User List
TOS and Local User Accounts
The X family device has two types of user accounts:
A TOS User account provides access to the administrative interfaces of TOS to manage the device through the LSM web interface or from the Command Line Interface (CLI). The management functions available to a TOS user are determined by the account access level configured on the account. TOS users can only be defined in the embedded TOS user database on the device. TOS users cannot be configured in a RADIUS server.
The following levels are available:
•Operator — Base level administrator user who monitors device and network traffic
•Administrator — Enhanced administrator user who can view, manage, and configure functions and options in the device
•
A Local User account provides controls on client access to network services through the device. Access to services is controlled through the X family device authentication mechanism. Local users cannot access the TOS administrative interfaces to manage the device. Local Users may be authenticated using the embedded user database within the TOS, or may be defined in a RADIUS server.
TOS User Security Level
For TOS user accounts, you can configure one of three access security levels:
•Operator — Base level administrator user who monitors device and network traffic
•Administrator — Enhanced administrator user who can view, manage, and configure functions and options in the device
•
Note For local users, access to network services is controlled by Privilege Groups. For details, see “Privilege Groups” on page 253.
The following table summarizes the functions available to users based on the Security Level access (Operator, Administrator, or
Table
Functional | Operator | Administrator | ||
Area | ||||
|
|
| ||
|
|
|
| |
|
|
|
| |
IPS/ | view | all | all | |
Quarantine |
|
|
| |
|
|
|
| |
Firewall | view | all | all | |
|
|
|
| |
Network | view | all | all | |
|
|
|
| |
VPN | view | all | all | |
|
|
|
|
X Family LSM User’s Guide V 2.5.1 | 247 |
|
|