Table of Contents
Advertisement
Configuring Security
Configuring Management Access Methods
Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x
•
Access Methods—Methods for accessing and managing the switch:
-
Telnet
-
Secure Telnet (SSH)
-
Hypertext Transfer Protocol (HTTP)
-
Secure HTTP (HTTPS)
-
Simple Network Management Protocol (SNMP)
-
All of the above
•
Action—Permits or denies access to an interface or source address.
•
Interface—Which ports or LAGs are permitted to access or denied access
to the web-based interface.
•
Source IP Address—IP addresses or subnets. Access to management
methods might differ among user groups. For example, one user group
might be able to access the switch module only by using an HTTPS
session, while another user group might be able to access the switch
module by using both HTTPS and Telnet sessions.
Active Access Profile
The Access Profiles page displays the access profiles that are defined and
enables selecting one access profile to be the active one. Only one access profile
can be active on the switch and any attempt to access the switch must fit the rules
in the active access profile.
When a user attempts to access the switch through an access method, the switch
looks to see if the active access profile explicitly permits management access to
the switch through this method. If no match is found, access is denied.
If a console-only access profile has been activated, the only way to deactivate it is
through a direct connection from the management station to the physical console
port on the switch.
After an access profile has been defined, additional rules can be added or edited
on the Profiles Rules page. See
Configuring Profile Rules
16
for more details.
187
Advertisement
Table of Contents
