The http secure-server ssl-policy command configures an SSL policy for the HTTP server.
The undo http secure-server ssl-policy command restores the default SSL policy for the HTTP server.
A default SSL policy is available on an HTTP server.
| Parameter | Description | Value |
|---|---|---|
policy-name |
Specifies the name of an SSL policy. |
The value is a string of 1 to 23 case-insensitive characters without spaces. The value can contain digits, letters, and underscores (_). |
Usage Scenario
Traditional HTTP service transmits data in plain text, which can be intercepted and tampered with. User identity cannot be authenticated, and the HTTP server cannot ensure online data security of applications such as the e-commerce and online banks. You can run the http secure-server ssl-policy command to configure an SSL policy for the HTTP server to encrypt data, authenticate user identity, and check message integrity to ensure data security during the web access.
Prerequisites
Before running the http secure-server ssl-policy command, you must first run the ssl policy command to create an SSL policy on the HTTP server.
Precautions
The device provides a default SSL policy named Default. After the web page file is loaded to the device, the default SSL policy is loaded automatically, and you do not need to configure an SSL policy. To enhance device security, it is recommended that you obtain a new digital certificate from the CA and manually configure an SSL policy
Only one SSL policy can be configured for the HTTP server, and the latest configured SSL policy takes effect.