Configuring An Ssl Client Policy; Configuration Prerequisites; Configuration Procedure - H3C S5500-EI series Operation Manual
Hide thumbs
Also See for S5500-EI series:
- Configuration manual (490 pages) ,
- Security configuration manual (448 pages) ,
- Operation manual (216 pages)
Table of Contents
Advertisement
Operation Manual – SSL-HTTPS
H3C S5500-EI Series Ethernet Switches
# Enable client authentication.
[Sysname-ssl-server-policy-myssl] client-verify enable
[Sysname-ssl-server-policy-myssl] quit
3)
Associate HTTPS service with the SSL server policy and enable HTTPS service
# Configure HTTPS service to use SSL server policy myssl.
[Sysname] ip https ssl-server-policy myssl
# Enable HTTPS service.
[Sysname] ip https enable
4)
Verify your configuration
Launch IE on the host and enter https://10.1.1.1 in the address bar. You should be able
to log in to the switch and manage it.
Note:
For details about PKI configuration commands, refer to PKI Commands.
For details about the public-key local create rsa command, refer to SSH
Commands.
1.4 Configuring an SSL Client Policy
An SSL client policy is a set of SSL parameters for a client to use when connecting to
the server. An SSL client policy takes effect only after it is associated with an application
layer protocol.
1.4.1 Configuration Prerequisites
Before configuring an SSL client policy, you must configure a PKI domain. For details
about PKI domain configuration, refer to PKI Configuration.
1.4.2 Configuration Procedure
Follow these steps to configure an SSL client policy:
Enter system view
Create an SSL client
policy and enter its view
Specify a PKI domain for
the SSL client policy
To do...
system-view
ssl client-policy
policy-name
pki-domain
domain-name
Use the command...
1-5
Chapter 1 SSL Configuration
Remarks
—
Required
Required
No PKI domain is
configured by default.
Advertisement
Chapters
Table of Contents
Troubleshooting
