To grant console access to specific ProxySG appliances, admin/console access should be given to users who are accessing the management/SSH console of the proxy from a specific machine. This can be done using the Management Console or the command line interface (CLI).
In the Management Console:
- In the Management Console, select Configuration > Authentication > Console Access > Console Access tab.
- Click New, enter the IP address and Subnet mask and click OK.
- Select Enforce ACL for built-in administration.
- Click OK and then click Apply.
Note: If you cannot access the Management Console because your IP address is not included in the ACL, you must access the appliance through the serial console and add your IP address through the CLI, as follows.
Enter the following command in the CLI:
#(config) security allowed-access add <Source IP> [IP mask]
If you would rather use policy to control console access, see /articles/Solution/UsepolicytocontrolProxySGadministratoraccess.