FIPS compliance
The device supports the FIPS mode that complies with NIST FIPS 140-2 requirements. Support for features,
commands, and parameters might differ in FIPS mode and non-FIPS mode. For more information about
FIPS mode, see Security Configuration Guide.
Unless otherwise noted, devices in the configuration examples are operating in non-FIPS mode.
HTTP is not supported in FIPS mode.
Configuring HTTP login
NOTE:
This feature is not supported in FIPS mode.
Follow these steps to configure HTTP login:
To do...
Enter system view
Enable the HTTP service
Configure the HTTP service port
number
Associate the HTTP service with an
ACL
Set the web user connection
timeout time
Set the web log buffer size
Create a local user and enter local
user view
Configure a password for the local
user
Specify the command level of the
local user
Use the command...
system-view
ip http enable
ip http port port-number
ip http acl acl-number
web idle-timeout minutes
web logbuffer size pieces
local-user user-name
password { cipher | simple }
password
authorization-attribute level level
64
Remarks
—
Required
Enabled by default.
Optional
80 by default.
If you execute the command
multiple times, the last one takes
effect.
Optional
By default, the HTTP service is not
associated with any ACL.
Associating the HTTP service with
an ACL enables the device to allow
only clients permitted by the ACL to
access the device.
Optional
Optional
Required
By default, no local user is
configured.
Required
By default, no password is
configured for the local user.
Required
No command level is configured
for the local user.