63
Configuring Web login
The device provides a built-in Web server that supports HTTP (1.0 and 1.1) and HTTPS. You can
use a Web browser to log in to and configure the device.
HTTPS uses SSL to ensure the integrity and security of data exchanged between the client and the
server, and is more secure than HTTP. You can define a certificate-based access control policy to
allow only legal clients to access the Web interface.
Web login is disabled by default. To configure Web login, you must first log in through the console
port.
FIPS compliance
The device supports the FIPS mode that complies with NIST FIPS 140-2 requirements. Support for
features, commands, and parameters might differ in FIPS mode and non-FIPS mode. For more
information about FIPS mode, see
Security Configuration Guide
.
HTTP is not supported in FIPS mode.
Configuring HTTP login
Step
Command
Remarks
1.
(Optional.) Specify a fixed
verification code for Web
login.
web captcha verification-code
By default, no fixed verification
code is configured. A Web user
must enter the verification code
displayed on the login page at
login.
2.
Enter system view.
system-view
N/A
3.
Enable the HTTP service.
ip http enable
By default, the HTTP service is
disabled.
4.
(Optional.) Specify the HTTP
service port number.
ip http port
port-number
The default HTTP service port
number is 80.
5.
(Optional.) Set the Web
connection idle-timeout
timer.
web idle-timeout minutes
N/A
6.
(Optional.) Specify the
maximum number of online
HTTP users.
aaa session-limit http
max-sessions
The default is 32.
Changing this setting does not
affect users who are currently
online. If the new setting is less
than the number of online HTTP
users, no additional HTTP users
can log in until the number drops
below the new limit.
For more information about this
command, see
Security
Command Reference
.
7.
(Optional.) Enable Web
operation logging.
webui log enable
By default, Web operation logging
is disabled.
8.
Create a local user and enter
local user view.
local-user user-name
[
class
manage
]
By default, no local user is
configured.
Summary of Contents for FlexNetwork 10500 Series
Page 139: ...130 Sysname display version ...