Skip to content
Any configuration changes made locally on the switch won't be synchronized with Sophos Central. We recommend making changes from the Sophos Central control panel instead.

Page permalink

Always use the following permalink when referencing this page. It will remain unchanged in future help versions.

https://docs.sophos.com/nsg/switch/help/en-us/index.html?contextId=user-guide-features-security-access-settings

Access Settings

Web Settings

The Sophos switch provides a built-in browser interface that enables you to configure and manage the switch via Hypertext Transfer Protocol (HTTP), and Hypertext Transfer Protocol Secure (HTTPS) requests selectively to help prevent security breaches on the network. You can further manage your HTTP and HTTPS settings for the switch by choosing the length of session timeouts for HTTP and HTTPS requests. Select whether to turn on or turn off the HTTP service and enter the HTTP Timeout session. Next, select whether to turn on or turn off the HTTPS service and enter the HTTPS timeout session for the switch.

Option Description
Session Timeout Enter the amount of time that elapses before HTTP and HTTPS service is timed out. The default is 5 minutes. The range is from 0 to 10000 minutes.
HTTP Service Select whether HTTP service for the switch is Enabled or Disabled. This is enabled by default.
HTTPS Service Select whether the HTTPS service is Enabled or Disabled. This is enabled by default.

CLI Settings

From here, you can configure and manage the Switch's Telnet protocol settings. The Telnet protocol is a standard internet protocol that enables terminals and applications to interface over the internet with remote hosts by providing Command Line Interface (CLI) communication using a virtual terminal connection. This protocol provides the basic rules for making it possible to link a client to a command interpreter. The Telnet service for the switch is turned on by default. Note that for secure communication, it’s better to use SSH over Telnet. To turn on and configure SSH Settings, refer to SSH Settings on the next page.

Option Description
Session Timeout Enter the amount of time that elapses before telnet and SSH service is timed out. The default is 30 minutes. The range is from 0 to 10000 minutes.
Telnet Service Select whether telnet service for the switch is Enabled or Disabled. This is enabled by default.
SSH Service Select whether the SSH service is Enabled or Disabled. This is enabled by default.

Click Apply to update the system settings.

Authentication method

To configure the authentication method, do as follows:

  1. Select the Login authentication method from the dropdown menu. The following options are available:

    Option Description
    Local Only authenticate directly with Sophos Switch.
    RADIUS fallback to local Authenticate using the configured RADIUS server. If the RADIUS authentication fails, it reverts to local authentication.
    TACACS+ fallback to local Authenticate using the configured TACACS+ server. If the TACACS+ authentication fails, it reverts to local authentication.

  2. Click Apply.