Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
730
Views
0
Helpful
1
Replies

SG 200-08P Secure lockdown question/s

realityhack0
Level 1
Level 1

‎07-06-2011 11:37 AM

I have an SG 200-08P. I need to restrict access to the web interface for security. Unfortunately I have found this nearly impossible.

- Is there any way to restrict access to HTTPS? Seems simple but I haven't found a method of doing so. IIRC this is required for compliance with some security standards.

- How can I set the switch to only allow management from a single port (it seems like this is an option but I haven't figured out how). Every time I try to set up a VLAN for administration the switch ends up locking out all connections or something similar and I have to reset it.

- As far as I can tell the 'cisco' user can not be deleted, disabled, or removed from administration under any circumstances. Is that really correct? Seems like a horrific security hole to me.

Thanks in advance for your time.

Labels:
0 Helpful
1 Reply 1

realityhack0
Level 1
Level 1

‎07-07-2011 09:52 AM

I finally got things configured so only one phisical port can be used for administration.

I am still not happy with Cisco for disallowing the re-naming of the default user and especially for leaving HTTP open no matter what.

0 Helpful
Customers Also Viewed These Support Documents