[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]


Accessing the C-Web Interface through Secure HTTP

Before you configure access to the C-Web interface through HTTPS, obtain a digital security certificate on the system.

See Chapter 21, Managing Security Digital Certificates.

To make the C-Web interface accessible to remote users through secure HTTP:

  1. From configuration mode, access the hierarchy level for web-management HTTPS.
  2. [edit]
    
    user@host# edit system services web-management https
    
    
    
  3. Specify which TCP port is to receive incoming connection requests for the C-Web interface.
  4. [edit system services web-management https]
    
    user@host# set port port
    
    
    

The default port for HTTPS 443.

  1. Specify the interface to be used for Web browser connections to the C-Web interface.
  2. [edit system services web-management https]
    
    user@host# set interface interface 
    
    
    

You can specify an interface for SRC installations on Solaris platforms as well as on C-series platforms. On a C-series platform, use eth0; you can use eth2 or eth3 if installed.

On C-series platforms, specifying an interface is important if your C-series platform has eth2 and eth3 interfaces and you want to restrict C-Web interface access to one or both of these interfaces.

  1. Specify the name of the certificate on the local system.
  2. [edit system services web-management https]
    
    user@host# set local-certificate local-certificate
    
    
    
  3. Configure logging for the C-Web interface.

See SRC-PE Monitoring and Troubleshooting Guide, Chapter 3, Configuring Logging for SRC Components with the CLI.

  1. (Optional) Configure user accounts to allow specified users to log in to the C-Web interface.

Users who have privileges to log in to the SRC CLI also have privileges to log in to the C-Web interface.

NOTE: Like access to the SRC CLI, we recommend that you not use root access. If you do use root access, it must be through a secure terminal on a C-series platform. On Solaris platforms, root login is allowed through Telnet.


See Chapter 19, Configuring User Access.


[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]