ECS4100 Series CLI Reference Guide-R07

ManualsBrandsEdgecore Networks ManualsEnterpriseL2+/L3 Lite Gigabit Ethernet Access Switch

251

252

253

254

255

256

257

258

259

260

Table Of Contents

Chapter 8

| Authentication Commands

Web Server

– 259 –

Syntax

[no] ip http secure-server

Default Setting

Enabled

Command Mode

Global Configuration

Command Usage

◆ Both HTTP and HTTPS service can be enabled independently on the switch.

However, you cannot configure the HTTP and HTTPS servers to use the same

UDP port.

◆ If you enable HTTPS, you must indicate this in the URL that you specify in your

browser: https://device[:port_number]

◆ When you start HTTPS, the connection is established in this way:

■

The client authenticates the server using the server’s digital certificate.

■

The client and server negotiate a set of security protocols to use for the

connection.

■

The client and server generate session keys for encrypting and decrypting

data.

◆ The client and server establish a secure encrypted connection.

A padlock icon should appear in the status bar for Explorer 11, Mozilla Firefox

54, or Google Chrome 59, or more recent versions.

The following web browsers and operating systems currently support HTTPS:

◆ To specify a secure-site certificate, see “Replacing the Default Secure-site

Certificate” in the Web Management Guide. Also refer to the copy tftp https-

certificate command.

◆ Connection to the web interface is not supported for HTTPS using an IPv6 link

local address.

Table 46: HTTPS System Support

Web Browser Operating System

Internet Explorer 11 or later Windows 7, 8, 10

Mozilla Firefox 40 or later Windows 7, 8, 10, Linux

Google Chrome 45 or later Windows 7, 8, 10