Generating A Certificate For Bbi Access Via Https; Using The Management Port - Radware Alteon Application Manual

Alteon Application Switch Operating System Application Guide
Accessing Alteon

Generating a Certificate for BBI Access via HTTPS

Accessing the BBI via HTTPS requires that you generate a certificate for use during the key
exchange. The system creates a default certificate the first time you enable HTTPS, but you can
create a new certificate defining the information you want to be used in the various fields using the
following command:
>>/cfg/sys/access/https/generate
This operation will generate a self-signed server certificate.
Enter key size [512|1024|2048|4096] [1024]:
Enter server certificate hash algorithm [md5|sha1|sha256|sha384|sha512]
[sha1]:
Enter certificate Common Name (e.g. your site's name):
Use certificate default values? [y/n]:
Enter certificate Country Name (2-letter code) []: us
Enter certificate State or Province Name (full name) []: newyork
Enter certificate locality name (e.g. city) []: newyork
Enter certificate Organization Name (e.g. company) []: example
Enter certificate Organizational Unit Name (e.g. accounting) []: exam
Enter certificate Email (e.g. admin@company.com) []: example@example.com
Enter certificate validation period in days (1-3650) [365]:
........
Self signed server certificate, certificate signing request and key added.
You can save the certificate to flash for use if you reboot Alteon by using the apply and save
commands.
When a client (for example, a Web browser) connects to Alteon, the client is asked to accept the
certificate and verify that the fields are what are expected. Once you grant BBI access to the client,
the BBI can be used as described in the Alteon Application Switch Browser-Based Interface Quick
Guide.

Using the Management Port

The management port is a Gigabit Ethernet port on Alteon that is used exclusively for managing
Alteon. While you can manage Alteon from any network port, the management port conserves a
data port that could otherwise be used for processing requests. You can use the management port
to access Alteon using Telnet (CLI), SSH, or HTTP (BBI).
The management port does not participate in the switching and routing protocols that run on the
data ports, but it can be used to perform management functions such as:
• Accessing the NTP server
• Sending out SNMP traps
• Sending out syslog messages
• Accessing the RADIUS server
• Accessing the TACACS+ server
• Accessing the DNS server
• Performing TFTP or FTP functions (ptimg, gtimg, ptcfg, gtcfg, ptdmp)
• Accessing the SMTP server
52
Document ID: RDWR-ALOS-V2900_AG1302