No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Configuration Guide - Basic Configuration

S7700 and S9700 V200R010C00

This document describes methods to use command line interface and to log in to the device, file operations, and system startup configurations.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Enabling the HTTPS Service

Enabling the HTTPS Service

Context

Enabling HTTPS service enhances device security, and preserves resources during timeout periods. To log in to the web system in secure mode, bind an SSL policy to the device and enable the HTTPS service. You can change the port number of the HTTPS server to prevent attackers from accessing the server using the default port number. In addition, you can set a timeout period for an HTTPS connection to prevent waste of web channel resources.

By default, only the HTTPS IPv4 service (not HTTPS IPv6) is enabled on a device. On the HTTPS server, port 443 is used, the timeout period of an HTTPS connection is 20 minutes, and login requests from all interfaces are accepted. If you use the HTTPS IPv4 service, default port number, default timeout period, and accept login requests from all interfaces, you only need to bind an SSL policy to the device. To use the HTTPS IPv6 service, you need to enable it first.

Procedure

  1. Run:

    system-view

    The system view is displayed.

  2. Run:

    http secure-server ssl-policy policy-name

    An SSL policy is bound to the device.

    policy-name specifies the SSL policy created in Configuring an SSL Policy and Loading a Digital Certificate.

  3. Run:

    http [ ipv6 ] secure-server enable

    The HTTPS service is enabled.

    By default, the HTTPS IPv4 service is enabled on a device while the HTTPS IPv6 service is disabled.

  4. Run:

    http [ ipv6 ] secure-server port port-number

    The port number of the HTTPS server is specified.

    The default port number of the HTTPS server is 443.

  5. Run:

    http server-source -i loopback interface-number

    A loopback interface is specified as the source interface of the HTTPS server.

    Before specifying a source interface for an HTTPS server, ensure that the loopback interface has been created. If the loopback interface is not created, the http server-source command cannot be correctly executed.

  6. Run:

    http timeout timeout

    A timeout period is set for HTTPS connections.

    The default timeout period is 20 minutes.

Translation
Download
Updated: 2019-08-21

Document ID: EDOC1000141895

Views: 57618

Downloads: 214

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next