|
|
|
|
This section describes the commands you use to configure Hypertext Transfer Protocol (HTTP) and secure HTTP access to the switch. Access to the switch by using a Web browser is enabled by default. Everything you can view and configure by using the CLI is also available by using the Web.
Use this command to specify authentication methods for http server users. The default configuration is the local user database is checked. This action has the same effect as the command ip http authentication local. The additional methods of authentication are used only if the previous method returns an error, not if it fails. To ensure that the authentication succeeds even if all methods return an error, specify none as the final method in the command line.
Use this command to return to the default.
Use this command to specify authentication methods for https server users. The default configuration is the local user database is checked. This action has the same effect as the command ip https authentication local. The additional methods of authentication are used only if the previous method returns an error, not if it fails. To ensure that the authentication succeeds even if all methods return an error, specify none as the final method in the command line. For example, if none is specified as an authentication method after radius, no authentication is used if the RADIUS server is down.
Use this command to return to the default.
This command enables access to the switch through the Web interface. When access is enabled, the user can login to the switch from the Web interface. When access is disabled, the user cannot login to the switch Web server. Disabling the Web interface takes effect immediately. All interfaces are affected.
This command disables access to the switch through the Web interface. When access is disabled, the user cannot login to the switch Web server.
This command is used to enable the secure socket layer for secure HTTP.
This command is used to disable the secure socket layer for secure HTTP.
This command enables the Web Java mode. The Java mode applies to both secure and un-secure Web connections.
This command disables the Web Java mode. The Java mode applies to both secure and un-secure Web connections.
This command configures the hard timeout for un-secure HTTP sessions in hours. Configuring this value to zero will give an infinite hard-timeout. When this timeout expires, the user will be forced to re-authenticate. This timer begins on initiation of the web session and is unaffected by the activity level of the connection.
This command restores the hard timeout for un-secure HTTP sessions to the default value.
This command limits the number of allowable un-secure HTTP sessions. Zero is the configurable minimum.
This command restores the number of allowable un-secure HTTP sessions to the default value.
This command configures the soft timeout for un-secure HTTP sessions in minutes. Configuring this value to zero will give an infinite soft-timeout. When this timeout expires the user will be forced to re-authenticate. This timer begins on initiation of the Web session and is re-started with each access to the switch.
This command resets the soft timeout for un-secure HTTP sessions to the default value.
This command configures the hard timeout for secure HTTP sessions in hours. When this timeout expires, the user is forced to re-authenticate. This timer begins on initiation of the Web session and is unaffected by the activity level of the connection. The secure-session hard-timeout can not be set to zero (infinite).
This command resets the hard timeout for secure HTTP sessions to the default value.
This command limits the number of secure HTTP sessions. Zero is the configurable minimum.
This command restores the number of allowable secure HTTP sessions to the default value.
This command configures the soft timeout for secure HTTP sessions in minutes. Configuring this value to zero will give an infinite soft-timeout. When this timeout expires, you are forced to re-authenticate. This timer begins on initiation of the Web session and is re-started with each access to the switch. The secure-session softtimeout can not be set to zero (infinite).
This command restores the soft timeout for secure HTTP sessions to the default value.
This command is used to set the SSL port where port can be 1-65535 and the default is port 443.
This command is used to reset the SSL port to the default value.
This command is used to set protocol levels (versions). The protocol level can be set to TLS1, SSL3 or to both TLS1 and SSL3.
This command displays the http settings for the switch.
The display parameters for above command are: