C H A P T E R 5
Command
config ssl dn
NOTE: A unique DN
should be specified when
generating certificates for
each private key created or
installed on the SA8220.
This prevents potential
certificate conflicts with
cached certificates on the
client's browser. As an
alternative, the same
private key and certificate
pair can be used for
multiple Layer 7 services. In
this case, the user will see
the service as coming from
the same trusted provider.
config ssl redirect
Description
Sets the Distinguished Name (DN) configuration. This information
will be incorporated into new certificate or signing requests unless
otherwise specified.
config ssl dn {name <name> email <email> state
<state> organization <org> unit <unit> locality
<loc> country <country>}
where:
•
name is the common (server's) name
•
email is the email address
•
state is the name of your state or province
•
organization is the name of your company or organization
•
unit your organizational section
•
locality is the name of your city or locality
Specifies the default URL to return the user if the client does not
support the cipher suite. Each service may specify a specific URL
(see the config policygroup service key redirect
command) at the service key level.
config ssl redirect [<url> | none]
where:
•
url is a valid URL identifying the redirect page in the form
http://<host>/<path name>
•
none (the default) disables page redirect.
SSL Commands (SA8200/SA8220 only)
197