Secure Sensitive Data
Menu CLI and Password Recovery
Menu CLI and Password Recovery
Configuring SSD
Cisco 500 Series Stackable Managed Switch Administration Guide
SNMPv3 with privacy
TFTP
SCP (Secure Copy)
HTTP based file transfer
HTTPS based file transfer
The Menu CLI interface is only allowed to users if their read permissions are Both
or Plaintext Only. Other users are rejected. Sensitive data in the Menu CLI is always
displayed as plaintext.
Password recovery is currently activated from the boot menu and allows the user
to log on to the terminal without authentication. If SSD is supported, this option is
only permitted if the local passphrase is identical to the default passphrase. If a
device is configured with a user-defined passphrase, the user is unable to activate
password recovery.
The SSD feature is configured in the following pages:
•
SSD properties are set in the Properties page.
•
SSD rules are defined in the SSD Rules page.
SSD Properties
Only users with SSD read permission of Plaintext-only or Both are allowed to set
SSD properties.
To configure global SSD properties:
Secure-XML-SNMP
(level-15 users)
Insecure
Secure
Insecure
Secure
22
SCP
HTTPS-based file transfer
379