HP 200 Unified Threat Management (UTM) Appliance Series Guía de inicio rápido Pagina 65
- Pagina / 150
- Tabla de contenidos
- SOLUCIÓN DE PROBLEMAS
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
59
# Create a PKI domain, specify the trusted CA as new-ca, the URL of the server for certificate
request as http://10.1.2.2/certsrv/mscep/mscep.dll, authority for certificate request as RA, and
the entity for certificate request as en.
[Firewall] pki domain 1
[Firewall-pki-domain-1] ca identifier new-ca
[Firewall-pki-domain-1] certificate request url
http://10.1.2.2/certsrv/mscep/mscep.dll
[Firewall-pki-domain-1] certificate request from ra
[Firewall-pki-domain-1] certificate request entity en
[Firewall-pki-domain-1] quit
# Create RSA local key pairs.
[Firewall] public-key local create rsa
# Retrieve the CA certificate from the certificate issuing server.
[Firewall] pki retrieval-certificate ca domain 1
# Request a local certificate from a CA through SCEP for the firewall.
[Firewall] pki request-certificate domain 1
# Create an SSL server policy myssl, specify PKI domain 1 for the SSL server policy, and enable
certificate-based SSL client authentication.
[Firewall] ssl server-policy myssl
[Firewall-ssl-server-policy-myssl] pki-domain 1
[Firewall-ssl-server-policy-myssl] client-verify enable
[Firewall-ssl-server-policy-myssl] quit
# Create a certificate attribute group mygroup1, and configure a certificate attribute rule,
specifying that the distinguished name in the subject name includes the string of new-ca.
[Firewall] pki certificate attribute-group mygroup1
[Firewall-pki-cert-attribute-group-mygroup1] attribute 1 issuer-name dn ctn new-ca
[Firewall-pki-cert-attribute-group-mygroup1] quit
# Create a certificate attribute-based access control policy myacp. Configure a certificate
attribute-based access control rule, specifying that a certificate is considered valid when it matches
an attribute rule in certificate attribute group myacp.
[Firewall] pki certificate access-control-policy myacp
[Firewall-pki-cert-acp-myacp] rule 1 permit mygroup1
[Firewall-pki-cert-acp-myacp] quit
# Associate the HTTPS service with SSL server policy myssl.
[Firewall] ip https ssl-server-policy myssl
# Associate the HTTPS service with certificate attribute-based access control policy myacp.
[Firewall] ip https certificate access-control-policy myacp
# Enable the HTTPS service.
[Firewall] ip https enable
# Create a local user named usera, set the password to 123, specify the Web service type, and
specify the user privilege level 3. A level-3 user can perform all operations supported by the
firewall.
[Firewall] local-user usera
[Firewall-luser-usera] password simple 123
[Firewall-luser-usera] service-type web
[Firewall-luser-usera] authorization-attribute level 3
2. Configure the host (HTTPS client):
- Getting Started Guide 1
- Contents 3
- 350H125 5
- Overview 7
- Appearance 10
- Firewall modules 11
- Enhanced firewall modules 12
- UTM products 13
- Application scenarios 15
- Virtual firewall application 16
- VPN application 16
- F1000-E 17
- Remote access application 20
- Firewall application 21
- Figure 24 Network diagram 22
- Login overview 23
- CLI user interfaces 24
- Logging in to the CLI 26
- Command 31
- Logging in through Telnet 33
- Logging in through SSH 41
- Getting 44
- Started Command Reference 44
- Login procedure 52
- Configuration guidelines 57
- Adding a Web login account 58
- Configuring Web login 58
- Configuring HTTP login 59
- Configuring HTTPS login 60
- Troubleshooting Web browser 66
- 3. Click Custom Level 67
- Configuring SNMP access 70
- SNMP login example 72
- 2. Configure the NMS: 73
- ACSEI timers 76
- ACSEI startup and running 76
- Basic configuration 80
- Click Next 81
- Managing the device 90
- Configuring the system time 91
- Configuring the network time 92
- Configuring banners 101
- Configuration procedure 102
- Rebooting the device 103
- Scheduling a device reboot 104
- Scheduling jobs 105
- Network requirements 107
- Getting Started Command 113
- Reference 113
- Task Command 114
- Remarks 114
- Managing users 116
- Configuration example 118
- Controlling user logins 119
- Logging off online Web users 125
- Displaying online users 126
- Using the CLI 127
- CLI views 128
- Return to user view. return 129
- Entering a command 131
- Usage guidelines 132
- Controlling the CLI output 135
- Support and other resources 146
- Conventions 147
- Network topology icons 148
- Port numbering in examples 148
Relacionado con productos y manuales para Software HP 200 Unified Threat Management (UTM) Appliance Series
Software HP M175a Manual de usuario
(63 paginas)
(63 paginas)
Software HP 6Gb Manual de usuario
(85 paginas)
(85 paginas)
Software HP NW280AAABA Manual de usuario
(616 paginas)
(616 paginas)
Software HP SN6000 Manual de usuario
(162 paginas)
(162 paginas)
Software HP 1TB Manual de usuario
(204 paginas)
(204 paginas)
Software HP E3000 Guía de usuario
(334 paginas)
(334 paginas)
Software HP 40gs Manual de usuario
(444 paginas)
(444 paginas)
Software HP Electronic Forms Manual de usuario
(33 paginas)
(33 paginas)
Software HP S1000 Guía de usuario
(172 paginas)
(172 paginas)
Software HP Digital NetRider Manual de usuario
(536 paginas)
(536 paginas)
Software HP PROCURVE 3400CL-24G Manual de usuario
(197 paginas)
(197 paginas)
Software HP A5799A Manual de usuario
(166 paginas)
(166 paginas)
Software HP XP20000 Manual de usuario
(226 paginas)
(226 paginas)
Software HP CloudSystem Foundation Guía de usuario
(211 paginas)
(211 paginas)
Software HP TC3100 Manual de usuario
(121 paginas)
(121 paginas)
Software HP c8000 Workstation Guía de usuario
(89 paginas)
(89 paginas)
© 2020, manymanuals.es. Todos los derechos reservados | 0.091 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales