D-Link DGS-3630-28SC Emulator - Page 266
DGS-3630 Layer 3 Stackable Managed Switch CLI Reference Guide, TRUSTPOINT, TIME-OUT
![]() |
View all D-Link DGS-3630-28SC manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 266 highlights
DGS-3630 Layer 3 Stackable Managed Switch CLI Reference Guide secure-trustpoint TRUSTPOINT session-cache-timeout TIME-OUT message encryption and MD5 for message digest. rsa-aes-128-cbc-sha - Use RSA key exchange with AES 128-bit encryption for message encryption and SHA for message digest. rsa-aes-256-cbc-sha - Use RSA key exchange with AES 256-bit encryption for message encryption and SHA for message digest. rsa-aes-128-cbc-sha256 - Use RSA key exchange with AES 128-bit encryption for message encryption and SHA 256 bits for message digest. rsa-aes-256-cbc-sha256 - Use RSA key exchange with AES 256-bit encryption for message encryption and SHA 256 bits for message digest. dhe-dss-aes-256-cbc-sha - Use DH key exchange with AES 256-bit encryption for message encryption and SHA for message digest. dhe-rsa-aes-256-cbc-sha - Use DH key exchange with AES 256-bit encryption for message encryption and SHA for message digest. When the cipher suite is not configured, the SSL client and server will negotiate the best cipher suite that they both support from the list of available cipher suites. Multiple cipher suites can be specified to be used. Use the no form of this command to disable the selected cipher suites. (Optional) Specifies the name of the trust-point that should be used in SSL handshake. When this parameter is not specified, the trust-point which is specified as the primary will be used. If no primary trust-point is specified, the built-in certificate/key pairs will be used. Use the no form of this command to cancel the specified trust-point and use the built-in certificate/key pairs. (Optional) Specifies the timeout value in seconds for the information stored in the SSL session cache. The valid range is from 60 to 86400. When this parameter is not configured, the default session cache timeout is 600 seconds Use the no form of this command to revert the SSL session cache timeout to the default setting. Default None. Command Mode Global Configuration Mode. Command Default Level Level: 15. Usage Guideline This command is used to configure the SSL service policy. When no optional parameter is specified and the specified policy name does not exist, a new SSL service policy is created and all optional parameters are associated with the policy with their default values. Example This example shows how to configure the SSL service policy "ssl-server" which associates the "TP1" trust-point. Switch# configure terminal Switch(config)# ssl-service-policy ssl-server secure-trustpoint TP1 Switch(config)# 264
-
1
-
2
-
3
-
4
-
5
-
6
-
7
-
8
-
9
-
10
-
11
-
12
-
13
-
14
-
15
-
16
-
17
-
18
-
19
-
20
-
21
-
22
-
23
-
24
-
25
-
26
-
27
-
28
-
29
-
30
-
31
-
32
-
33
-
34
-
35
-
36
-
37
-
38
-
39
-
40
-
41
-
42
-
43
-
44
-
45
-
46
-
47
-
48
-
49
-
50
-
51
-
52
-
53
-
54
-
55
-
56
-
57
-
58
-
59
-
60
-
61
-
62
-
63
-
64
-
65
-
66
-
67
-
68
-
69
-
70
-
71
-
72
-
73
-
74
-
75
-
76
-
77
-
78
-
79
-
80
-
81
-
82
-
83
-
84
-
85
-
86
-
87
-
88
-
89
-
90
-
91
-
92
-
93
-
94
-
95
-
96
-
97
-
98
-
99
-
100
-
101
-
102
-
103
-
104
-
105
-
106
-
107
-
108
-
109
-
110
-
111
-
112
-
113
-
114
-
115
-
116
-
117
-
118
-
119
-
120
-
121
-
122
-
123
-
124
-
125
-
126
-
127
-
128
-
129
-
130
-
131
-
132
-
133
-
134
-
135
-
136
-
137
-
138
-
139
-
140
-
141
-
142
-
143
-
144
-
145
-
146
-
147
-
148
-
149
-
150
-
151
-
152
-
153
-
154
-
155
-
156
-
157
-
158
-
159
-
160
-
161
-
162
-
163
-
164
-
165
-
166
-
167
-
168
-
169
-
170
-
171
-
172
-
173
-
174
-
175
-
176
-
177
-
178
-
179
-
180
-
181
-
182
-
183
-
184
-
185
-
186
-
187
-
188
-
189
-
190
-
191
-
192
-
193
-
194
-
195
-
196
-
197
-
198
-
199
-
200
-
201
-
202
-
203
-
204
-
205
-
206
-
207
-
208
-
209
-
210
-
211
-
212
-
213
-
214
-
215
-
216
-
217
-
218
-
219
-
220
-
221
-
222
-
223
-
224
-
225
-
226
-
227
-
228
-
229
-
230
-
231
-
232
-
233
-
234
-
235
-
236
-
237
-
238
-
239
-
240
-
241
-
242
-
243
-
244
-
245
-
246
-
247
-
248
-
249
-
250
-
251
-
252
-
253
-
254
-
255
-
256
-
257
-
258
-
259
-
260
-
261
-
262
-
263
-
264
-
265
-
266
-
267
-
268
-
269
-
270
-
271
-
272
-
273
-
274
-
275
-
276
-
277
-
278
-
279
-
280
-
281
-
282
-
283
-
284
-
285
-
286
-
287
-
288
-
289
-
290
-
291
-
292
-
293
-
294
-
295
-
296
-
297
-
298
-
299
-
300
-
301
-
302
-
303
-
304
-
305
-
306
-
307
-
308
-
309
-
310
-
311
-
312
-
313
-
314
-
315
-
316
-
317
-
318
-
319
-
320
-
321
-
322
-
323
-
324
-
325
-
326
-
327
-
328
-
329
-
330
-
331
-
332
-
333
-
334
-
335
-
336
-
337
-
338
-
339
-
340
-
341
-
342
-
343
-
344
-
345
-
346
-
347
-
348
-
349
-
350
-
351
-
352
-
353
-
354
-
355
-
356
-
357
-
358
-
359
-
360
-
361
-
362
-
363
-
364
-
365
-
366
-
367
-
368
-
369
-
370
-
371
-
372
-
373
-
374
-
375
-
376
-
377
-
378
-
379
-
380
-
381
-
382
-
383
-
384
-
385
-
386
-
387
-
388
-
389
![]() |
![]() |
![](/manual_guide/products/dlink-dgs3630-emulator-93bf9ad/266.png)