beautypg.com

Web server overview, Supported protocols – Allied Telesis AT-S62 User Manual

Page 487

background image

AT-S62 User’s Guide

Section VII: Management Security

487

Web Server Overview

The AT-S62 management software comes with web server software so
you can remotely manage a switch with a web browser from a
management workstation on your network. (The instructions for
managing a switch with a web browser are contained in the chapters in
Section VII, Web Browser Management, of this manual.)

The web server can operate in two modes. The first is referred to as non-
secure HTTP mode. In this mode, packets sent between the switch and
the web browser during a management session are transmitted in
plaintext. Anyone monitoring your network with a sniffer will be able to
view the contents of the management packets.

The web server can also operate in the secure HTTPS mode where all
communications between the switch and a web browser are encrypted.
This feature uses the Secure Sockets Layer (SSL) protocol. It can help
protect your switch from intruders who might be monitoring your
network.

If you intend to use the secure HTTPS mode of the web server, there are
several procedures you need to perform before you can configure the
web server. You must create an encryption key, as explained in Chapter
26, Encryption Keys on page 492. You must also create a certificate and
add the certificate to the certificate database. This latter part is explained
in Chapter 27, Public Key Infrastructure Certificates on page 510. For an
overview to the procedures, refer to General Steps to Configuring the
Web Server for Encryption on page 488.

The default setting for the web server is enabled, with the non-secure
HTTP mode as the default active mode.

Note

To use SSL in an enhanced stack, all switches in the stack must use
SSL. For further information, refer to SSL and Enhanced Stacking on
page 514.

Supported

Protocols

The switch supports the following HTTP and HTTPs protocols:

❑ HTTP v1.0 and v1.1 protocols

❑ HTTPS v1.0 and v1.1 protocols running over SSL

The switch supports the following SSL protocols:

❑ SSL version 2.0

❑ SSL version 3.0

❑ TLS (Transmission Layer Security) version 1.0

See also other documents in the category Allied Telesis Computer hardware: