Cipafilter Documentation - Management Users
Posted by Jim Giseburt, Last modified by Jim Giseburt on 23 February 2018 02:50 PM
The Management Users page provides control over the users designated to administer the filter and/or access sensitive features such as VPN services. The default management user is called
Checking this box grants the user access to PPTP and L2TP VPN services, if they are configured on the VPN page.
Checking this box grants unlimited Web-management access (like the
Web-Management Interface Privileges
Check Grant access to Web-management interface to allow a user to log in to the Web-management interface. This grants access to overview and documentation pages by default. Access to additional pages can be provided by selecting a page from the Available pages list and moving it to the Accessible pages list. Note that the Management Users page itself is restricted to those users with Super-user access.
Group Permissions Group Privileges
Access to the Group Permissions page is special in that users can be restricted to managing only specific groups. To enable management access to all groups, including the ability to create, rename, and delete them, check Grant access to all groups. Otherwise, move the groups the user should have control over from the Available groups list to the Manageable groups list. These settings are only relevant to users with Group Permissions access.
SSH provides command-line (console) access to the filter's operating system. This is a very powerful and potentially dangerous feature which should be used with extreme caution, as it exposes sensitive information (such as passwords) and the possibility to disrupt or damage the filter. To enable SSH access for a user, ensure that Super-user access is checked, check Grant SSH access, and then paste one or more public keys into the box below. Public keys may be provided in either OpenSSH or SSH2 (PuTTY) format.