Configuring Profile Rules - Cisco 220 Series Smart Plus Administration Manual

Hide thumbs Also See for 220 Series Smart Plus:

Reference manual (582 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

260

261

262

263

264

265

266

267

268

269

270

271

272

273

274

275

276

277

278

279

280

281

282

283

284

285

286

287

page of 287

/ 287
Contents
Table of Contents
Bookmarks

Table of Contents

Configuring Security

Configuring Management Access Methods

STEP 5

STEP 1

STEP 2

STEP 3

STEP 4

Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x

Click Apply. The access profile is created, and the Running Configuration is

updated.

Configuring Profile Rules

Access profiles can contain multiple rules to determine who is permitted to

manage and access the switch, and the access methods that may be used.

Each rule in an access profile contains an action and a criteria (one or more

parameters) to match. Each rule has a priority; rules with the lowest priority are

checked first. If the incoming packet matches a rule, the action associated with the

rule is performed. If no matching rule is found within the active access profile, the

packet is dropped.

For example, you can limit access to the switch from all IP addresses except IP

addresses that are allocated to the IT management center. In this way, the switch

can still be managed and has gained another layer of security.

To add rules to an access profile:

Click Security > Management Access Method > Profile Rules.

Select an access profile, and click Go.

Click Add to add a rule for the selected access profile.

Enter the following information:

•

Access Profile Name—Select an access profile to be configured.

•

Rule Priority—Enter the rule priority. When the packet is matched to a rule,

user groups are either granted or denied access to the switch. The rule

priority is essential to matching packets to rules, as packets are matched on

a first-match basis. One is the highest priority.

•

Management Method—Select the management method for which the rule

is defined. The options are:

All

—Assigns all management methods to the rule.

Telnet

—Users requesting access to the switch who meet the Telnet

access profile criteria, are permitted or denied access.

Secure Telnet (SSH)

the Telnet access profile criteria, are permitted or denied access.

—Users requesting access to the switch who meet

190

Table of Contents

Configuring Profile Rules - Cisco 220 Series Smart Plus Administration Manual

Configuring Profile Rules

Related Manuals for Cisco 220 Series Smart Plus

Related Content for Cisco 220 Series Smart Plus

Table of Contents