Access Control; Chapter 66 Access Control; Access Control Overview; What You Can Do - ZyXEL Communications XGS2220 Series User Manual

30/54-port gbe/sfp smart managed layer-3 switch

Table of Contents

This chapter describes how to control access to the Switch.

A console port and FTP are allowed one session each, Telnet and SSH share nine sessions, up to five web

sessions (five different user names and passwords) and/or limitless SNMP access control sessions are

Table 253 Access Control Overview

Console Port

A console port access control session and Telnet access control session cannot coexist when multi-login

is disabled. See the CLI Reference Guide for more information on disabling multi-login.

• Use the Service Access Control screen

use to access the Switch.

• Use the Remote Management screen

"trusted computers" from which an administrator may use a service to manage the Switch.

• Use the Account Security screen

the Switch. You can also display the authentication, authorization, external authentication server

information (RADIUS or TACACS+), system and SNMP user account information in the configuration file

Service Access Control allows you to decide what services you may use to access the Switch. You may

also change the default service port and configure "trusted computers" for each service in the

SECURITY > Access Control > Remote Management screen (discussed later). Click SECURITY > Access

Control > Service Access Control to display the following screen.

Access Control

Share up to 9 sessions

(Section 66.2 on page

(Section 66.3 on page

(Section 66.4 on page

XGS2220 Series User's Guide

Up to 5 accounts

443) to decide what services you may

444) to specify a group of one or more

445) to encrypt all passwords configured in