To Next Page

To Previous Page

Chapter5SECURITYREQUIREMENTS

FMT_MSA.3.2TheTSFshallallowthe[Administrators]tospecifyalternativeinitialvalues

tooverridethedefaultvalueswhenanobjectorinformationiscreated.

5.1.2.19FMT_MTD.1(1)ManagementofTSFdata

FMT_MTD.1.1TheTSFshallrestricttheabilityto[create,modify,delete,backupand

restore]the[congurationitemandlteringrules]to[administrators].

5.1.2.20FMT_MTD.1(2)ManagementofTSFdata

FMT_MTD.1.1TheTSFshallrestricttheabilityto[modify]the[date/time]to

[administrators].

5.1.2.21FMT_MTD.1(3)ManagementofTSFdata

FMT_MTD.1.1TheTSFshallrestricttheabilityto[empty]the[auditlogs]andto[modify]

the[SYSLOGSeverityThreshold]to[administrators].

5.1.2.22FMT_MTD.1(4)ManagementofTSFdata

FMT_MTD.1.1TheTSFshallrestricttheabilityto[create,modify,delete]the[useraccount

attributes]to[administrators].

ApplicationNoteforallFMT_MTD.1:Eachadministratorhashisprivilegelevel.These

SFRsareusedtorestrictthemanagementscopefordifferentadministrator.

FMT_SMF.1.1TheTSFshallbecapableofperformingthefollowingmanagement

functions:

1.start-upandshutdown;

2.create,modify,delete,andviewcongurationdata

3.empty,andreviewtheauditlog

4.create,delete,modify,andviewlteringrules;

5.performcongurationbackupandrestore;

6.useraccountmanagement;

7.modifydate/time;

8.trustedroutermanagementand

9.securitymanagementfunctionslistedinFMT_MOF .1

Managementofsecurityfunctionsbehavior.

5.1.2.23FMT_SMR.1Securityroles

FMT_SMR.1.1TheTSFshallmaintaintheroles[administrator].

FMT_SMR.1.2TheTSFshallbeabletoassociateuserswithroles.

ApplicationNote:althoughthereisonlyoneadministratorrole.Howevereach

administratoraccounthashisprivilegelevelandcorrespondingmanagementscope.The

managementscopeofeachprivilegeleveliscongurable.Allcommandsareassigneda

5-9

SJ-20110815105844-030|2011/08/19（R1.6）ZTECORPORATION

Zte ZXR10 M6000 Series User Manual

Questions and Answers: