advertisement
USER MANUAL
Peplink Balance Series
21
System Settings
21.1 Admin Security
There are two user accounts available for accessing the Web Admin. Usernames are admin and user.
They represent two user levels- admin has full administration access, while user is a read-only account.
The read-only account can only access the device's status information and cannot make any change on the device.
Admin Account UI User Account UI
A web login session will be logged out automatically when it has been idle longer than the Web Session
Timeout. Before the session expires, you may click the Logout button in the Web Admin to exit the session
0 hours 0 minutes signifies an unlimited session time. This setting should be used only in special situations, as it will lower the system security level if users do not logout before closing the browser.
Default: 4 hours 0 minutes.
For security reason, after logging in to the Web Admin Interface for the first time, it is recommended to change the administrator password.
Configuring the administration interface to be accessible only from the LAN can further improve system security.
Administrative Settings configuration is located at: System >Admin Security
http://www.peplink.com
-151 / 199 - Copyright © 2013 Peplink
USER MANUAL
Peplink Balance Series
Admin Settings
Router Name
This field allows you to define a name for this Peplink Balance unit.
By default, Router Name is set as Balance_XXXX, where XXXX refers to the last 4 digits of the serial number of that balance unit.
Admin User Name
It is set as admin by default and is not customizable.
Admin Password
This field allows you to specify a new administrator password.
http://www.peplink.com
-152 / 199 - Copyright © 2013 Peplink
USER MANUAL
Peplink Balance Series
Confirm Admin
Password
This field allows you to verify and confirm the new administrator password.
Read-only User
Name
It is set as user by default and is not customizable.
User Password
This field allows you to specify a new user password. Once the user password is set, the feature of read-only user will be enabled.
Confirm User
Password
This field allows you to verify and confirm the new user password.
Web Session
Timeout
This field specifies the number of hours and minutes that a web session can remain idle before the balance terminate sits access to Web Admin Interface.
By default, it is set as 4 hours.
Authentication by
RADIUS
With this box is checked, Web Admin will authenticate using an external RADIUS server.
Authenticated users are treated as "admin" users with full read-write permission. Local
"admin" and "user" accounts will be disabled. When the device is not able to communicate with the external RADIUS server, local accounts will be enabled again for emergency access.
Authentication options will be available once this box is checked.
Auth Protocol
This specifies the authentication protocol used. Available options are MS-CHAP v2 and
PAP.
This specifies the access address of the external RADIUS server.
Auth Server
Auth Server
Secret
This is the secret for accessing the RADIUS server.
Auth Timeout
This option specifies the time value for authentication timeout.
Accounting Server
This specifies the access address of the external Accounting server.
Accounting Server
Secret
This is the secret for accessing the Accounting server.
Network
Connection
This option is for specifying the network connection which will be used for authentication connection. Users can choose from LAN, WAN and VPN connections.
Security
This option is for specifying the protocol(s) through which the Web Admin Interface can be accessible:
HTTP
HTTPS
HTTP/HTTPS
Web Admin Port
These fields are for specifying the port number at which the Web Admin Interface can be accessible.
Web Admin
Access
This option is for specifying the network interfaces through which the Web Admin Interface can be accessible:
LAN only
http://www.peplink.com
-153 / 199 - Copyright © 2013 Peplink
USER MANUAL
Peplink Balance Series
LAN/WAN
If LAN/WAN is chosen, a WAN Connection Access Settings form will be displayed.
WAN Connection Access Settings
This field allows you to restrict web admin access only from defined IP subnets.
Any - Allow web admin accesses to be from anywhere, without IP address restriction.
Allow access from the following IP subnets only - Restrict web admin access only from the defined IP subnets. When this is chosen, a text input area will be displayed beneath:
Allowed Source IP
Subnets
The allowed IP subnet addresses should be entered into this text area. Each IP subnet must be in form of w.x.y.z/m
Where w.x.y.z is an IP address (e.g. 192.168.0.0), and m is the subnet mask in CIDR format, which is between 0 and 32 inclusively. For example:
192.168.0.0/24
To define multiple subnets, separate each IP subnet one in a line.
For example:
192.168.0.0/24
10.8.0.0/16
This is to choose which WAN IP address(es) the web server should listen on.
Allowed WAN IP
Address(es) http://www.peplink.com
-154 / 199 - Copyright © 2013 Peplink
advertisement
Related manuals
advertisement