Filter
Top Products
44
C
HAPTER
3: A
CCESSING
THE
S
WITCH
The most common applications that use access profiles allow you to
remotely manage the switch across the network, for example:
■
SNMP read access
■
SNMP read and write access
■
Te l n e t
■
Web access
Creating an Access
Profile
Access profiles are created to specifically permit or deny users access to
an application. Access is restricted by assigning an access profile to the
service that is being used for remote access. First, create and configure
the access profile with the desired controls. Next, configure the
application to use the access profile that you have created. You must
configure the application to use the named access profile. Otherwise, no
restrictions are applied. Ta b l e 1 1
lists access profile commands.
Table 11
Access Profile Configuration Commands
Command Description
config access-profile <access_profile>
add ipaddress <ipaddress>
<subnet_mask>}
Adds an IP address to the access profile.
config access-profile <access_profile>
delete ipaddress <ipaddress>
<subnet_mask>
Deletes an IP address from the access profile.
config access-profile <access_profile>
mode [permit | deny]
Configures the access profile to be one of the
following:
■
permit
— Allows the addresses that
match the access profile description.
■
deny
— Denies the addresses that match
the access profile description.
The default setting is
permit
.
create access-profile <access_profile>
type ipaddress
Creates an access profile. Once the access
profile is created, one or more addresses can
be added to it, and the profile can be used to
control access to an application.
delete access-profile <access_profile>
Deletes an access profile.
show access-profile <access_profile>
Displays access-profile related information for
the switch.