System Management Commands
4-31
4
Example
Related Commands
ip http port (4-30)
ip http secure-server
This command enables the secure hypertext transfer protocol (HTTPS) over the
Secure Socket Layer (SSL), providing secure access (i.e., an encrypted connection)
to the switch’s Web interface. Use the no form to disable this function.
Syntax
[no] ip http secure-server
Default Setting
Enabled
Command Mode
Global Configuration
Command Usage
Both HTTP and HTTPS service can be enabled independently on the switch.
However, you cannot configure the HTTP and HTTPS servers to use the
same UDP port.
If you enable HTTPS, you must indicate this in the URL that you specify in
your browser: https://device[:port_number]
When you start HTTPS, the connection is established in this way:
- The client authenticates the server using the server’s digital certificate.
- The client and server negotiate a set of security protocols to use for the
connection.
- The client and server generate session keys for encrypting and decrypting
data.
The client and server establish a secure encrypted connection.
A padlock icon should appear in the status bar for Internet Explorer 5.x and
Netscape Navigator 4.x or later versions.
The following Web browsers and operating systems currently support HTTPS:
To specify a secure-site certificate, see “Replacing the Default Secure-site
Certificate” on page 3-35. Also refer to the copy command on page 4-63.
Console(config)#ip http server
Console(config)#
Table 4-13 HTTPS System Support
Web Browser Operating System
Internet Explorer 5.0 or later Windows 98,Windows NT (with service pack 6a),
Windows 2000, Windows XP
Netscape Navigator 4.76 or later Windows 98,Windows NT (with service pack 6a),
Windows 2000, Windows XP, Solaris 2.6