Reset Search
 

 
Article

KB40497 - Restrict access via Device Management Interface (DMI)

Printable View
« Go Back

Information

 
Last Modified Date7/12/2017 4:22 AM
Synopsis
This article provides information how to restrict access via device management interface.
Problem or Goal
The PCS or PPS admin has been requested to limit DMI to specific machines; this article discusses how to achieve this goal
Cause
Solution

Method 1: Create a new realm and put source IP restrictions on the realm

  1. Login to the admin console
  2. Navigate to Administrators > Admin Realms
  3. Click New
  4. Create a name for the realm
  5. Click Save Changes
  6. From the newly created admin realm, navigate to Authentication Policy > Source IP
  7. Apply the source IP rule as either a specific host restriction or a network restrictionAllowing multiple systems from the same network (10.10.10.0/255.255.255.128) at Administrators>Admin Realms>DMI REALM NAME>Authentication Policy>Source IPa sample source IP restriction for a specific host (10.10.10.10/255.255.255.255) at Administrators>Admin Realms>DMI REALM NAME>Authentication Policy>Source IP

Method 2: Create a new role and create role mapping rules that the DMI admin(s) are assigned to the new role; assign source IP rules to the new role

  1. Login to the admin console
  2. Navigate to Administrators > Admin Roles
  3. Navigate to General > Restrictions > Source IP
  4. Assign source IP restrictions on the roleSource IP restrictions with a sample for both host (10.10.10.10/255.255.255.255) and network (10.10.10.128/255.255.255.192) at Administrators>Admin Roles>DMI ADMIN ROLE>General>Restrictions>Source IP
  5. Create the role mapping rule on the Admin Users realm (or preferred admin realm)Setting the role mapping at Administrators>Admin Realms>Admin Users>DMI ADMIN ROLE
Related Links
Attachment 1 
Created ByNick Christen

Feedback

 

Was this article helpful?


   

Feedback

Please tell us how we can make this article more useful.

Characters Remaining: 255