This page has a range of options relating to the browser-based and LCD front-panel interfaces. It is divided into four eight tabs: Web Access, HTTPS Certificate, User Accounts, Radius, TACACS+, SSH Access, Graphing, and Miscellaneous.
HTTPS SSL Certificate, HTTPS SSL Private Key. These boxes allow you to paste in your own certificate and private key for SSL security, which is used by HTTPS. The Appliance is delivered with a default SSL key and certificate, which is not particularly secure. To replace it with your own key and certificate, generate these using your organization’s standard procedure, then paste them into the boxes on the UI page and press the Update button.
You can create as many accounts as you like.
The menu page is self-explanatory. Changes take effect as soon as the Update, Delete, or Add buttons are pressed.
RADIUS and TACACS+ authentication are also supported. The user interface for the two are similar. Enter the IP address of the authentication server, verify the port number (the default is usually correct), enter the shared secret and press the Update button.
Note on RADIUS authentication--Radius authentication will succeed if the RADIUS server returns an 'Accept-Access' packet with an appropriate 'Service-Type' attribute. If 'Service-Type' is 'Login,' then the user is granted viewer access. If it is 'Administrative,' then the user is granted admin access. Otherwise, access is denied.
Note on TACACS authentication--Administrative privileges are granted if the TACACS user has privilege level 15. Lower levels will be granted viewer access.
Two methods of accessing the unit are enabled by default, but can be disabled if desired. One is SSH access, which must be running for the CLI feature to work. It also allows Support access to the Appliance if necessary. The other is 'Web Access,' access to the browser-based user interface.
The two functions have Disable/Enable buttons. However, if you disable web access, you will of course not be able to access the button to re-enable it. To re-enable the browser-based user interface, use the RS-232 or CLI interface.
This tab controls the graphing functions of the acceleration engine, which covers the graphs on the Monitoring pages but not those on the Reports pages or the Dashboard, which are configured separately.