The administrator can configure the access to the MUs (applies for access via SE Manager and CLI) of the SE server in such a manner that it is possible only for explicitly entered IP addresses or for IP addresses from an explicitly entered IP network.
By default the list for access restrictions is empty, and access is permitted without restriction for all IP addresses and networks.
The access restriction is server-specific. In case of MU redundancy, the access restriction is valid for both MUs of the SE server.
In a Management Cluster, you can specify different IP-based access restrictions for each SE server.
> | In the tree structure select Authorizations
|
The IP-based access rights tab displays the IP addresses and networks for which access to the MUs of the SE server is allowed.
If two SE servers form a Management Cluster, the additional Server column indicates for which SE server the access authorization is defined.
The following options are available to you:
Allow IP address or network
> | Click Allow IP address and enter the IP address or network in the subsequent dialog box. For a Management Cluster, you also have to determine whether the access restriction is valid for all SE servers or only for a single SE server. The default is All. With the first entry (IP address or IP network) you enable IP-based access restriction to the MUs of the SE server. Access is then only possible for IP addresses which are entered either explicitly or via an IP network. Because of that, the IP address of your administration PC, from which you have logged on to the SE Manager, should be part of the first entry. |
Remove IP address or network
> | By the required IP address or network, click the Remove icon and confirm the action. As soon as you delete the last entry from the list for access restrictions, access to the MUs of the SE server is once again possible for all IP addresses without restriction. You should delete the entry that contains the address of your administration PC last. |