Configuring ip authorized managers for the switch – IronPort Systems 4108GL User Manual
Page 193
10-9
Using Authorized IP Managers for Increased Management Security
Using Authorized IP Managers
Usin
g
Au
th
o
riz
e
d
IP
Ma
nag
e
rs
Configuring IP Authorized Managers for the Switch
Syntax:
ip authorized-managers <ip address>
[mask <mask-bits>]
<operator | manager>
To Authorize Manager Access.
This command authorizes manager-level
access for any station having an IP address of 10.28.227.0 through
10.28.227.255:
HP4108(conf
ig
)# ip authorized-managers
10.28.227.101 mask 255.255.255.0 manager
Similarly, the next command authorizes manager-level access for any station
having an IP address of 10.28.227.101 through 103:
HP4108(config)# ip authorized-managers
10.28.227.101 mask 255.255.255.252 manager
If you omit the mask when adding a new authorized manager, the switch
automatically uses 255.255.255.255 for the mask. If you do not specify
either Manager or Operator access, the switch automatically assigns the
Manager access. For example:
HP4108(config)# ip authorized-managers 10.28.227.105
The result of entering the above example is:
•
Authorized Station IP Address: 10.28.227.105
•
IP Mask: 255.255.255.255, which authorizes only the specified station
(10.28.227.105 in this case). (See “Configuring Multiple Stations Per
Authorized Manager IP Entry” on page 10-11.)
•
Access Level: Manager
To Edit an Existing Manager Access Entry.
To change the mask or
access level for an existing entry, use the entry’s IP address and enter the new
value(s). (Notice that any parameters not included in the command will be set
to their default.):
HP4108(config)# ip authorized-managers
10.28.227.101 mask 255.255.255.0 operator
The above command replaces the existing mask and access level for IP
address 10.28.227.101 with 255.255.255.0 and operator.