Cisco CSS11501 - 100Mbps Ethernet Load Balancing Device Configuration Manual page 75

Chapter 4 Using the Configuration Manager
4.
5.
78-13124-05
Certificate names can consist of Arabic numerals and
Note
upper- and lowercase alphabetic, underscore (_), hyphen
(-), and period (.) characters. Certificate names must
begin with an alphabetic character and have a limit of
127 characters.
Enter Security Policy Configuration mode and create a security policy named
myPol. Assign the "strong" cryptography policy to it. Return to SSL
Configuration mode.
(config-ssl[myDevice])# secpolicy myPol create
(config-ssl-secpolicy[myPol])# crypto strong
(config-ssl-secpolicy[myPol])# end
(config-ssl[myDevice])#
Note When using FIPS Mode only the FIPS security policy is
available.
Security policy names can consist of Arabic numerals
Note
and upper- and lowercase alphabetic, underscore (_),
hyphen (-), and period (.) characters. Security policy
names must begin with an alphabetic character and have
a limit of 15 characters.
Enter Server Configuration mode and create a server named myServer. Assign
the IP address 10.1.2.4. Assign port 443 for monitoring for SSL connections
and port 81 for sending clear text. Assign the key, certificate, and security
policies just created. Then exit to Top Level mode.
(config-ssl[myDevice])# server myServer create
(config-ssl-server[myServer])# ip address 10.1.2.4
(config-ssl-server[myServer])# sslport 443
(config-ssl-server[myServer])# remoteport 81
(config-ssl-server[myServer])# key myKey
(config-ssl-server[myServer])# cert myCert
(config-ssl-server[myServer])# secpolicy myPol
(config-ssl-server[myServer])# finished
SCA#
Cisco 11000 Series Secure Content Accelerator Configuration Guide
Configuring the Device
4-9