Using Passwords, Port Security, and Authorized IP Managers To Protect Against Unauthorized Access
Using IP Authorized Managers
Using IP Authorized Managers
Authorized IP Manager Features
Feature
Listing (Showing) Authorized
Managers
Configuring Authorized IP
Managers
Building IP Masks
Operating and Troubleshooting
Notes
This feature enables you to enhance security on the switch by using IP
addresses to authorize which stations (PCs or workstations) can access the
switch. Thus, having the correct passwords is not sufficient for accessing the
switch through the network unless the station attempting access is also
included in the switch's Authorized IP Managers configuration. Access con-
trols cover:
I
I
I
I
You can configure:
I
I
N o t e
This feature does not protect access to the switch through a modem or direct
connection to the Console (RS-232) port. Also, if the IP address assigned to
an authorized management station is configured in another station, the other
station can gain management access to the switch even though a duplicate IP
address condition exists. For these reasons, you should enhance your net-
work's security by keeping physical access to the switch restricted to autho-
rized personnel, using the password features built into the switch, and
preventing unauthorized access to data on your management stations.
7-28
The switch's web browser interface
Telnet (CLI or menu interface)
SNMP (network management)
File transfers using TFTP (for configurations and software updates)
Up to 10 authorized manager addresses, where each address applies to
either a single management station or a group of stations
Manager or Operator access level
Default
Menu
n/a
page 7-31
None
page 7-31
n/a
page 7-34
n/a
page 7-37
CLI
Web
page 7-32
page 7-34
page 7-32
page 7-34
page 7-34
page 7-34
page 7-37
page 7-37