Configuring Access to the Application Server Through Secure HTTP
Before you configure access to the application server through HTTPS, obtain a digital security certificate on the system.
To make the application server accessible through HTTPS:
- From configuration mode, access the statement that configures
access through HTTPS.user@host# edit slot 0 application-server web https
- Specify which TCP port is to receive incoming connection
requests for the application server. [edit slot 0 application-server web https]user@host# set port port
- Specify the interface to be used for connections to the
application server. [edit slot 0 application-server web https]user@host# set interface interface
On a C Series Controller, use eth1 for built-in Web applications; you can use eth0 for demonstration applications.
- Specify the name of the certificate on the local system. [edit slot 0 application-server web https]user@host# set local-certificate local-certificate
- Configure the secure connection protocol to be used by
the application server. You can specify more than one protocol in
this option.[edit slot 0 application-server web https]user@host# set protocol (TLSv1 | TLSv1.1 | TLSv1.2)
While upgrading to SRC 4.12.0 release, by default all three protocol versions TLSv1, TLSv1.1, and TLSv1.2 are enabled for backward compatibility. We recommend you to configure TLSv1.2 alone to avoid vulnerabilities.
- (Optional) Configure user accounts to allow specified clients to authenticate with the application server.