Specifications
WebConsole - Security Options
28
NX-Series Controllers - WebConsole & Programming Guide
4. Enable the security access rights you want to provide to the group. By default, all of these options are disabled. See
the Group and User Security Access Options section on page 28 for details.
5. Click the Accept button to save your changes to the target Master.
If there are no errors within any of the page parameters, a “Group added successfully” displays at the top of the
page.
Note: Security changes made from within the web browser are applied instantly without the need to reboot.
Group and User Security Access Options
Group and User Security Access Options
Option Description
Admin Change
Password Access:
This selection enables or disables the Administrator right to change Group and User passwords.
Terminal (RS232)
Access:
If selected, a valid user name and password is required for Terminal communication via the Master’s
Program port.
HTTP Access: If selected, a valid user name and password is required for communication over HTTP or HTTPS
Ports, including accessing the WebConsole.
Telnet/SSH/SFTP
Access:
If selected, a valid user name and password is required for Telnet Access. Telnet access allows
communication over either the Telnet and/or SSH Ports, and Secure FTP access.
Note: SSH version 2 (only) is supported.
To establish a secure Telnet connection, an administrator can decide to disable the Telnet Port and
then enable the SSH Port. Refer to the Manage System - Server Options section on page 44.
Configuration: If selected, a valid user name and password is required before allowing a group/user to alter the
current Master’s security and communication settings via NetLinx Studio.
This includes such things as: IP configuration/Reset, URL list settings, Master communication
settings, and security parameters.
ICSP Connectivity: If selected, a valid user name and password is required to communicate with the NetLinx Master via
an ICSP connection (TCP/IP, UDP/IP, and RS-232).
• This feature allows communication amongst various AMX hardware and software components.
This feature works in tandem with the Require Encryption option (see below) to require that any
application or hardware communicating with the Master must provide a valid user name and
password.
• In a Master-to-Master system, the Master which accepts the IP connection initiates the
authentication process. This configuration provides compatibility with existing implementations
and provides more flexibility for the implementation of other devices.
Note: The ICSP Connectivity option is required to allow authenticated and/or secure communication
between the Master and other AMX hardware/software. To establish an authenticated ICSP
connection (where the external AMX hardware/software has to provide a valid user name and
password), this option must be enabled.
Encrypt ICSP
Connection:
If selected, this option requires that any data being transmitted or received via an ICSP connection
(among the various AMX products) be encrypted, and that any application or hardware
communicating with the Master over ICSP must provide a valid user name and password.
Note: When enabled, this option requires more processor cycles to maintain.