Configuring Secure Web Access; Before You Begin; Generating Ssl Certificates; Configuring Secure Web Access With Quick Configuration - Juniper J2300 Getting Started Manual

Before You Begin

Before you begin initial configuration, complete the following tasks:

Generating SSL Certificates

To enable secure Web access, you must first generate a digital SSL certificate,
and then enable HTTPS access on the Services Router.
To generate an SSL certificate:
1.
2.
3.
Use can use either J-Web Quick Configuration or a configuration editor
to install the SSL certificate and enable HTTPS.

Configuring Secure Web Access with Quick Configuration

Use the Secure Access Quick Configuration page to enable HTTP and HTTPS access
on interfaces for managing Services Routers through the Web interface. You can also
install SSL certificates and enable JUNOScript over SSL with the Secure Access page.
Figure 54 shows the Secure Access Quick Configuration page.
Establish basic connectivity. See "Establishing Basic Connectivity" on page 111.
Obtain an SSL certificate from a trusted signing authority. See "Generating SSL
Certificates" on page 137.
Enter the following
openssl
interface. The command generates a self-signed SSL certificate in
openssl
the privacy-enhanced mail (PEM) format. It writes the certificate and an
unencrypted 1024-bit RSA private key to the specified file.
% openssl req –x509 –nodes –newkey rsa:1024 –keyout filename .pem -out filename .pem
Replace with the name of a file in which you want the SSL certificate
filename
to be written—for example,
When prompted, type the appropriate information in the identification form.
For example, type for the country name.
US
Display the contents of the file
cat new.pem
Copy the contents of this file for installing the SSL certificate.
Configuring Secure Web Access with Quick Configuration
command in your Secure Shell command-line
.
new.pem
.
new.pem

Configuring Secure Web Access

137