HP Firewall 62

Step		Command	Remarks
			By default, the HTTPS service is not associated
7.	Associate the HTTPS		with any ACL.
7.	Associate the HTTPS	ip https acl acl-number	Associating the HTTPS service with an ACL
	service with an ACL.	ip https acl acl-number	Associating the HTTPS service with an ACL
			enables the device to allow only clients
			permitted by the ACL to access the device.

			Optional.
			By default, a user must enter the correct
			username and password to log in through
			HTTPS.
			When the auto mode is enabled:
8.	Specify the authentication		• If the user's PKI certificate is correct and not
8.	Specify the authentication		expired, the CN field in the certificate is
	mode for users trying to	web https-authorization	expired, the CN field in the certificate is
	mode for users trying to	web https-authorization	used as the username to perform AAA
	log in to the device	mode { auto manual }	authentication. If the authentication
	through HTTPS.		succeeds, the user automatically enters the
			succeeds, the user automatically enters the
			Web interface of the device.
			• If the user's PKI certificate is correct and not
			expired, but the AAA authentication fails,
			the device shows the Web login page. The
			user can log in to the device after entering
			correct username and password.

9.	Set the Web user	web idle-timeout minutes	Optional.
	connection timeout time.	web idle-timeout minutes	Optional.
	connection timeout time.

10.	Set the size of the buffer	web logbuffer size pieces	Optional.
	for Web login logging.	web logbuffer size pieces	Optional.
	for Web login logging.

11.	Create a local user and	local-user user-name	By default, a local user named admin exists.
	enter local user view.	local-user user-name	By default, a local user named admin exists.
	enter local user view.

12.	Configure a password for	password { cipher	By default, the password for system-predefined
12.	Configure a password for	password { cipher	user admin is admin, and no password is set
	the local user.	simple } password	user admin is admin, and no password is set
	the local user.	simple } password	for any other local user.
			for any other local user.

13.	Specify the command	authorization-attribute	By default, no command level is configured for
	level of the local user.	level level	the local user.

14.	Specify the Web service		By default, the system-predefined user admin
14.	Specify the Web service	service-type web	can use terminal service, Telnet service, SSH
	type for the local user.	service-type web	service, and Web service, and no service type
	type for the local user.		service, and Web service, and no service type
			is specified for any other local user.

15.	Exit to system view.	quit	N/A

16.	Enter interface view.	interface interface-type	N/A
16.	Enter interface view.	interface-number	N/A
		interface-number

17.	Assign an IP address and	ip address ip-address	N/A
	subnet mask to the	ip address ip-address

interface.	{ mask mask-length }	By default, only interface GigabitEthernet 0/0
	{ mask mask-length }	is assigned an IP address (192.168.0.1/24).