Nortel 3050 Command Reference Manual page 98
Vpn gateway
Hide thumbs
Also See for 3050:
- Troubleshooting manual (70 pages) ,
- Installation manual (22 pages) ,
- Implementation manual (15 pages)
Table of Contents
Advertisement
98 Command Reference
Table 24
SSL Settings Menu Options (/cfg/ssl/server/ssl) (cont'd.)
Command Syntax and Usage
cachain <certificate index number>
protocol ssl2|ssl3|ssl23|tls1
verify none|optional|require
Copyright © 2007 Nortel Networks
.
Note: If you are using one of the available certificates to generate your own
client certificates, you must specify it as a CA certificate to successfully
authenticate clients. For more information on client authentication, see the
section "Configuring a Virtual SSL Server for Client Authentication" in the
"Certificates and Client Authentication" chapter in the User's Guide.
Specifies the CA certificate chain of the server certificate. The chain starts
with the issuing CA certificate of the server certificate, and can range up
to the root CA certificate. This command explicitly constructs the server
certificate chain, which is sent to the browser in addition to the server
certificate.
When specifying more than one certificate, use commas to separate the
corresponding index numbers. Example: 1,2,5
To clear all specified chain certificates, press ENTER when asked to enter
the certificate numbers, then answer yes to the question if you want to clear
the list.
Note: When configuring the virtual SSL server to use chain certificates, the
protocol version must be set to SSL3 or SSL23.
Specifies the protocol to use when establishing an SSL session with a
client. Valid options are:
•
ssl2: Only accept SSL 2.0.
•
ssl3: Accept SSL 3.0 and TLS 1.0.
•
ssl23: Accept SSL 2.0, SSL 3.0, and TLS 1.0.
•
tls1: Only accept TLS 1.0.
The default protocol value is ssl3.
Nortel VPN Gateway
Command Reference
NN46120-103 01.01 Standard
10 September 2007
- Quick Links:
- Menu Basics
Hide quick links:
Advertisement
Table of Contents
