The binding cipher-suite-customization command binds a customized SSL cipher suite policy to an SSL policy.
The undo binding cipher-suite-customization command unbinds the customized SSL cipher suite policy from an SSL policy.
By default, no customized cipher suite policy is bound to an SSL policy. Each SSL policy uses a default cipher suite.
binding cipher-suite-customization customization-policy-name
undo binding cipher-suite-customization
| Parameter | Description | Value |
|---|---|---|
| customization-policy-name | Specifies the name of a customized SSL cipher suite policy. | The value is a string of 1 to 32 case-insensitive characters, spaces not supported. |
Usage Scenario
To bind a customized SSL cipher suite policy to an SSL policy, run the binding cipher-suite-customization command. After a customized SSL cipher suite policy is bound to an SSL policy, the device uses an algorithm in the specified cipher suite to perform SSL negotiation.
After a customized cipher suite policy is unbound from an SSL policy, the SSL policy uses one of the following cipher suites supported by default:
Prerequisites
The customized cipher suite policy to be bound to an SSL policy contains cipher suites.
Precautions
If the cipher suite in the customized cipher suite policy bound to an SSL policy contains only one type of algorithm (RSA or DSS), the corresponding certificate must be loaded for the SSL policy to ensure successful SSL negotiation.