Controlling access to the System Management Console
The Console Security page in the HCP System Management Console lets you control access to the Console from specified IP addresses. To display this page, in the top-level menu of the Console, select .
Valid IP address list entries
You can specify each IP address list entry in the Allow and Deny lists in one of the following formats:
- A single IP address
- A range of IPv4 addresses specified as ip-address/subnet-mask (for example, 192.168.100.197/255.255.255.0) or in CIDR format (for example, 192.168.100.0/24)
- A range of IPv6 addresses specified in CIDR format (for example, 2001:0db8::/32)
The CIDR entry that matches all IPv4 addresses is 0.0.0.0/0. The CIDR entry that matches all IPv6 addresses is 0::0/0.
IP address list handling
IP addresses can be included in one, both, or neither of the Allow and Deny lists. To specify how HCP should handle access requests from IP addresses that are either included in both lists or excluded from both lists, select or clear the Allow request when same IP address is used in both lists option. The following table describes the effects of selecting and clearing this option.
List entries | Allow requests when same IP address is used in both lists | |
Selected | Cleared | |
| All IP addresses have access. | No IP addresses have access. |
| All IP addresses have access. | Only IP addresses in the Allow list have access. |
| All IP addresses not in the Deny list have access. IP addresses in the Deny do not. | No IP addresses have access. |
| IP addresses appearing in both or neither of the lists have access. | IP addresses appearing in both or neither of the lists do not have access. |