I have an SG 200-08P. I need to restrict access to the web interface for security. Unfortunately I have found this nearly impossible.
- Is there any way to restrict access to HTTPS? Seems simple but I haven't found a method of doing so. IIRC this is required for compliance with some security standards.
- How can I set the switch to only allow management from a single port (it seems like this is an option but I haven't figured out how). Every time I try to set up a VLAN for administration the switch ends up locking out all connections or something similar and I have to reset it.
- As far as I can tell the 'cisco' user can not be deleted, disabled, or removed from administration under any circumstances. Is that really correct? Seems like a horrific security hole to me.
Thanks in advance for your time.