Ssl Server-Policy - H3C MSR Series Command Reference Manual
Comware 7 security
Hide thumbs
Also See for MSR Series:
- Command reference manual (174 pages) ,
- Configuration manual (80 pages) ,
- Manual (33 pages)
Table of Contents
Advertisement
Syntax
ssl renegotiation disable
undo ssl renegotiation disable
Default
SSL session renegotiation is enabled.
Views
System view
Predefined user roles
network-admin
Usage guidelines
The SSL session renegotiation feature enables the SSL client and server to reuse a previously
negotiated SSL session for an abbreviated handshake.
Disabling session renegotiation causes more computational overhead to the system but it can avoid
potential risks. Disable SSL session renegotiation only when explicitly required.
Examples
#Disable SSL session renegotiation.
<Sysname> system-view
[Sysname] ssl renegotiation disable
ssl server-policy
Use ssl server-policy to create an SSL server policy and enter its view, or enter the view of an
existing SSL server policy.
Use undo ssl server-policy to delete an SSL server policy.
Syntax
ssl server-policy policy-name
undo ssl server-policy policy-name
Default
No SSL server policies exist.
Views
System view
Predefined user roles
network-admin
Parameters
policy-name: Specifies a name for the SSL server policy, a case-insensitive string of 1 to 31
characters.
Usage guidelines
This command creates an SSL server policy for which you can configure SSL parameters such as a
PKI domain and supported cipher suits. An SSL server policy takes effect only after it is associated
with an application such as HTTPS.
Examples
# Create an SSL server policy named policy1 and enter its view.
732
Advertisement
Table of Contents
