FW 08.01.00 McDATA E/OS Command Line Interface User Manual (620-000134-740, November 2005)
2
2-72
E/OS Command Line Interface User Manual
config
when the certificate expires. At this point, you can either choose to
continue, or cancel, despite the expiry date.
Parameters This command has no parameters.
Command Example
Root> config security ssl resetKeys
config.security.ssl.setRenegotiationMB
Syntax setRenegotiationMB megabytes
Purpose This command sets the number of megabytes that can be transferred
using SSL before the SSL session is automatically renegotiated. This
renegotiation increases security by limiting the amount of data
encrypted with the same negotiated SSL parameters.
This command does not affect the SSL certificate or private key.
Instead, it indicates that a new SSL session should be renegotiated for
the current SSL connection after the number of megabytes has been
transferred between the SSL client and the switch. The renegotiation
is transparent to the user.
Parameters This command has one parameter:
Command Example
Root> config security ssl setRenegotiation 50
config.security.ssl.setWebState
Syntax setWebState sslEnabledState
Purpose This command enables the SSL for web interface. In order for a secure
(https://) connection to be accepted, the state must be set to enable;
otherwise, only http://" is accepted. The default WebState access is
non-secure.
If SSL is disabled, the https:// URL is rejected. If SSL is enabled, both
the http:// and https:// are accepted; however the http:// URL will
immediately redirect the web browser to the https:// URL so that all
web communication is secure.
megabytes The number of megabytes transferred before
the SSL session is renegotiated. Valid values
are 50 (MB) to 1000 (1000 MB or 1 GB) or 0.