2210
C
144: SSL C
HAPTER
client-verify enable
Syntax
View
Parameter
Description
Example
close-mode wait
Syntax
View
Parameter
Description
Example
C
ONFIGURATION
OMMANDS
client-verify enable
undo client-verify enable
SSL server policy view
None
Use the
client-verify enable
authentication, that is, to enable the SSL server to perform certificate-based
authentication of the client during the SSL handshake process.
Use the
undo client-verify enable
By default, certificate-based SSL client authentication is disabled.
# Enable certificate-based client authentication.
<Sysname> system-view
[Sysname] ssl server-policy policy1
[Sysname-ssl-server-policy-policy1] client-verify enable
close-mode wait
undo close-mode wait
SSL server policy view
None
Use the
close-mode wait
wait. In this mode, after sending a close-notify message to a client, the server
does not close the connection until it receives a close-notify message from the
client.
Use the
undo close-mode wait
By default, an SSL server sends a close-notify alert message to the client and close
the connection without waiting for the close-notify alert message from the client.
# Set the SSL connection close mode to wait.
<Sysname> system-view
[Sysname] ssl server-policy policy1
[Sysname-ssl-server-policy-policy1] close-mode wait
command to enable certificate-based SSL client
command to restore the default.
command to set the SSL connection close mode to
command to restore the default.