Embedded Security Functions for Secure Deployment
|
User Authentication and Authorization
|
- Password protection (length, character enforcement)
|
- Password protection (length, character enforcement)
- Authentication servers (RADIUS/TACACS+)
- Customized privilege for different user groups
|
- Password protection (length, character enforcement)
|
- Password protection (length, character enforcement)
|
Device Integrity
|
Checks CRC code before updating the device |
Device Least Functionality
|
|
|
- Security Hardening Guide (MGate MB3000/5000 Series)
- Unused services can be disabled
- Disabled the default setting of the Telnet console
|
|
Communication Integrity |
- HTTPS (TLS 1.2 embedded with self-signed certificate)
- SNMPv3
|
- HTTPS (TLS 1.2 embedded with self-signed certificate, also supports public certificate import)
- SSH/SNMPv3
|
- HTTPS (TLS 1.2 embedded with self-signed certificate, also supports public certificate import)
- SNMPv3
|
- HTTPS (TLS 1.2 embedded with self-signed certificate, and can be exported)
- SNMPv3
|
Network Access Control |
|
Securing Your Devices With Efficient Maintenance
|
Configuration Management |
- GUI type of MXconfig
- CLI type of MCC tools
|
Device Management |
- Syslog (remote or local logging)
- Manageable via MXview network management software
|
Vulnerability Management
|
- Dedicated Product Security Incident Response Team (PSIRT) to handle vulnerabilities
- Perform a Nessus scan
|