SensusRF gateway user manual
| 29/10/2019
FIGURE 13-22 – SERVICE ACCESS CONTROL OVER THE INTERFACE
The client IP addresses or network range allowed to access the services could also be restricted. When the
“IP access” field is left empty, all IP addresses can access the service over the allowed interfaces. When an IP
address or network range is specified, only those will be able to access the service over the allowed interfaces.
FIGURE 13-23 – CLIENT IP ADDRESS RESTRICTION
More than one IP address or network range can be specified separated by coma “,” and the network range
must be written using the IPv4 CIDR notation. For IPv4 CIDR notation references, please visit the sites
https://whatismyipaddress.com/cidr and https://ping.eu/network-calc/
13.6 Certificate
It is possible to configure Two-factor Authentication in the Gateway using Client Certificates by clicking on
“Advanced”, “Certificate”.
Client certificates are used to validate the “identity of a client (user)”. The client, in this case, is the user
browser used to access the Gateway web pages. Using Client Certificates, the gateway makes sure that it is
allowing a permitted user and that it is safe to communicate with it.
User passwords are always required. When Client Certificates are configured, the Gateway combines the use
of client certificates with user/passwords authentication to make the web page access more secure. In
technical terms, this is called ‘Two-factor Authentication.’
To Next Page
Loading...
General