Replacing The Default Secure-Site Certificate - Edge-Core ECS4810-12M Layer 2 Management Manual

| Security Measures
C 13
HAPTER
Configuring HTTPS
R
EPLACING THE
D S -
EFAULT ECURE SITE
C
ERTIFICATE
Figure 182: Configuring HTTPS
Use the Security > HTTPS (Copy Certificate) page to replace the default
secure-site certificate.
When you log onto the web interface using HTTPS (for secure access), a
Secure Sockets Layer (SSL) certificate appears for the switch. By default,
the certificate that the web browser displays will be associated with a
warning that the site is not recognized as a secure site. This is because the
certificate has not been signed by an approved certification authority. If
you want this warning to be replaced by a message confirming that the
connection to the switch is secure, you must obtain a unique certificate and
a private key and password from a recognized certification authority.
For maximum security, we recommend you obtain a unique
C :
AUTION
Secure Sockets Layer certificate at the earliest opportunity. This is because
the default certificate for the switch is not unique to the hardware you have
purchased.
When you have obtained these, place them on your TFTP server and
transfer them to the switch to replace the default (unrecognized) certificate
with an authorized one.
The switch must be reset for the new certificate to be activated. To
N :
OTE
reset the switch, see "Resetting the System" on page 145
at the command prompt:
CLI R
EFERENCES
"Web Server" on page 821
◆
P
ARAMETERS
These parameters are displayed:
TFTP Server IP Address – IP address of TFTP server which contains
◆
the certificate file.
Certificate Source File Name – Name of certificate file stored on the
◆
TFTP server.
– 346 –
#
Console reload
or type "reload"