MikroTik

Community discussions
https://forum.mikrotik.com/

User restricted to serial login

https://forum.mikrotik.com/viewtopic.php?t=163139

Page 1 of 1

User restricted to serial login

Posted: Thu Jul 02, 2020 1:20 pm
by txfz
I'm looking to create a user that can only login via the serial interface. (console port) I thought about setting its allowed address to 0.0.0.0/32. That should at least prohibit any IP connection attemps, right? Would this still allow MAC connections? We'll probably disable that, so that's fine.

Is there a better way to do this? I looked at the special login feature, but I couldn't see that it could be used for this purpose.

Re: User restricted to serial login

Posted: Sat Jul 04, 2020 6:22 pm
by mutluit
I'm looking to create a user that can only login via the serial interface. (console port) I thought about setting its allowed address to 0.0.0.0/32. That should at least prohibit any IP connection attemps, right? Would this still allow MAC connections? We'll probably disable that, so that's fine.

Is there a better way to do this? I looked at the special login feature, but I couldn't see that it could be used for this purpose.
Create a restricted local user-group and assign that user to that user-group. Ie. a "local" group, without web, ssh, telnet, winbox, api, etc.,
See System / User in GUI.

Re: User restricted to serial login

Posted: Mon Jul 06, 2020 9:42 am
by txfz
Thanks!
All times are UTC+02:00
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/