User's Manual

– 49 –

4 Management Settings

This chapter describes management access settings on the access point. It includes

the following sections:

◆ “Remote Management Settings” on page 49

◆ “Access Limitation” on page 51

◆ “Simple Network Management Protocol” on page 52

Remote Management Settings

The Web, Telnet, and SNMP management interfaces are enabled and open to all IP

addresses by default. To provide more security for management access to the

access point, specific interfaces can be disabled and management restricted to a

single IP address or a limited range of IP addresses.

Once you specify an IP address or range of addresses, access to management

interfaces is restricted to the specified addresses. If anyone tries to access a

management interface from an unauthorized address, the access point will reject

the connection.

Telnet is a remote management tool that can be used to configure the access point

from anywhere in the network. However, Telnet is not secure from hostile attacks.

The Secure Shell (SSH) can act as a secure replacement for Telnet. The SSH protocol

uses generated public keys to encrypt all data transfers passing between the access

point and SSH-enabled management station clients and ensures that data traveling

over the network arrives unaltered. Clients can then securely use the local user

name and password for access authentication.

Note that SSH client software needs to be installed on the management station to

access the access point for management via the SSH protocol.

Both HTTP and HTTPS service can be enabled independently. If you enable HTTPS,

you must indicate this in the URL: https://device:port_number]

When you start HTTPS, the connection is established in this way:

◆ The client authenticates the server using the server’s digital certificate.

◆ The client and server negotiate a set of security protocols to use for the

connection.