Guidelines, Guidelines 4 – Allied Telesis AT-8100 Series User Manual

Chapter 94: Secure HTTPS Web Browser Server

1454

Note

If the certificate will be issued by a private or public CA, you should
check with the CA to see if they have any rules or guidelines on
distinguished names for the certificates they issue.

Guidelines

The guidelines for creating certificates are:



The switch must have a management IP address. For instructions,
refer to Chapter 13, “IPv4 and IPv6 Management Addresses” on
page 299.



The management workstations from which you will configure the
switch with web browser applications must be members of the
same network as the management IP address of the switch, or
they must have access to it through routers or other Layer 3
devices.



The web browser server cannot operate in both HTTP mode and
HTTPS mode at the same time.



A certificate can have only one encryption key.



The switch can use only certificates containing keys that it
generated.



The switch can have up to eight certificates, but only one can be
active at a time.



Your web browser must support HTTPS to use encryption.



The switch supports HTTPS v1.0 and v1.1 protocols running over
SSL.



The switch supports RSA encryption.

The switch supports the following SSL protocols:



SSL version 2.0



SSL version 3.0



TLS (Transmission Layer Security) version 1.0