Certificate Attribute Access Control Policy Configuration - HP 12500 Series Configuration Manual
Routing
Hide thumbs
Also See for 12500 Series:
- Configuration manual (402 pages) ,
- Network management and monitoring command reference (320 pages) ,
- Command reference manual (157 pages)
Table of Contents
Advertisement
Signature Algorithm: sha1WithRSAEncryption
81029589 7BFA1CBD 20023136 B068840B
(Omitted)
You can also use some other display commands to view more information about the CA certificate. For
more information about the display pki certificate ca domain command, see Security Command
Reference.
Certificate attribute access control policy configuration
Network requirements
The client accesses the remote HTTP Security (HTTPS) server through the HTTPS protocol.
Configure SSL to make sure that only legal clients log into the HTTPS server. Create a certificate attribute
access control policy to control access to the HTTPS server.
Figure 105 Network diagram
Configuration procedure
For more information about SSL configuration, see
For more information about HTTPS configuration, see Fundamentals Configuration Guide.
The PKI domain to be referenced by the SSL policy must be created in advance. For how to configure a
PKI domain, see
Configure the HTTPS server:
1.
# Configure the SSL policy for the HTTPS server to use.
<Switch> system-view
[Switch] ssl server-policy myssl
[Switch-ssl-server-policy-myssl] pki-domain 1
[Switch-ssl-server-policy-myssl] client-verify enable
[Switch-ssl-server-policy-myssl] quit
Configure the certificate attribute group:
2.
URI:file://\\l00192b\CertEnroll\CA server.crl
Authority Information Access:
CA Issuers - URI:http://l00192b/CertEnroll/l00192b_CA%20server.crt
CA Issuers - URI:file://\\l00192b\CertEnroll\l00192b_CA server.crt
1.3.6.1.4.1.311.20.2:
.0.I.P.S.E.C.I.n.t.e.r.m.e.d.i.a.t.e.O.f.f.l.i.n.e
"Configuring a PKI
"Configuring
domain."
308
SSL."
Advertisement
Table of Contents
Troubleshooting
