Specifications

ManualsBrandsSiemens ManualsIP PhoneHIPATH V1.2.33

211

212

213

214

215

216

217

218

219

220

hg-07.fm

A31003-H3580-M103-2-76A9, 01-2009

HiPath 3000/5000 V8 - HG 1500 V8, Administrator Documentation

7-85

Nur für den internen Gebrauch

Explorers

Security

7.2.6.1 Initial Configuration and Activation of SSL

Requirements for switching from insecure to secure mode with SSL:

● the board must be assigned an IP address,

● a serial terminal or a PC with a terminal emulation program must be connected to the

board’s V.24 interface,

● you must start the HiPath system and log on to the board’s WBM as user.

The following is a step-by-step description of how to activate SSL. This procedure assumes the

use of MS Internet Explorer (Version 6.0) as the Web browser.

1. Enter the CLI command reset secure at the V.24 terminal.

Apart from the IP address, all configuration data associated with the board is deleted. The

board reboots and is set to SSL Enabled mode. User names and passwords are trans-

ferred from the HiPath system to the board and are once again available. However, the V.24

interface is now the only means of access for administering the board.

2. Log on by entering the user name and password.

3. Create and activate a self-signed SSL server certificate using the following command:

create ssl certificate

<cert.name><ser.num><subj.name><val.from><val.till>[<sig.alg>

[<pub.key alg>[<pub.key len>[<alt.name>[<CRL distr. point>]]]]]

This means:

Never use default passwords or preset user names. You should create individual ac-

cesses with high-level security before you switch to secure administration mode.

<cert.name> Certificate Name

<ser.num> Serial Number of Certificate

<subj.name> Subject name in the format

"C=<country>,O=<organization>, OU=<use>, CN=<na-

me>", where <country> should be specified with two letters,

for example EN. If CN=, you should enter the IP address or the

DNS name of the gateway. Otherwise, the browser emits a warn-

ing every time you set up a connection.

<val.from> Beginning of the certificate validity period in the format

YYYY/MM/DD/HH:MM:SS

<val.till> End of the certificate validity period in the format

YYYY/MM/DD/HH:MM:SS