Ssl Server-Policy - H3C MSR Series Command Reference Manual

Views
SSL VPN context view
Predefined user roles
network-admin
Parameters
policy-name: Specifies an SSL client policy by its name, a case-insensitive string of 1 to 31
characters.
Usage guidelines
You can apply only one SSL client policy to an SSL VPN context. For the applied SSL client policy to
take effect, you must enable the SSL VPN context by using the service enable command. The SSL
VPN gateway will use the parameters defined by the policy to establish SSL connections to HTTPS
servers.
If you execute this command multiple times, the new configuration overwrites the previous
configuration, but does not take effect. For the new configuration to take effect, disable the SSL VPN
context and then re-enable it.
For information about configuring SSL client policies, see Security Configuration Guide.
Examples
# Apply SSL client policy abc to SSL VPN context ctx1.
<Sysname> system-view
[Sysname] sslvpn context ctx1
[Sysname-sslvpn-context-ctx1] ssl client-policy abc

ssl server-policy

Use ssl server-policy to apply an SSL server policy to an SSL VPN gateway.
Use undo ssl server-policy to remove the application.
Syntax
ssl server-policy policy-name
undo ssl server-policy
Default
An SSL VPN gateway uses the SSL server policy associated with its self-signed certificate.
Views
SSL VPN gateway view
Predefined user roles
network-admin
Parameters
policy-name: Specifies the name of an SSL server policy, a case-insensitive string of 1 to 31
characters.
Usage guidelines
You can apply only one SSL server policy to an SSL VPN gateway. For the applied SSL server policy
to take effect, you must enable the SSL VPN gateway by using the service enable command. The
SSL VPN gateway will use the parameters defined by the policy to establish SSL connections to
remote users.
797