Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

show services ssl initiation profile

Syntax

Description

Display the SSL initiation profiles details.

Note:

When the CLI is in logical system context mode and you enter an operational-mode command, the output of the command displays information related to the logical system only.

Options

pic-info fpc-slot slot number pic-slot slot-number

Display the information for the FPC in the specified slot.

all

Display all SSL initiation profiles configured on the device.

brief

Display brief information about SSL initiation profiles.

detail

Display detail information about SSL initiation profiles.

Required Privilege Level

view

Output Fields

Table 1 lists the output fields for the show services ssl initiation profile command. Output fields are listed in the approximate order in which they appear.

Table 1: show services ssl initiation profile Output Fields

Field Name

Field Description

Output Levels

Profile

SSL initiation profile name

brief, detail

allow non-ssl session

Allow or not allow (bypass) non-SSL sessions.

brief, detail

preferred-ciphers

SSL cipher that can be used with acceptable key strength. Possible values are strong, medium, weak, and custom.

brief, detail

Num of url categories configured

URL categories exempted from SSL proxy.

brief, detail

Protocol-version

SSL protocol version. Possible values are all, TLS version 1.0, TLS version 1.1, and TLS version 1.2.

detail

Client authentication

Status of client certificate verification process.

detail

Server Authentication

Status of server certificate verification process.

detail

Crypto-mode

Crypto mode used. Options are synchronous-hardware or software or asynchronous-hardware.

detail

Session Resumption

SSL session resumption status.

detail

CRL check

Status of the CRL checking of certificate validity.

detail

Certificate

Digital certificate used.

detail

Renegotiation

Renegotiation option. Possible values are allow, allow secure, and drop.

detail

Custom ciphers

Custom ciphers configured.

detail

Server Cert

Server certificate configured.

detail

Decrypt Mirror

Status of decrypt mirroring functionality.

detail

Trusted CA:

Trusted CA configured for a profile

detail

handshakes started

Number of SSL handshakes started.

detail

handshakes completed

Number of SSL handshakes completed successfully.

detail

active sessions

Number of active SSL sessions

detail

total handshake errors

Number of errors occurred during handshake process.

detail

data errors

Cumulative errors in a single counter

session resumption

Number of SSL session resumption count.

detail

secure renegotiation

Secure sessions allowed after renegotiation.

detail

insecure renegotiation

All sessions allowed after renegotiation.

detail

multiple renegotiation

Sessions with multiple renegotiation.

detail

reneg after resumption

Sessions undergoing renegotiation after resumption.

detail

no_reneg alert by peer

Number of times no renegotiation alerts received from peer.

detail

drop on reneg

Sessions dropped after renegotiation.

detail

Sample Output

command-name

command-name

command-name

Release Information

Command introduced in Junos OS Release 19.3R1.