F3215-HP Load Balancing Module System Management Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module

32

Ste

p

Command

Remarks

7. Associate the HTTPS

service with an ACL.

ip https acl acl-number

By default, the HTTPS service is not

associated with any ACL.

Associating the HTTPS service with an ACL

enables the LB module to allow only clients

permitted by the ACL to log in.

8. Specify the authentication

mode for users trying to

log in to the LB module

through HTTPS.

web https-authorization mode

{ auto | manual }

Optional.

By default, a user must enter the correct

username and password to log in through

HTTPS.

When the auto mode is enabled:

• If the user's PKI certificate is correct and

not expired, the CN field in the

certificate is used as the username to

perform AAA authentication. If the

authentication succeeds, the user

automatically enters the Web interface

of the LB module.

• If the user's PKI certificate is correct and

not expired, but the AAA authentication

fails, the LB module shows the Web

login page. The user can log in to the

LB module after entering the correct

username and password.

9. Set the Web user

connection timeout time.

web idle-timeout minutes

Optional.

By default, the Web connection timeout

time is 10 minutes.

10. Set the size of the buffer

for Web login logging.

web logbuffer size pieces

Optional.

By default, the buffer can save up to 512

Web login logs.

11. Create a local user and

enter local user view.

local-user user-name

By default, there is a local user named

admin.

12. Configure a password for

the local user.

password [ [ hash ] { cipher |

simple } password ]

By default, no password is configured for a

newly created local user, and the

password for local user admin is admin.

13. Specify the command

level of the local user.

authorization-attribute level

level

By default, no command level is configured

for the local user.

14. Specify the Web service

type for the local user.

service-type web

By default, no service type is configured for

the local user.

15. Exit to system view.

quit N/A

16. Enter interface view.

interface interface-type

interface-number

N/A

17. Assign an IP address and

subnet mask to the

interface.

ip address ip-address { mask |

mask-length }

By default, the interface GigabitEthernet

0/1 on the LB module has the IP address

192.168.0.1/24 configured.