SonicOS 7 Device Settings
- SonicOS 7
- About Device Settings
- Managing SonicWall Licenses
- System Administration
- Configuring the Firewall Name
- Enabling Wireless LAN and IPv6
- Changing the Administrator Name and Password
- Configuring Login Security
- Multiple Administrators Support
- Enabling Enhanced Audit Logging Support
- Configuring the Wireless LAN Controller
- Enabling SonicOS API and Configuring Authentication Methods
- Enabling GMS Management
- Configuring the Management Interface
- Client Certificate Verification
- Selecting a Language
- Configuring Time Settings
- Managing Certificates
- Administering SNMP
- Firmware Settings
- Storage
- Restarting the System
- SonicWall Support
Configuration Modes
To allow multiple concurrent administrators, while also preventing potential conflicts caused by multiple administrators making configuration changes at the same time, these configuration modes have been defined:
Configuration mode |
Administrator has full privileges to edit the configuration. If no administrator is already logged into the appliance, this is the default behavior for administrators with full and limited administrator privileges (but not read-only administrators). Administrators with full configuration privilege can also log in using the Command Line Interface (CLI; see the SonicOS 7.0 CLI Reference Guide). |
Read-only mode |
Administrator cannot make any changes to the configuration, but can view the entire management UI and perform monitoring actions. Only administrators who are members of the SonicWall Read-Only Admins user group are given read-only access, and it is the only configuration mode they can access. |
Non-configuration mode |
Administrator can view the same information as members of the read-only group and they can also initiate management actions that do not have the potential to cause configuration conflicts. Only administrators who are members of the SonicWall Administrators user group can access non-configuration mode. This mode can be entered when another administrator is already in configuration mode and the new administrator chooses not to preempt the existing administrator. By default, when an administrator is preempted out of configuration mode, he or she is converted to non-configuration mode. On the Device | Settings > Administration page, this behavior can be modified so that the original administrator is logged out. |
Access rights available to configuration modes table provides a summary of the access rights available to the configuration modes. Access rights for limited administrators are included also, but note that this table does not include all functions available to limited administrators.
Function | Full admin in config mode | Full admin in non-config mode | Read-only administrator | Limited administrator |
---|---|---|---|---|
Import certificates | X | |||
Generate certificate signing requests | X | |||
Export certificates | X | |||
Export appliance settings | X | X | X | |
Download TSR | X | X | X | |
Use other diagnostics | X | X | X | |
Configure network | X | X | ||
Flush ARP cache | X | X | X | |
Setup DHCP Server | X | |||
Renegotiate VPN tunnels | X | X | ||
Log users off | X | X | guest users only | |
Unlock locked-out users | X | X | ||
Clear log | X | X | X | |
Filter logs | X | X | X | X |
Export log | X | X | X | X |
Email log | X | X | X | |
Configure log categories | X | X | X | |
Configure log settings | X | X | ||
Generate log reports | X | X | X | |
Browse the full UI | X | X | X | |
Generate log reports | X | X | X |
Was This Article Helpful?
Help us to improve our support portal