4-21
Cisco Content Services Switch SSL Configuration Guide
OL-5655-01
Chapter 4 Configuring SSL Termination
Configuring Virtual SSL Servers for an SSL Proxy List
The CSS can insert one or more of the following information into the HTTP
header after it decrypts the client data:
• Client certificate fields and associated information
• Server certificate fields and associated information
• SSL session fields and associated information
• Static text string
You can also configure the CSS to add a prefix to the client certificate, server
certificate, or SSL session fields inserted in the HTTP header. However, a prefix
has no effect on insertion of a static text string.
The following sections provide information on HTTP header insertion:
• Inserting Client Certificate Information
• Inserting Server Certificate Information
• Inserting Session Information
• Adding a Prefix to the Fields Inserted in the HTTP Header
• Inserting a Static Text String
To view configuration information on an HTTP header insertion, use the show
ssl-proxy-list ssl-server command. For more information on this command, see
Chapter 7, Displaying SSL Configuration Information and Statistics.
Inserting Client Certificate Information
When you need to send client certificate information to the back-end server, you
can configure the CSS to insert client certificate fields and associated information
into the HTTP header. To add a prefix to the fields, see the “Adding a Prefix to the
Fields Inserted in the HTTP Header” section.
Note If the SSL proxy list and its service are active, suspend the service and then the
proxy list before configuring or disabling HTTP header insertion. Afterward,
reactivate the SSL proxy list and activate its service.
To Next Page
Loading...
Need help?
General
