Specifications
6-23
Configuring for Secure Web Management Sessions
Configuring for Secure Web Management Sessions
This section describes how to configure TLS for secure web sessions with a RoamAbout
R2. Note that enabling TLS does not prevent users from having normal web sessions. For
additional information on TLS, refer to Secure Web Sessions on page 2-22. The following
describes the TLS parameters:
• Host Key Type: The key type is RSA along with the size of the key in bits, which can
be 512, 768, 1024, 2048, and 3072.
• Signature Algorithm: The algorithm used by the public and private keys to encode
and decode data. The R2 provides a choice of standard signature algorithms, such as
RSA with Secure Hash Algorithm 1 (SHA1) and RSA with Message Digest 5 (MD5).
The R2 requires several minutes to create a new certificate, based on the size of the key
type. While creating a certificate, the R2 will function normally except that it will not
accept management commands, such as reset. Once you generate a new certificate, you
need to Reset With Current Settings to implement the certificate.
To enable, disable, or configure TLS using the AP Manager, click on Interfaces in the main
window.
To enable, disable, or configure TLS using the R2 console port, select Secure Web from
the main menu. If creating a new certificate, select the host key type and signature
algorithm, then choose Create Server Certificate at the bottom of the TLS configuration
screen. You do not need to use Apply.
NOTE: The ability to connect to the R2 using the web interface can be
disabled, as described in Configuring the Console Port for Security on
page 6-24.