TP-Link T1600G-18TSTL-SG2216 T1600G-18TSUN V1 Configuration Guide - Page 88
Switch#con Switchconfig#ip http secure-server
View all TP-Link T1600G-18TSTL-SG2216 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 88 highlights
Managing System Access Security Configurations Step 5 ip http secure-session timeout minutes Specify the Session Timeout time. The system will log out automatically if users do nothing within the Session Timeout time. minutes: Specify the timeout time, which ranges from 5 to 30 minutes. The default value is 10. Step 6 ip http secure-max-users admin-num guest-num Specify the maximum number of users that are allowed to connect to the HTTPS server. The total number of users should be no more than 16. For T1600G-18TS, the number of Operator, Power User and User can be set respectively. admin-num: Enter the maximum number of users whose access level is Admin. The valid value are from 1 to 16. guest-num: Enter the maximum number of users whose access level is Operator, Power User or User. The valid value are from 0 to 15. Step 7 ip http secure-server download certificate ssl-cert ip-address ip-addr Download the desired certificate to the switch from TFTP server. ssl-cert: Specify the name of the SSL certificate, which ranges from 1 to 25 characters. The certificate must be BASE64 encoded. The SSL certificate and key downloaded must match each other. ip-addr: Specify the IP address of the TFTP server. Both IPv4 and IPv6 addresses are supported. Step 8 ip http secure-server download key ssl-key ip-address ip-addr Download the desired key to the switch from TFTP server. ssl-key: Specify the name of the key file saved in TFTP server. The key must be BASE64 encoded. ip-addr: Specify the IP address of the TFTP server. Both IPv4 and IPv6 addresses are supported. Step 9 show ip http secure-server Verify the global configuration of HTTPS. Step 10 end Return to privileged EXEC mode. Step 11 copy running-config startup-config Save the settings in the configuration file. The following example shows how to configure the HTTPS function. Enable SSL3 and TLS1 protocol. Enable the ciphersuite of 3des-ede-cbc-sha. Set the session timeout time as 15, the admin number as 1 and the guest number as 2. Download the certificate named ca.crt and the key named ca.key from the TFTP server with the IP address 192.168.0.100. Switch#configure Switch(config)#ip http secure-server Switch(config)#ip http secure-protocol ssl3 tls1 Configuration Guide 65