First Time Configuration
Entering the Certificate and Key file to be Used with HTTPS Services
3. Set the
certfile
and
keyfile
to use using the CLI remote management commands. The
keyfile
has the same name as the
certfile
and will be used automatically.
eqcli
remote-mgmt certificate
certificatename
4. Now view the remote management configuration. The example that follows shows that the
custom certificate
has been added:
eqcli >
show remote-mgmt
Options
Value
Cipherspec
AES128-SHA:DES-CBC3-SHA:RC4-SHA:RC4-MD5:AES256-SHA:!SSLv2
Certificate
custom certificate
Protocols
tls10
eqcli >
Replacing the Default Cipherspec with a Custom Cipherspec
5. Enter the custom cipherspec as follows:
eqcli >
remote-mgmt cipherspec
cipherspec
where
cipherspec
is the new, custom
cipherspec
to be used.
Setting the Encryption Levels
6. Configure the encryption levels that will be used in communications between the client and
the ADC. The default encryption level is TLSv1.0 (
tls10
).
eqcli >
protocol
protocol
where
protocol
can be
sslv3
,
tls10(default)
,
tls11
, or
tls12
. The protocols in
the syntax can be delimited by "," or "|".
You can also turn off one of the protocols in the list by prefixing with "!". For example
if you have configured all of the encryption levels to be used and want to remove
tls12
, enter
eqcli >
protocol !tls12
.
tls12
would then be removed from the
list. The client and ADP will use the highest level available when multiple formats are
specified.
62
Copyright © 2014 Coyote Point Systems, A Subsidiary of Fortinet, Inc.
Содержание Equalizer GX Series
Страница 18: ......
Страница 32: ...Overview 32 Copyright 2014 Coyote Point Systems A Subsidiary of Fortinet Inc ...
Страница 42: ......
Страница 52: ......
Страница 64: ......
Страница 72: ......
Страница 76: ......
Страница 123: ...Copyright 2014 Coyote Point Systems A Subsidiary of Fortinet Inc All Rights Reserved 123 Equalizer Administration Guide ...
Страница 228: ......
Страница 238: ......
Страница 411: ...Copyright 2014 Coyote Point Systems A Subsidiary of Fortinet Inc All Rights Reserved 411 Equalizer Administration Guide ...
Страница 459: ...Copyright 2014 Coyote Point Systems A Subsidiary of Fortinet Inc All Rights Reserved 459 Equalizer Administration Guide ...
Страница 476: ......
Страница 492: ......
Страница 530: ......
Страница 614: ......
Страница 626: ......
Страница 638: ......
Страница 678: ......
Страница 732: ...Using SNMP Traps 732 Copyright 2014 Coyote Point Systems A Subsidiary of Fortinet Inc ...
Страница 754: ......
Страница 790: ......
Страница 804: ......
Страница 842: ......
Страница 847: ...Copyright 2014 Coyote Point Systems A Subsidiary of Fortinet Inc All Rights Reserved 847 Equalizer Administration Guide ...
Страница 866: ......