EasyManuals Logo

Cisco 11503 - CSS Content Services Switch Configuration Guide

Cisco 11503 - CSS Content Services Switch
250 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #91 background imageLoading...
Page #91 background image
4-9
Cisco Content Services Switch SSL Configuration Guide
OL-5655-01
Chapter 4 Configuring SSL Termination
Configuring Virtual SSL Servers for an SSL Proxy List
To remove an RSA certificate association from a specific virtual SSL server,
enter:
(config-ssl-proxy-list[ssl_list1])# no ssl-server 20 rsacert
Specifying the RSA Key Pair Name
To identify the name of an RSA key pair association. RSA key pairs are required
before another device (client or server) can exchange an SSL certificate with the
CSS, use the ssl-server number rsakey name command. To see a list of existing
RSA key pair associations, use the ssl-server number rsakey ? command.
The RSA key pair must already be loaded on the CSS and an association made
(see Chapter 3, Configuring SSL Certificates and Keys). If there is not a proper
RSA key pair association, when you activate the SSL proxy list, the CSS logs an
error message and does not activate the list.
For example, to specify a previously defined RSA key pair association named
rsakey, enter:
(config-ssl-proxy-list[ssl_list1])# ssl-server 20 rsakey myrsakey1
To remove an RSA key pair association from a specific virtual SSL server, enter:
(config-ssl-proxy-list[ssl_list1])# no ssl-server 20 rsakey
Specifying the DSA Certificate Name
To identify the name of a DSA certificate association that is to be used in the
exchange of digital signatures, use the ssl-server number dsacert name
command. To see a list of existing DSA certificate associations, use the ssl-server
number dsacert ? command.
The specified DSA certificate must already be loaded on the CSS and an
association made (see Chapter 3, Configuring SSL Certificates and Keys). If there
is not a proper RSA certificate association, when you activate the SSL proxy list,
the CSS logs an error message and does not activate the list.
For example, to specify a previously defined DSA certificate association named
dsacert, enter:
(config-ssl-proxy-list[ssl_list1])# ssl-server 20 dsacert mydsacert1
To remove a DSA certificate association from a specific virtual SSL server, enter:
(config-ssl-proxy-list[ssl_list1])# no ssl-server 20 dsacert

Table of Contents

Other manuals for Cisco 11503 - CSS Content Services Switch

Preview: Administration Guide
Administration Guide392 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco 11503 - CSS Content Services Switch and is the answer not in the manual?

Cisco 11503 - CSS Content Services Switch Specifications

General IconGeneral
BrandCisco
Model11503 - CSS Content Services Switch
CategorySwitch
LanguageEnglish

Related product manuals