Cisco 11503 - CSS Content Services Switch Configuration Manual page 108
Content services switch ssl configuration guide
Hide thumbs
Also See for 11503 - CSS Content Services Switch:
- Administration manual (392 pages) ,
- Hardware installation manual (184 pages) ,
- Getting started manual (142 pages)
Table of Contents
Advertisement
Chapter 4
Configuring SSL Termination
Configuring Virtual SSL Servers for an SSL Proxy List
Inserting Server Certificate Information
When you need to send server certificate information to the back-end server, you
can configure the CSS to insert server certificate fields and associated
information. The server certificate resides on the CSS and is configured with the
ssl-server number rsacert or dsacert command. To add a prefix to the fields, see
the
"Adding a Prefix to the Fields Inserted in the HTTP Header"
section.
If the SSL proxy list and its service are active, suspend the service and then the
Note
proxy list before configuring or disabling HTTP header insertion. After, reactivate
the SSL proxy list and then activate its service.
To configure the insertion server certificate information, use the ssl-server
number http-header server-cert command. For example:
(config-ssl-proxy-list[ssl_list1])# ssl-server 20 http-header
server-cert
To disable the insertion of server certificate fields and information in the HTTP
header, enter:
(config-ssl-proxy-list[ssl_list1])# no ssl-server 20 http-header
server-cert
Table 4-3
lists the inserted server certificate fields and their descriptions.
Depending on how the certificate was generated and what key algorithm was used,
all of these fields may not be present for the certificate.
Cisco Content Services Switch SSL Configuration Guide
4-26
OL-5655-01
Advertisement
Table of Contents
