343 |341
The “no ip http secure { server | ciphersuite [rsa-null-md5] [rsa-null-sha] [rsa-des-sha] [rsa-
3des-sha] [dh-rsa-des-sha ][dh-rsa-3des-sha][rsa-exp1024-des-sha] |
crypto key rsa [usage-keys (512|1024)] }” command enables the agent.
The example below shows the commands used to configure Secure HTTP.
SMIS# configure terminal
SMIS(config)# no ip http secure server
SMIS(config)# end
SMIS# show ip http secure server status
HTTP secure server status : Disabled
HTTP secure server ciphersuite : RSA-DES-SHA:RSA-3DES-SHA:RSA-EXP1024-DES-SHA:
HTTP crypto key rsa 1024
13.5.2 Certificate Signing Request (CSR)
An SSL certificate provides security for online communications. Before requesting an SSL certificate,
a Certificate Signing Request (CSR) must be generated and submitted to the Certification Authority
(CA).Certificate authorities (CAs) manage certificate requests and issue certificates to participating network
devices. These services provide centralized security key and certificate management for the participating
devices. CA servers are called as trustpoints, e.g. thawte.com.
Supermicro switches create a Certificate Signing Request (CSR) using RSA key pair and Switch
Identification.
Follow the steps below to configure Certificate Signing Request (CSR).
ssl gen cert-req algo rsa sn <SubjectName>
Certificate Signing Request
(CSR)
.
SubjectName – Switch ID or IP-address.
Displays the SSL configuration.
Optional step – saves this configuration
to be part of startup configuration.
The example below shows the commands used to configure
Certificate Signing Request (CSR).
SMIS# ssl gen cert-req algo rsa sn SMIS
-----BEGIN CERTIFICATE REQUEST-----
MIIBTjCBuAIBADAPMQ0wCwYDVQQDEwRTTUlTMIGfMA0GCSqGSIb3DQEBAQUAA4GN
ADCBiQKBgQChj0JzVX1/gZ4SMGekRdrsAnftWnKHG3VypWTtySqkvTwhnZ206Q2o
cBYJNKY4ZCykOXG81mfUhqPfVLyO8sbK+RYzEeTMX9lw9iq9yOySOlvxY6IoYNsg
O++JS02khz0SAbpRkhtGuwmBiZQtSj+8Ea3dG8ReoixpcYDVVdIrDQIDAQABoAAw
To Next Page
Loading...
