Table of Contents
Advertisement
Chapter 4
Using the Configuration Manager
4.
5.
78-13124-06
Note
Certificate names can consist of Arabic numerals and
upper- and lowercase alphabetic, underscore (_),
hyphen (-), and period (.) characters. Certificate names
must begin with an alphabetic character and have a limit
of 127 characters.
Enter Security Policy Configuration mode and create a security policy named
myPol. Assign the "strong" cryptography policy to it. Return to SSL
Configuration mode.
(config-ssl[myDevice])# secpolicy myPol create
(config-ssl-secpolicy[myPol])# crypto strong
(config-ssl-secpolicy[myPol])# end
(config-ssl[myDevice])#
Note
When using FIPS Mode only the FIPS security policy is
available.
Note
Security policy names can consist of Arabic numerals
and upper- and lowercase alphabetic, underscore (_),
hyphen (-), and period (.) characters. Security policy
names must begin with an alphabetic character and have
a limit of 15 characters.
Enter Server Configuration mode and create a server named myServer. Assign
the IP address 10.1.2.4. Assign port 443 for monitoring for SSL connections
and port 81 for sending clear text. Assign the key, certificate, and security
policies just created. Then exit to Top Level mode.
(config-ssl[myDevice])# server myServer create
(config-ssl-server[myServer])# ip address 10.1.2.4
(config-ssl-server[myServer])# sslport 443
(config-ssl-server[myServer])# remoteport 81
(config-ssl-server[myServer])# key myKey
(config-ssl-server[myServer])# cert myCert
(config-ssl-server[myServer])# secpolicy myPol
(config-ssl-server[myServer])# finished
SCA#
Cisco 11000 Series Secure Content Accelerator Configuration Guide
Configuring the Device
4-9
Advertisement
Table of Contents
Troubleshooting
