JUNOS 8.1 Security Configuration Guide for Common Criteria and JUNOS-FIPS DVD Home Techpubs Home Report an Error Collapse TOC Index Index of Commands Entire manual as PDF		About This Guide Objectives Audience Supported Routing Platforms Using the Indexes Documentation Conventions List of Technical Publications Documentation Feedback Requesting Technical Support Configuring Common Criteria Users Introduction to Common Criteria Common Criteria Overview Acronyms and Terms Upgrading an M- or T-series Router to Common Criteria Upgrading a J-series Router to Common Criteria Disabling the Console Port Protecting Management Connections Choosing and Using Passwords Identifying and Authorizing Managers Configuring Common Criteria Login Classes Configuring Superusers Configuring Operators Configuring Read-Only Users Configuring Users to View and Change the Idle-Timeout Value Authorizing Users with RADIUS/TACACS+ Configuring RADIUS Authentication Configuring TACACS+ Authentication Miscellaneous RADIUS/TACACS+ Information Configuring Common Criteria Event Logging Configuring Event Logging to a Local File Configuring Event Logging to a Remote Server Configuring NTP Logging Configuration Changes to Secrets Configuring Auditing of Configuration Changes Example: System Logging of Configuration Changes Example Common Criteria Configuration Example Common Criteria Configuration Changes Load Merge Load Replace Load Override Load Update Login and Logout Events Using SSH Logging of Audit Startup and Shutdown Configuring Common Criteria Firewall Filters Filtering Authorized Managers by Source Address Filtering NTP Messages by Address Filtering JUNOScope Access Filtering BGP Peers JUNOS-FIPS Environment Overview of JUNOS-FIPS Supported Roles and Services JUNOS-FIPS Hardware Environment JUNOS-FIPS Software Environment Configuration Restrictions Summary of JUNOS and JUNOS-FIPS Differences Upgrading and Configuring JUNOS-FIPS Critical Security Parameters Upgrading a JUNOS Software Router to JUNOS-FIPS Entering Multiuser Mode Configuring the JUNOS-FIPS Router Errors and Error Status Messages Recommended JUNOS-FIPS System Log Configuration Configuring the AS II FIPS PIC Installing and Removing the AS II FIPS PIC Authorizing the AS II FIPS PIC Obtaining the AS II FIPS PIC Status Zeroizing the AS II FIPS PIC AS II FIPS PIC Errors Crypto Officer Guide List of Algorithms Crypto Officer Responsibilities User Assumptions and Responsibilities Passwords and Supported Cipher Sets Remote Access Removing Old Passwords Zeroizing the System Crypto Officer and JUNOS-FIPS User Configurations Crypto-Officer User Configuration JUNOS-FIPS User Configuration Logging Out on Disconnect Configuring Internal IPSec Configuring the SA Direction Configuring the IPSec SPI Configuring the IPSec Key Values Example: Configuring IPSec Summary of JUNOS-FIPS Operational Mode Commands request services fips authorize pic request services fips zeroize pic request system software add reboot junos-juniper-7.4*-fips.tgz request system zeroize show services fips pic status Summary of JUNOS-FIPS Configuration Statements algorithm authentication direction encryption internal ipsec key manual protocol security security-association spi Index Index Index of Statements and Commands