Summary

The chapter focused on the essentials of securing device and management access. Security implementation is not possible without a policy, and correspondingly, device hardening is not possible without a device security policy. The chapter begins with a brief overview of a device security policy followed by key factors in device security, such as access methods, access control, device hardening, and identifying unneeded services. The chapter then concentrates on a discussion of various system management security features specifically available on security appliances, such as Cisco PIX 500 and ASA 5500 Series Adaptive Security Appliances, VPN3000 Concentrator, and IPS 4200 series appliance sensors. The chapter ends with a device security checklist that is developed as a summary.