Modifying an access policy, Deleting an access policy, Configuring access ssids – H3C Technologies H3C Intelligent Management Center User Manual

Page 150

Advertising
background image

132

Reject Duplicate MAC Addresses—Select this option if you want to prohibit the user's

endpoint from using the same MAC address as an online user.

Block VMware NAT Service—Select this option if you want to prohibit the user from setting
vNICs to NAT mode on VMs. When this option is enabled, unauthorized VMs cannot use

the host computer's IP address for network access.

Block VMware USB Service—Select this option if you want to prohibit the user from using
the VMWareHostd and VMUSBArbService services. When this option is enabled, VMs

cannot use the USB devices that are mounted to the host computer. When both this option

and Block VMware NAT Service are enabled, the host computer cannot share the wireless
hotspots that are created on the vNICs of VMs.

Prohibit from Running on Virtual Machine—Select this option if you want to prohibit the
user from running the iNode client on a virtual machine.

IP Address Assignment Method—Select the IP address assignment method on the endpoint:
All, Static, or Dynamic.

7.

Click OK.
The page refreshes to display the new access policy on the access policy list.

Modifying an access policy

1.

Access the access policy list page.

2.

Click the Modify icon for the access policy you want to modify.
The Modify Access Policy page appears.

3.

Modify parameters of the access policy except its service group. For more information, see
"

Adding an access policy

."

4.

Click OK.

Deleting an access policy

An access policy cannot be deleted when it is selected in a service. To delete the access policy, first
remove the association between the access policy and the service.
To delete an access policy:

1.

Access the access policy list page.

2.

Click the Delete icon for the access policy you want to delete.
A confirmation dialog box appears.

3.

Click OK.

Configuring access SSIDs

UAM can control the accessible wireless networks by SSID. All SSIDs on the wireless client SSID list

cannot be accessed. When a service requires SSID check for wireless clients, the following rules apply:

If a match is found in the wireless client SSID list, the client cannot access the network.

If no match is found in the wireless client SSID list, the client can access the network.

If UAM cannot obtain the SSID bound to the client or the obtained SSID is empty, the client can
access the network.

Advertising
Popular Brands
Popular manuals