56 3Com® VCX V7111 VoIP Gateway User GuideUser AccountsTo prevent unauthorized access to the Embedded Web Server, two user accounts areavailable, a primary and secondary. Each account is composed of three attributes:username, password and access level. The username and password enable access to theEmbedded Web Server itself; the access level determines the extent of the access (that is,availability of screens and read / write privileges). Note that additional accounts can bedefined using a RADIUS server (see SRTP).Table 16 lists the available access levels and their privileges.Table 16 Available Access Levels and their PrivilegesAccess Level NumericRepresentation* PrivilegesSecurity Administrator 200 Read / write privileges for all screensAdministrator 100 Read-only privilege for security-related screensand read / write privileges for the othersUser Monitor 50 No access to security-related and file-loadingscreens and read-only access to the othersNo Access 0 No access to any screen* The numeric representation of the access level is used only to define accounts in a RADIUS server (theaccess level ranges from 1 to 255).The access level mechanism operation is as follows (for both Web and RADIUS accounts):Each Web screen features two (hard-coded) minimum access levels, read and write. Theread access level determines whether the screen can be viewed. The write access leveldetermines whether the information in the screen can be modified.When a user tries to access a specific Web screen, the user's access level is compared withthe access levels of the screen: If the access level of the user is less than the screens read access level, the screencannot be viewed. If the access level of the user is equal to or greater than the screens read access levelbut less than the write access level, the screen is read only. If the access level of the user is equal to or greater than the screens write access level,the screen can be modified.