Controlling access to a switch
You can control access to the switch by creating an access policy. An access policy specifies the hosts or networks that can access the switch through various services, such as Telnet, SNMP, HTTP, rsh, and rlogin.
You can define network stations that are explicitly allowed to access the switch or network stations that are explicitly forbidden to access the switch. For each service you can also specify the level of access, such as read-only or read/write/all.
To create a new access policy:
- From the Device Manager menu bar, choose Edit > Security.
| The Security dialog box opens with the Access Policies tab active. |
- In the Security dialog box, click Insert.
- Make sure PolicyEnable is checked.
- Select the mode to allow or deny a service.
- Select a service.
- Set a precedence number for the service (lower numbers mean higher precedence).
- Enter an IP address in the NetAddr field.
- Enter the NetMask used for the NetAddr field.
- Enter an IP address for the trusted host.
- Enter a user name for the trusted host.
- Select the access level for the service.
- Select AccessStrict, if desired.
|
Note:
When you select this option, you specify that a user must have an access level identical to the one you selected in the dialog box to be able to use this service.
|
- Click Insert.
To continue, go to: