.2.0 FIPS 140-2 Non-Proprietary Security Policy FIPS Security Level: 2 Document Version: 0.6 Prepared for: Prepared by: McAfee, Inc. Corsec Security, Inc. 282

Related Documents:

McAfee Firewall Enterprise Control Center Release Notes, version 5.3.1 McAfee Firewall Enterprise Control Center Product Guide, version 5.3.1 McAfee Firewall Enterprise McAfee Firewall Enterprise on CloudShield Installation Guide, version 8.3.0 McAfee Network Integrity Agent Product Guide, version 1.0.0.0

the McAfee Firewall Admin Console client software, the hardware or virtual platform for running the firewall software. Configuration B. comprises: the McAfee Firewall Enterprise software, including its SecureOS operating system, the McAfee Firewal

McAfee Management of Native Encryption (MNE) 4.1.1 McAfee Policy Auditor 6.2.2 McAfee Risk Advisor 2.7.2 McAfee Rogue System Detection (RSD) 5.0.4 and 5.0.5 McAfee SiteAdvisor Enterprise 3.5.5 McAfee Virtual Technician 8.1.0 McAfee VirusScan Enterprise 8.8 Patch 8 and Patch 9 McA

McAfee Firewall Enterprise Admin Console provides quick access and complete control over your firewalls. Data Sheet McAfee Firewall Management McAfee Firewall Enterprise Control Center Advantages Quickly search fo

7.X and later, and McAfee Firewall Enterprise 7.x and later. Audience McAfee Firewall Enterprise users, who wish to forward syslog events to EventTracker Manager. The information contained in this document represents the current view of Prism Microsystems Inc. on the issu

McAfee Firewall Enterprise 1100E, 2150E, and 4150E Page 4 of 41 . Administration Console – The Administration Console (or Admin Console) is the graphical software that runs on a Windows computer within a connected network. Admin Console is McAfee’s proprietary GUI management s

McAfee Firewall Enterprise 1100F, 2150F, and 4150F Page 4 of 47 . Admin Console is McAfee’s proprietary GUI management software tool that needs to be installed on a Windows-based workstation. This is the primary management tool. All Admin Console

Grade 1 Mathematics Student At-Home Activity Packet This At-Home Activity Packet includes 16 sets of practice problems that align to important math concepts your student has worked with so far this year. We recommend that your student completes one page of practice problems each day. Encourage your student to do the best they can with this content—the most important thing is that they .