Skip to main content

We've Moved!

Product Documentation has moved to docs.hitachivantara.com
Hitachi Vantara Knowledge

Controlling access to the System Management Console

The Console Security page in the HCP System Management Console lets you control access to the Console from specified IP addresses. To display this page, in the top-level menu of the Console, select Security Console Security.

NoteTo view and modify information on the Console Security page, you need the security role.

Valid IP address list entries

You can specify each IP address list entry in the Allow and Deny lists in one of the following formats:

  • A single IP address
  • A range of IPv4 addresses specified as ip-address/subnet-mask (for example, 192.168.100.197/255.255.255.0) or in CIDR format (for example, 192.168.100.0/24)
  • A range of IPv6 addresses specified in CIDR format (for example, 2001:0db8::/32)

The CIDR entry that matches all IPv4 addresses is 0.0.0.0/0. The CIDR entry that matches all IPv6 addresses is 0::0/0.

IP address list handling

IP addresses can be included in one, both, or neither of the Allow and Deny lists. To specify how HCP should handle access requests from IP addresses that are either included in both lists or excluded from both lists, select or clear the Allow request when same IP address is used in both lists option. The following table describes the effects of selecting and clearing this option.

List entriesAllow requests when same IP address is used in both lists
SelectedCleared
  • Allow list: empty
  • Denylist: empty
All IP addresses have access.No IP addresses have access.
  • Allow list: at least one entry
  • Deny list: empty
All IP addresses have access.Only IP addresses in the Allow list have access.
  • Allowlist: empty
  • Deny list: at least one entry
All IP addresses not in the Deny list have access. IP addresses in the Deny do not.No IP addresses have access.
  • Allowlist: at least one entry
  • Deny list: at least one entry
IP addresses appearing in both or neither of the lists have access.IP addresses appearing in both or neither of the lists do not have access.

 

  • Was this article helpful?