6-21
Configuring the Switch
Enhancing Security By Configuring Authorized IP Managers
Configuring the Switch
Enhancing Security By Configuring
Authorized IP Managers
This feature enables you to enhance security on the switch by using IP
addresses to authorize which stations (PCs or workstations) are allowed to:
■ Access the switch’s web browser interface
■ Telnet into the switch’s console interface
■ Perform TFTP transfers of configurations and software updates into the
switch
Note This feature does not affect SNMP access to the switch by SNMP-authorized
management stations. (SNMP access is protected by community names and
an independent SNMP Authorized Managers list.)
You can configure:
■ Up to 10 authorized manager addresses, where each address applies to
either a single management station or a group of stations
■ Either a Manager or Operator access level
Note This feature does not protect access to the switch through a modem or direct
Console (RS-232) port connection. Also, if the IP address assigned to an
authorized management station is configured in another station, the other
station can gain management access to the switch even though a duplicate IP
address condition exists. For these reasons, you should enhance your net-
work’s security by keeping physical access to the switch restricted to autho-
rized personnel, using the password features built into the switch, and
preventing unauthorized access to data on your management stations.
Access Levels
For each authorized manager address, you can configure either one of these
access levels:
■ Manager: Enables full access to all web browser and console interface
screens for viewing, configuration, and all other operations available in
these interfaces.
■ Operator: Allows view-only access from the web browser and console
interfaces. (This is the same access that is allowed by the switch’s opera-
tor-level password feature.)