Configuring The Secure Http Client - Cisco IE-4000 Software Configuration Manual

Configuring Switch-Based Authentication
Monitoring and Maintaining Switch-Based Authentication

Configuring the Secure HTTP Client

Before You Begin
The standard HTTP client and secure HTTP client are always enabled. A certificate authority is required for secure HTTP
client certification. This procedure assumes that you have previously configured a CA trustpoint on the switch. If a CA
trustpoint is not configured and the remote HTTPS server requires client authentication, connections to the secure HTTP
client fail.
Command
1. configure terminal
2. ip http client secure-trustpoint name
3. ip http client secure-ciphersuite
{[3des-ede-cbc-sha] [rc4-128-md5]
[rc4-128-sha] [des-cbc-sha]}
4. end
5. show ip http client secure status
6. copy running-config startup-config
Monitoring and Maintaining Switch-Based Authentication
Command
show running-config
copy running-config startup-config
show tacacs
debug radius
debug aaa coa
debug cmdhd
show aaa attributes protocol radius
show ip ssh
show ssh
show ip http client secure status
show ip http server secure status
Purpose
Enters global configuration mode.
(Optional) Specifies the CA trustpoint to be used if the remote HTTP
server requests client authentication. Using this command assumes that
you have already configured a CA trustpoint by using the previous
procedure. The command is optional if client authentication is not needed
or if a primary trustpoint has been configured.
(Optional) Specifies the CipherSuites (encryption algorithms) to be used
for encryption over the HTTPS connection. If you do not have a reason to
specify a particular CipherSuite, you should allow the server and client to
negotiate a CipherSuite that they both support. This is the default.
Returns to privileged EXEC mode.
Displays the status of the HTTP secure server to verify the configuration.
(Optional) Saves your entries in the configuration file.
Purpose
Verifies your configured entries.
Saves your entries in the configuration file.
Displays the TACACS+ server statistics.
Displays the information associated with RADIUS.
Displays the debug information for CoA processing.
Displays the debug information for the command handler.
Displays the RADIUS attributes.
Displays the version and configuration information for the
SSH server.
Displays the status of the SSH server.
Displays the HTTP secure client configuration.
Displays the HTTP secure server configuration.
183